Scammers are always thinking of new ways to take your money.
The latest trick is called quishing.
Quishing, similar to smishing and phishing, directs you to fake sites. They aim to steal your Social Security number, username, passwords, birth date, or credit card details.
Here’s how quishing works, according to the U.S. Postal Inspection Service:
Quishing is short for QR code phishing. It involves scammers posting signs with QR codes on them in high-traffic locations or sending them via email or text. Once you scan the QR code, you are taken to the scammer’s website, which is disguised to look legitimate, often impersonating a government agency, bank or other company. You are then asked to input personal information and before you know it, your identity or other information is used to carry out crimes such as financial fraud.
Avoid being a quishing victim with these tips:
- Always question the source of the QR code before scanning. Be extra careful with codes from unknown emails or from signs and flyers. Don’t scan unexpected emails or texts with QR codes, especially if they ask for immediate action.
- If you suspect a scam, contact the bank or agency the scammer is pretending to be. Inform them of the issue.
- Guard your personal info like it’s cash. Your Social Security number and credit card numbers can be used to steal money, open accounts, or file for tax refunds.
- Block spam messages. Call your carrier’s customer service to block text and multimedia messages sent as email.