Phishing Attacks Using QR Codes are on the Rise

picture of student using laptop in the library
Published | September 19, 2023

W&L and other universities across the nation are being targeted with phishing scams that encourage users to scan fraudulent QR codes. According to BleepingComputer, the threat actors are using QR codes embedded in images to bypass email security tools that scan a message for known malicious links. This has opened up a new attack vector, allowing these phishing messages to reach your inbox.

The messages are being sent with a sense of urgency, a common phishing tactic. Some of the subject lines tracked thus far and an example screenshot can be found below.

  • Microsoft Final Warning: Security Authentication for {university name}
  • Salary Increase, Incentive Upgrade, Insurance Policy Review, and Benefit Package Update for {username}
  • {username} Compensation Modification, Insurance Revision, and Benefit Package Update Tuesday-September-2023 xx:xx PM
  • ACT FAST NOW!!!
screenshot of phish email with QR code that says: Human resources/payroll shared a file with you. Scan the QR code with the camera program on your mobile device to access your files.

Most QR code scanners on modern smartphones will ask you to verify the destination URL before launching the browser as a protective step. You should always check the URL before proceeding. More importantly, never scan a QR code from an unsolicited email.

When in doubt, you can always contact the ITS Helpdesk at X4357 or help@wlu.edu for assistance.

You may also like…