To Scan or Not to Scan: 4 Safety Tips for Using QR Codes

Think before you scan! How to spot the danger signs when scanning QR codes.

Spring2023Connections-QRCodes-680x315
By Laura Mellett

 

From parking signs to billboards and TV ads to restaurant menus, those little black-and-white squares known commonly as “QR codes” are everywhere now.

And although they are great for providing quick access to product information and a contactless user experience, it's important to be aware of the potential risks associated with scanning them — from phishing scams to malware attacks. Criminals can direct users to fraudulent websites or prompt them to download apps that can reveal their location.

"They can be fast and convenient and arouse curiosity," says Alan Wickman, Information Security Analyst at TCDRS. "Threat actors are aware of that, so you should be sure to proceed in a secure manner."

Here are the steps you can take to decide if a QR code is safe:

  • Consider the source
    A QR code is more likely to be safe if it comes from a reputable source. It is best to proceed cautiously if you find a QR code in an unsolicited email or on a random website. Criminals have been known to place stickers over legitimate QR codes in public places, such as bus stops. Also, avoid using QR codes to pay bills. There are many other payment methods that are less susceptible to fraud.

  • Check the destination
    If the QR code directs you to a website, make sure the URL is spelled correctly and begins with “https”. Be wary of websites that have a different URL than what was expected or if the website is not using a valid SSL certificate (click the lock icon next to the URL in your browser bar). If you scan a QR code and the URL looks cryptic, the website requires a login or the site is unrelated to what you scanned, close out of your browser.

  • Use a reputable QR code reader
    Your smartphone likely has a built-in QR code reader that can be used for this purpose. Avoid downloading third-party apps to make scans. Also, when scanning a QR code, be sure to look at the preview of the destination. This feature gives you a chance to review the URL and decide if the QR code is safe.

  • Be cautious about giving out personal information or downloading apps
    Many legitimate websites will require you to enter personal information. Still, it is important to know what information is being requested and if it is necessary to provide it. Do not download apps from a QR code. Instead, use your phone's app store.

Just like hyperlinks, QR codes can be very helpful. Just remember that it’s always best to be cautious when clicking links and scanning codes.

“The personal cost of not slowing down or remembering to apply authenticity checks and common-sense security can easily be greater than the benefits of automatically clicking,” Alan says.

Personal Finance

Video Library

Rather watch than read? Check out our
informational videos.
Explore Now
Resources

Is It Safe to Take Those Facebook Quizzes?Something Fishy: Text Message ScamsAre Mobile Payment Apps Safe?

Related Content

Get more information on why TCDRS is a model plan when it comes to retirement.

Articles icon Fall2023Connections-CharityScamsWeb-680x315
Personal Finance

10.26.2023

How to Outsmart the Big Bad Charity Wolf

Legitimate charities lose up to 5% of their revenue each year to fraud. Here’s how to ensure your donations make it into the right ha...

Read more
Articles icon Spring2024MemberMini-EarlyCareer3PlantsYouNeed-680x315
Personal Finance

03.05.2024

3 Plants You Need to be Growing in the Garden of Your Financial Future

In just a few steps, you can start growing a thriving financial garden that will help support the lifestyle you want in retirement.

Read more
Articles icon Spring2024ConnectionsWeb-HowToFundYourRetirementHobby-680x315
Personal Finance

03.18.2024

How to Fund Your Retirement Hobby

Hobbies can boost morale, but they’re not always fixed-income friendly. Here’s how to fund your new hobby without compromising your f...

Read more