Have you scanned a QR code in the past week, no matter it’s in restaurants for menus or shops for contact tracing? Since the start of the pandemic, we’re seeing an uptick in adoption, but they all come with risks. What’s more, QR codes are more favourable for hackers as they’re less likely to be picked up by security software and easier to reach victims.

<p>QR codes are now in common sight everywhere from conformation emails booking NHS PCR tests through to replacing traditional menus in bars, trains, and restaurants.</p>
<p>This popularity has now drawn the attention of cybercriminals looking to exploit the technology for illicit gains by tricking users to go to what they believe is a genuine site but is in fact a fake. We’ve all been taught from the beginning to look out for suspicious URLs in emails or webpages by looking at the format, the domain name, etc., and most people can spot them with naked eye. But how do you decipher if a QR code is legitimate or not by looking at it? There is no way of knowing unless you scan the code and the device goes to the site, by which time it may be too late!</p>