The FBI has issued a public warning about QR code scams — dubbed quishing — where criminals place fake QR codes over legitimate ones to steal credentials and financial information.
Common QR Code Scams
- Parking meters: Fake QR stickers redirect to phishing payment sites
- Restaurant menus: Altered codes lead to credential-stealing pages
- Mail packages: Fake delivery QR codes install malware
- EV chargers: Fake payment QR codes at charging stations
How to Stay Safe
Before scanning any QR code, inspect it physically — does it look like a sticker placed over another code? Preview the URL before opening it. Never enter passwords or payment info on sites reached via QR code unless you verify the domain carefully.
Better Alternatives
Type URLs directly into your browser instead of scanning codes. Use your banks official app for payments. If a QR code feels suspicious, ask staff for the direct website address instead.
