Droid Tools

Tag: fbi

  • Quishing #alert – FBI warns smartphone users about fake QR codes stealing money

    Quishing #alert – FBI warns smartphone users about fake QR codes stealing money

    Smartphone users are now being alerted by the FBI and cybersecurity organizations to a new fraud called “Quishing,” which includes malicious or phony QR codes. Particularly vulnerable are those who often utilize QR codes for logins or payments; some victims have lost thousands of dollars. Here’s what you should know and how to protect yourself.

    The FBI and other federal authorities have recently expressed concern over the increase in QR scam attacks, sometimes known as quishing, in which unwanted parcels show up at people’s doorsteps. These packages frequently contain QR codes that, when read by the camera on mobile phones, cause victims to install malware or be redirected to phony websites. Your device may be compromised as a result, and your personal information may be taken.

    Quishing scam alert

    Online retailers are targeted by Quishing

    The most recent worry centers on these frauds that prey on people who frequently transact online. In order to steal your data, attackers are creating QR codes that point to dubious websites. These scams can also compromise your bank accounts and phone, enabling scammers to steal your money, according to the Brandenburg Consumer Advice Centre (VZB).

    In one scenario, scammers pose as legitimate customers interested in buying a product. They ask the seller to scan a QR code to start the transaction rather than giving money straight to the seller. By directing the victim to a phony PayPal login screen, this code may fool them into inputting their account information. This strategy is a type of phishing on websites.

    With zero-click tactics that don’t involve any user engagement, some attacks are become even more hazardous. Usually, high-profile people like politicians, journalists, attorneys, and activists are the target of these.

    Cyber Security Coach Online security specialist Alex East cautions that hackers might post phony QR codes in both public and private areas, such convenience store payment terminals or gas pumps. During normal transactions, these codes have the ability to reroute customers to malicious websites.

    Quishing alert - warning

    Ways to stay safe

    VZB recommends users to exercise caution when making digital transactions to prevent becoming victims of QR code frauds. It’s crucial to confirm that the vendor is the one displaying the QR code before paying, as opposed to scanning one that has been supplied by another party. Always look for indications of questionable activity on the website you are sent to, such as misspelled domain names or odd layouts.

    Scanning QR codes from unwanted parcels, email attachments, or public places should generally be done with caution as they may direct users to fraudulent websites. It’s even better to stay away from scanning QR codes completely unless you know exactly where they came from.

    It’s also strongly advised to strengthen account security using two-factor authentication (2FA), particularly when money is involved. Consider using passkeys, a more secure login option that is already supported by many websites and apps, for even more security.

    Security features on both iPhones and Android smartphones, such as warnings for phony websites and fraud detection in calls and messages, can aid in spotting scammers. To get the most protection, make sure these features are turned on.

  • Public phone chargers are a security risk FBI says

    Public phone chargers are a security risk FBI says

    The FBI has issued a warning on public charges that may be found in malls, airports, and other places and requests that nobody make use of them. When traveling or doing other things, it’s a good idea to utilize your own portable charger or power bank since you’re not confined to one place.

    The FBI claims that criminals have discovered a way to use USB connections available in these places to install malware and monitoring software onto devices. and advises everyone to use an electrical outlet instead and bring their own charger and USB wire.

    security risk

    Juice jacking is the term used to describe this practice. This is how malicious software can be added to public charging stations by hackers. It gives them the ability to view, steal, and even track the data from your mobile devices. Regrettably, iOS devices are not immune to juice jacking; Android smartphones are more likely to be affected.

    So how can juice jacking be prevented? The simplest solution is to always travel with your own USB cord and charger. For this reason, we advise getting a battery pack for your gadget. There are numerous solutions available for this as well.

    This can be avoided

    The simplest method is to use a battery pack. Since you are not required to remain confined to one outlet, you can carry it in your pocket and wander around the mall, airport, or anywhere else. Also, it functions when you need to charge your phone but are not in certain areas.

    Although this is quite frightening, it is quite simple to avoid. It’s difficult to use one of those USB ports when you’re at the airport because they’re normally all occupied. But right now, you need to steer clear of them.