Quishing Scams are on the Rise - Technicalities
Your IT Partner
Contact Help Desk 1300 131 626

Quishing Scams are on the Rise!

One of the latest threats in the world of cybercrime is quishing—a form of phishing that uses QR codes to lure individuals into scams. As the use of QR codes has surged in recent years for everything from digital payments to contactless check-ins, so too has the opportunity for hackers to exploit this technology. The recent escalation in quishing scams is cause for concern, as more users and businesses fall prey to these attacks.

Quishing, a blend of “QR” and “phishing,” is a phishing attack that relies on malicious QR codes. These scams often bypass the visual cues associated with traditional phishing emails, making them harder to detect. Instead of clicking on suspicious links in an email, a user is tricked into scanning a QR code that redirects them to a harmful website. Once there, the victim might be prompted to enter personal details, such as login credentials or payment information, or the site may download malware onto their device.

How Quishing Scams Work

Here’s a breakdown of a typical quishing scam:

  • Step 1: Delivery of the QR Code: Scammers can send malicious QR codes through various channels—email, SMS, social media, or even printed materials. The QR code may appear to be from a trusted source, such as a well-known company or even an internal colleague.
  • Step 2: Scanning the QR Code: When the victim scans the QR code, they are redirected to a fraudulent website. This website may look legitimate and might even mimic the look and feel of popular brands or financial institutions.
  • Step 3: Data Theft or Malware Installation: The website will either ask the user to input personal information or automatically download malware onto their device. In some cases, the scammer could intercept sensitive information, such as usernames, passwords, or credit card details.

Recent Incidents and Escalation

Over the past year, cybersecurity firms have reported a sharp increase in the number of quishing attacks worldwide. Several incidents highlight the escalation of this threat:

  1. Fake Payment Portals: In Europe, hackers have been sending out fake QR codes disguised as payment portals for utility bills or tax payments. Users who scanned the codes were redirected to websites where they unknowingly gave away their banking information.
  2. Phony Restaurant Menus: In some cases, fraudsters have placed fake QR codes on restaurant tables, which directed customers to malicious websites instead of online menus. These websites attempted to harvest personal information or download malware.
  3. Government Impersonation: In one case, a group of scammers used quishing to impersonate a government agency, sending out letters with QR codes for users to “verify” their identities for tax purposes. Victims who scanned the codes ended up giving away sensitive personal details.

    Current example of a Quishing Compromise

    Look out for the email sender. The name ‘HR Department’ is just a made up name. The actual sender in this case, pitmaster@… is likely unknown to you, in fact they have likely been scammed themselves.

    The subject is often deliberately enticing. But does it line up with your payroll system, or superannuation fund.

    The email body is totally blank. There is no text at all. Take this as being highly suspicious. Keeping this blank is a deliberate method to avoid email filtering scam detection.

    Finally, there is a PDF attachment. Unfortunately, only advanced email filtering software will be able to detect anything unusual in this email, such as the fact that the PDF has a QR code linked to a risky or fraudulent website.

    The PDF may have your customer logo on top of the page to add a little legitimacy. Remember, your logo is easily downloadable from the web.

    The QR code will open your default web browser. This will land on a web page asking you to log in to one of your accounts. In this live case, a Microsoft account was targeted.

    This is not Microsoft! In this case the web page is sitting on a virtual server hosted by CloudFlare in Petersburg, Virginia, USA.

    By logging into your Microsoft account on this ‘fake’ web page, you will be handing over your Microsoft credentials to a nefarious character.

    As these scams become more sophisticated, the time between unintentionally handing over your credentials, and having all of your emails copied away is narrowing. It could be as little as 1 hour.

    Don’t open these emails. Warn your work colleagues not open them. If you have, call our helpdesk as they can quickly perform password resets, and revoke access.

    Get in touch for advice and options for email security enhancements.

    Back to Articles

    Other news & articles

    Why choose Technicalities as your MSP?

    Why choose Technicalities as your MSP? Technicalities is a Managed Service Provider (MSP) that provides a range of IT services to organisations of all sizes. With years of experience in the industry, Technicalities has established itself as a market leader, and reliable MSP. Technicalities is a great MSP for many reasons. We have technical expertise,…
    Read more

    Windows 10 End of Life

    Windows 10 End of Life Microsoft’s Windows 10 operating system has been a staple for businesses and individuals alike since its launch in 2015. However, like all software, Windows 10 is approaching the end of its lifecycle, and Microsoft has officially set the end-of-life (EOL) date for October 14, 2025. This means that after this…
    Read more

    Cyber Security Awareness Month 2024

    October is Cybersecurity Awareness Month, a time to highlight the importance of online safety and data protection. Learn how to safeguard your digital presence with practical tips and best practices to defend against cyber threats.
    Read more

    Safeguard your data with 3-2-1 Backup

    Safeguard your data with 3-2-1 Backup Data is the lifeline for businesses. Losing access to important files, customer information, or critical systems can be devastating, both financially and operationally. That’s why a robust backup strategy is essential for protecting your business from data loss, corruption, or cyberattacks. One of the most reliable methods used by…
    Read more

    Why choose Technicalities as your MSP?

    Why choose Technicalities as your MSP? Technicalities is a Managed Service Provider (MSP) that provides a range of IT services to organisations of all sizes. With years of experience in the industry, Technicalities has established itself as a market leader, and reliable MSP. Technicalities is a great MSP for many reasons. We have technical expertise,…
    Read more

    Windows 10 End of Life

    Windows 10 End of Life Microsoft’s Windows 10 operating system has been a staple for businesses and individuals alike since its launch in 2015. However, like all software, Windows 10 is approaching the end of its lifecycle, and Microsoft has officially set the end-of-life (EOL) date for October 14, 2025. This means that after this…
    Read more

    Cyber Security Awareness Month 2024

    October is Cybersecurity Awareness Month, a time to highlight the importance of online safety and data protection. Learn how to safeguard your digital presence with practical tips and best practices to defend against cyber threats.
    Read more

    Safeguard your data with 3-2-1 Backup

    Safeguard your data with 3-2-1 Backup Data is the lifeline for businesses. Losing access to important files, customer information, or critical systems can be devastating, both financially and operationally. That’s why a robust backup strategy is essential for protecting your business from data loss, corruption, or cyberattacks. One of the most reliable methods used by…
    Read more

    Taking Cyber Security to a new Level with MDR

    Taking Cyber Security to a new Level with MDR All of Technicalities’ managed customers have now been moved away from AntiVirus and on to EDR (Endpoint Detection and Response). EDR’s Machine Learning capability is essential for a more accurate detection of viruses, malware and ransomware, as well as action should something happen. We have now…
    Read more

    Spotify Phishing Scam Warning

    Spotify Phishing Scam Warning Beware of Cyber Threats from Fake Spotify Emails: What to Look Out For and How to Protect Yourself With over 600 million users worldwide, Spotify is one of the most popular music streaming platforms. Unfortunately, its vast user base makes it a prime target for cybercriminals. One common tactic used by…
    Read more

    CrowdStrike: The crash and Repercussions

    CrowdStrike: The crash and Repercussions In mid July, nearly everything ground to a halt. Microsoft computers started crashing which caused an outage that globally stopped 5,000 flights from taking off, supermarket checkouts to stop working, and Marvel Stadium to only allow patrons in based on viewing membership cards; like back in the 1990s. Who are…
    Read more

    The AI Future: What is Microsoft Copilot?

    The AI Future: What is Microsoft Copilot? Microsoft Copilot is an AI-powered assistant integrated into Microsoft Office applications, designed to enhance productivity and streamline workflows. Leveraging advanced machine learning and natural language processing capabilities, Copilot can help draft documents, create presentations, analyse data, and automate repetitive tasks. Key features of Microsoft Copilot include: By harnessing…
    Read more

    How Copilot Handles Your Data in Microsoft 365

    How Copilot Handles Your Data in Microsoft 365 In an era where digital collaboration and productivity tools have become essential, understanding how your data is managed and protected is crucial. Microsoft 365’s Copilot feature is designed to enhance productivity by integrating AI-driven assistance across various applications. This blog delves into how Copilot handles your data…
    Read more

    Embracing the Future with Pure Storage

    Embracing the Future with Pure Storage In the ever-evolving landscape of data management, staying ahead of the curve is essential. As part of Technicalities’ commitment to providing top-tier services and maintaining operational excellence, we have recently upgraded our data centre infrastructure with Pure Storage. This strategic investment underscores our dedication to leveraging cutting-edge technology to…
    Read more

    Cyber Awareness Training: Our Partnership with Phished

    Cyber Awareness Training: Our Partnership with Phished In today’s digital age, cybersecurity threats are an ever-present concern for individuals and organizations alike. Among these threats, phishing remains one of the most prevalent and damaging. As cybercriminals continually refine their techniques, it is imperative that we stay ahead of the curve to protect our sensitive information…
    Read more

    Protect Yourself Online – A recommendation for safer browsing

    Protect Yourself Online – A recommendation for safer browsing In today’s digital age, we are more connected than ever. The internet is an invaluable tool for staying in touch with loved ones, learning, socialising, playing games or life management such as banking. However it also exposes us to online threats such as identity theft, scams…
    Read more

    Cyber Security Review: Microsoft 365

    Cyber Security Review: Microsoft 365 Cyber Security is a rapidly evolving space. What works today could be exploited tomorrow. On a daily basis we at Technicalities are researching the latest scams, viruses and vulnerabilities within both software and hardware. Many of our customers live in the Microsoft 365 world due to its ease of communication…
    Read more

    Microsoft 365 Backups

    Microsoft 365 Backups By default, Microsoft does not offer backup. If an email or file is deleted, it will likely sit in the ‘Deleted Items’ folder or Recycle Bin for a limited amount of time, often 30 days. Technicalities offers a backup solution that covers all Microsoft 365 emails, and files from OneDrive and SharePoint.…
    Read more

    The Need for a Good Firewall

    The Need for a Good Firewall Almost all organisations employ a firewall as a security tool that monitors and filters internet access in and out of their network. However even the best firewalls, if not properly configured and implemented, may not provide much protection at all. We so often see organisations compromised by attackers exploiting…
    Read more

    SIEM as a Service

    SIEM as a Service Technicalities now offers (Security Information & Event Management) as a hosted service. Networks that sit behind a firewall appear to be safe, however the firewall (in its basic form) is meant to block incoming and outgoing connections. However, there must be some openings in order to allow in certain traffic such…
    Read more

    Callback Phishing Avoids Filters

    Callback Phishing Avoids Filters A new form of phishing is appearing and it has the ability to avoid email filtering programs. Phishing is the fraudulent practice of sending emails or other messages purporting to be from reputable companies in order to entice individuals to reveal personal information, such as passwords and credit card numbers. Unlike…
    Read more

    Application Whitelisting

    Application Whitelisting In today’s digital age, Application Whitelisting has become an increasingly popular security measure. So much so that it is the Number 1 recommendation on the Australian Government’s ‘Essential Eight’ list of recommendations.. The concept behind application whitelisting is simple: Rather than trying to block every potential threat, you simply allow only authorised applications…
    Read more

    The Importance of Endpoint Detection and Response (EDR)

    The Importance of Endpoint Detection and Response (EDR) Endpoint detection and response (EDR) is a crucial element in the modern cybersecurity landscape. As organisations are moving more of their business online and relying on digital data storage and communication, the risk of cyberattacks has increased significantly. Endpoint Detection and Response provides the necessary tools to…
    Read more

    The Essential Eight

    The Essential Eight While it may sound a little boring, and it may never be required, the ‘Essential Eight’ is something that needs to be on every business’ radar. In today’s fast-paced and interconnected world, cyber threats are becoming increasingly sophisticated and frequent. Organizations are at constant risk of losing critical data or being disrupted…
    Read more

    Cybercriminals double down on Ransomware boom

    Cybercriminals double down on Ransomware boom Ransomware is one of the biggest forms of cybercrime that businesses of any size face today, so how can we protect against it? Cyberattacks, in particular Ransomware, are on the increase in Australia. The average remediation cost of a ransomware attack in Australia is $1.12 million The Essential 8,…
    Read more