Krasnoyarsk residents were told about the rules for the safe use of QR codes / incidents of Krasnoyarsk and Krasnoyarsk Territory / Newslab.ru

Boris Lopatin, senior expert of MegaFon, told how to avoid the risks associated with payment using QR codes.
Before scanning the code, pay attention to its location. For example, in public places – at the doors of shops, in the porches, on stands or stops – attackers sometimes stick fake codes over the original ones or print fake ads. If you notice traces of intervention, it is better to refrain from scanning.
It is worth trusting codes that are located by official organizations: in banking applications, on lords or in trusted services. Links from random leaflets, messages from strangers or open ads require special caution. Modern scanners, built -in antiviruses or protection applications show the site address before the following links – if the address contains typos or strange characters, it is safer to enter it manually.
“Particular vigilance must be shown when working with personal data. If the code is used to enter your personal account, payment or access, make sure that the site uses a secure connection – the “lock” icon in the address bar of the browser says this, ”comments Boris Lopatin.
However, the expert clarifies, and this is not a guarantee of security. If the sender of the QR code and the link sewn into the code are in doubt, check the information in official sources before leaving personal data and bank card data on such a resource.

The expert notes that scammers are now popular, aimed at hijacking accounts in messengers. This category takes about 40 % of the total phishing, which is identified by Megafon specialists. To abduct the data, scammers can send a QR code with a link, by crossing the user, the user will see the fake form of authorization in the messenger. Such messages, for example, with a request to vote in the competition, take part in the draw, can also come from contacts from the notebook, access to the accounts of which have already received scammers.
Materials on the topic
The protection of devices is no less important. A smartphone or tablet should be updated to the latest version of the operating system, and it is also important to regularly check the system for threats. This will reduce the risk of infection through malicious files, which are sometimes automatically loaded when crossing the link. It is also worth limiting the access of applications to the camera and geolocation, if this is not clear.
Personal QR codes deserve special attention: medical certificates, tickets for events, electronic passes or signatures. They cannot be published in social networks or messengers – attackers can copy the code and use in fraudulent schemes.
“Be careful with QR codes for connecting to Wi-Fi in cafes or airports-scammers can replace the network to intercept the data. Always specify the name of the network with employees. The same applies to the codes in messengers: if the stranger sends QR with a request to “check the account” – this may be a fraudster, ”the expert warns.
For important services (banking, mail), include two -factor authentication (2FA). Even if attackers gain access through a QR code, without the second stage of verification (for example, an SMS code) they will not be able to enter the system.
Technologies are developing, dynamic codes, encryption and protection against fake appear. But the main thing is habits. Check the code source, protect the devices and do not rush to cross the dubious links and QR codes, ”recalls Boris Lopatin.