what is quishing

Blogs

3 minutes

Quishing and QR code attacks: new threat to your digital security

Author

Serge Parson, Data Governance and Protection Lead, Ergo

Quishing and QR code attacks: new threat to your digital security
In today’s increasingly digital world, cyber threats are evolving rapidly. One of the threats that has gained attention recently is quishing, also known as QR code phishing. From January 1st – August 31st, 2024, 12% of all phishing attacks identified by Egress Defend used a QR code.

What is quishing?

Quishing is a sophisticated phishing technique that leverages the speed and convenience of QR codes. Attackers alter legitimate QR codes or create malicious QR codes that, when scanned, redirect users to phishing websites designed to steal personal information like login credentials, credit card details, or social security numbers. When a victim scans a compromised QR code, they also may be redirected to download malware or even expose their device to vulnerabilities.

Malicious QR codes can be distributed via email. Secure email gateways (SEGs) often fail to detect quishing emails since they cannot check the embedded image. As a result, these emails would bypass this security solution. New QR codes can be generated quickly, making it unlikely they will be recognised or blocked by SEG blocklists.

Source: Egress

Protecting yourself and your organisation from quishing and QR code attacks

While these attacks can be daunting, there are several precautions you can take to safeguard yourself and your organisation:

Be cautious with QR codes:

  • Verify the Source: Ensure the QR code is from a trusted source.
  • Avoid Scanning Suspicious Codes: Refrain from scanning codes on public surfaces or from unknown senders.
  • Use a QR Code Scanner App: Reputable scanner apps can often detect and warn you about malicious codes.

Practice good cyber hygiene:

  • Be Sceptical of Urgent Requests: Legitimate organisations rarely send urgent requests via email or text.
  • Verify Links and URLs: Hover your mouse over links to check the actual destination before clicking.
  • Enable Two-Factor Authentication (2FA): 2FA adds an extra layer of security to your accounts.
  • Implement Cybersecurity Awareness Training: it can help employees recognise suspicious emails and avoid potential threats.

Keep your devices updated:

  • Install Security Patches: Regularly update your operating system and software to address vulnerabilities.
  • Use Strong, Unique Passwords: Avoid using the same password for multiple accounts.
  • Consider a Security Solution: Antivirus and anti-malware software can help protect your device.

By staying informed and implementing these preventive measures, you can significantly reduce your risk of falling victim to quishing. Remember, vigilance is key in the ever-evolving landscape of cyber threats.

If you have any question on how to protect your organisation from this and other phishing attacks, please do not hesitate to contact us.

Related Blogs

                            Array
(
    [ID] => 82145
    [id] => 82145
    [title] => Web Banner (2)
    [filename] => Web-Banner-2.png
    [filesize] => 1172033
    [url] => https://ergotechnologygroup.com/wp-content/uploads/2024/08/Web-Banner-2.png
    [link] => https://ergotechnologygroup.com/events/microsoft-fabric-webinar/attachment/web-banner-2-2/
    [alt] => 
    [author] => 18
    [description] => 
    [caption] => 
    [name] => web-banner-2-2
    [status] => inherit
    [uploaded_to] => 81337
    [date] => 2024-08-29 14:44:08
    [modified] => 2024-08-29 14:44:08
    [menu_order] => 0
    [mime_type] => image/png
    [type] => image
    [subtype] => png
    [icon] => https://ergotechnologygroup.com/wp-includes/images/media/default.png
    [width] => 1500
    [height] => 867
    [sizes] => Array
        (
            [thumbnail] => https://ergotechnologygroup.com/wp-content/uploads/2024/08/Web-Banner-2-150x150.png
            [thumbnail-width] => 150
            [thumbnail-height] => 150
            [medium] => https://ergotechnologygroup.com/wp-content/uploads/2024/08/Web-Banner-2-300x173.png
            [medium-width] => 300
            [medium-height] => 173
            [medium_large] => https://ergotechnologygroup.com/wp-content/uploads/2024/08/Web-Banner-2-768x444.png
            [medium_large-width] => 768
            [medium_large-height] => 444
            [large] => https://ergotechnologygroup.com/wp-content/uploads/2024/08/Web-Banner-2-1024x592.png
            [large-width] => 1024
            [large-height] => 592
            [1536x1536] => https://ergotechnologygroup.com/wp-content/uploads/2024/08/Web-Banner-2.png
            [1536x1536-width] => 1500
            [1536x1536-height] => 867
            [2048x2048] => https://ergotechnologygroup.com/wp-content/uploads/2024/08/Web-Banner-2.png
            [2048x2048-width] => 1500
            [2048x2048-height] => 867
        )

)
1
                            

Blogs

The Evolution of Microsoft Fabric

                            Array
(
    [ID] => 98211
    [id] => 98211
    [title] => SON5860-001 1-min
    [filename] => SON5860-001-1-min-scaled.jpg
    [filesize] => 583117
    [url] => https://ergotechnologygroup.com/wp-content/uploads/2025/01/SON5860-001-1-min-scaled.jpg
    [link] => https://ergotechnologygroup.com/insights/blogs/dell-apex-cloud-platform-for-microsoft-azure-certified-partner/attachment/son5860-001-1-min/
    [alt] => Dell APEX Cloud Platform for Azure certified partner in Ireland
    [author] => 18
    [description] => 
    [caption] => 
    [name] => son5860-001-1-min
    [status] => inherit
    [uploaded_to] => 98210
    [date] => 2025-01-31 09:54:34
    [modified] => 2025-01-31 09:55:35
    [menu_order] => 0
    [mime_type] => image/jpeg
    [type] => image
    [subtype] => jpeg
    [icon] => https://ergotechnologygroup.com/wp-includes/images/media/default.png
    [width] => 2560
    [height] => 1754
    [sizes] => Array
        (
            [thumbnail] => https://ergotechnologygroup.com/wp-content/uploads/2025/01/SON5860-001-1-min-150x150.jpg
            [thumbnail-width] => 150
            [thumbnail-height] => 150
            [medium] => https://ergotechnologygroup.com/wp-content/uploads/2025/01/SON5860-001-1-min-300x206.jpg
            [medium-width] => 300
            [medium-height] => 206
            [medium_large] => https://ergotechnologygroup.com/wp-content/uploads/2025/01/SON5860-001-1-min-768x526.jpg
            [medium_large-width] => 768
            [medium_large-height] => 526
            [large] => https://ergotechnologygroup.com/wp-content/uploads/2025/01/SON5860-001-1-min-1024x702.jpg
            [large-width] => 1024
            [large-height] => 702
            [1536x1536] => https://ergotechnologygroup.com/wp-content/uploads/2025/01/SON5860-001-1-min-1536x1053.jpg
            [1536x1536-width] => 1536
            [1536x1536-height] => 1053
            [2048x2048] => https://ergotechnologygroup.com/wp-content/uploads/2025/01/SON5860-001-1-min-2048x1403.jpg
            [2048x2048-width] => 2048
            [2048x2048-height] => 1403
        )

)
1
                            
Dell APEX Cloud Platform for Azure certified partner in Ireland

Blogs

Ergo becomes first Dell APEX Cloud Platform for Microsoft Azure certified partner in Ireland

                            Array
(
    [ID] => 96577
    [id] => 96577
    [title] => iStock-1331397297-min
    [filename] => iStock-1331397297-min.jpg
    [filesize] => 277161
    [url] => https://ergotechnologygroup.com/wp-content/uploads/2025/01/iStock-1331397297-min.jpg
    [link] => https://ergotechnologygroup.com/insights/blogs/tech-trends-for-2025/attachment/istock-1331397297-min/
    [alt] => tech trends for 2025 blog
    [author] => 18
    [description] => 
    [caption] => 
    [name] => istock-1331397297-min
    [status] => inherit
    [uploaded_to] => 96496
    [date] => 2025-01-14 09:47:11
    [modified] => 2025-01-14 09:47:44
    [menu_order] => 0
    [mime_type] => image/jpeg
    [type] => image
    [subtype] => jpeg
    [icon] => https://ergotechnologygroup.com/wp-includes/images/media/default.png
    [width] => 1254
    [height] => 836
    [sizes] => Array
        (
            [thumbnail] => https://ergotechnologygroup.com/wp-content/uploads/2025/01/iStock-1331397297-min-150x150.jpg
            [thumbnail-width] => 150
            [thumbnail-height] => 150
            [medium] => https://ergotechnologygroup.com/wp-content/uploads/2025/01/iStock-1331397297-min-300x200.jpg
            [medium-width] => 300
            [medium-height] => 200
            [medium_large] => https://ergotechnologygroup.com/wp-content/uploads/2025/01/iStock-1331397297-min-768x512.jpg
            [medium_large-width] => 768
            [medium_large-height] => 512
            [large] => https://ergotechnologygroup.com/wp-content/uploads/2025/01/iStock-1331397297-min-1024x683.jpg
            [large-width] => 1024
            [large-height] => 683
            [1536x1536] => https://ergotechnologygroup.com/wp-content/uploads/2025/01/iStock-1331397297-min.jpg
            [1536x1536-width] => 1254
            [1536x1536-height] => 836
            [2048x2048] => https://ergotechnologygroup.com/wp-content/uploads/2025/01/iStock-1331397297-min.jpg
            [2048x2048-width] => 1254
            [2048x2048-height] => 836
        )

)
1
                            
tech trends for 2025 blog

Blogs

Ergo’s Top Tech Trends for 2025

                            Array
(
    [ID] => 96098
    [id] => 96098
    [title] => Building cyber resilience
    [filename] => iStock-161147253-min.jpg
    [filesize] => 524089
    [url] => https://ergotechnologygroup.com/wp-content/uploads/2025/01/iStock-161147253-min.jpg
    [link] => https://ergotechnologygroup.com/insights/blogs/building-cyber-resilience-in-financial-services/attachment/istock-161147253-min/
    [alt] => Building cyber resilience in the financial sector with Ergo
    [author] => 18
    [description] => 
    [caption] => 
    [name] => istock-161147253-min
    [status] => inherit
    [uploaded_to] => 96086
    [date] => 2025-01-08 10:12:22
    [modified] => 2025-01-08 10:13:35
    [menu_order] => 0
    [mime_type] => image/jpeg
    [type] => image
    [subtype] => jpeg
    [icon] => https://ergotechnologygroup.com/wp-includes/images/media/default.png
    [width] => 2121
    [height] => 1414
    [sizes] => Array
        (
            [thumbnail] => https://ergotechnologygroup.com/wp-content/uploads/2025/01/iStock-161147253-min-150x150.jpg
            [thumbnail-width] => 150
            [thumbnail-height] => 150
            [medium] => https://ergotechnologygroup.com/wp-content/uploads/2025/01/iStock-161147253-min-300x200.jpg
            [medium-width] => 300
            [medium-height] => 200
            [medium_large] => https://ergotechnologygroup.com/wp-content/uploads/2025/01/iStock-161147253-min-768x512.jpg
            [medium_large-width] => 768
            [medium_large-height] => 512
            [large] => https://ergotechnologygroup.com/wp-content/uploads/2025/01/iStock-161147253-min-1024x683.jpg
            [large-width] => 1024
            [large-height] => 683
            [1536x1536] => https://ergotechnologygroup.com/wp-content/uploads/2025/01/iStock-161147253-min-1536x1024.jpg
            [1536x1536-width] => 1536
            [1536x1536-height] => 1024
            [2048x2048] => https://ergotechnologygroup.com/wp-content/uploads/2025/01/iStock-161147253-min-2048x1365.jpg
            [2048x2048-width] => 2048
            [2048x2048-height] => 1365
        )

)
1
                            
Building cyber resilience in the financial sector with Ergo

Blogs

Navigating Cyber Resiliency in Financial Services Key Considerations for 2025

                            Array
(
    [ID] => 95964
    [id] => 95964
    [title] => Lorne Haeder 1 (1)
    [filename] => Lorne-Haeder-1-1.png
    [filesize] => 167121
    [url] => https://ergotechnologygroup.com/wp-content/uploads/2025/01/Lorne-Haeder-1-1.png
    [link] => https://ergotechnologygroup.com/insights/blogs/a-cios-new-years-resolutions-for-2025/attachment/lorne-haeder-1-1/
    [alt] => 
    [author] => 18
    [description] => 
    [caption] => 
    [name] => lorne-haeder-1-1
    [status] => inherit
    [uploaded_to] => 95946
    [date] => 2025-01-06 14:45:21
    [modified] => 2025-01-06 14:45:21
    [menu_order] => 0
    [mime_type] => image/png
    [type] => image
    [subtype] => png
    [icon] => https://ergotechnologygroup.com/wp-includes/images/media/default.png
    [width] => 748
    [height] => 444
    [sizes] => Array
        (
            [thumbnail] => https://ergotechnologygroup.com/wp-content/uploads/2025/01/Lorne-Haeder-1-1-150x150.png
            [thumbnail-width] => 150
            [thumbnail-height] => 150
            [medium] => https://ergotechnologygroup.com/wp-content/uploads/2025/01/Lorne-Haeder-1-1-300x178.png
            [medium-width] => 300
            [medium-height] => 178
            [medium_large] => https://ergotechnologygroup.com/wp-content/uploads/2025/01/Lorne-Haeder-1-1.png
            [medium_large-width] => 748
            [medium_large-height] => 444
            [large] => https://ergotechnologygroup.com/wp-content/uploads/2025/01/Lorne-Haeder-1-1.png
            [large-width] => 748
            [large-height] => 444
            [1536x1536] => https://ergotechnologygroup.com/wp-content/uploads/2025/01/Lorne-Haeder-1-1.png
            [1536x1536-width] => 748
            [1536x1536-height] => 444
            [2048x2048] => https://ergotechnologygroup.com/wp-content/uploads/2025/01/Lorne-Haeder-1-1.png
            [2048x2048-width] => 748
            [2048x2048-height] => 444
        )

)
1
                            

Blogs

A CIO's New Year's Resolutions for 2025

                            Array
(
    [ID] => 54057
    [id] => 54057
    [title] => dora
    [filename] => dora.jpg
    [filesize] => 85981
    [url] => https://ergotechnologygroup.com/wp-content/uploads/2024/01/dora.jpg
    [link] => https://ergotechnologygroup.com/resources/transforming-financial-services-with-a-new-wave-of-technology/attachment/dora/
    [alt] => 
    [author] => 6
    [description] => 
    [caption] => 
    [name] => dora
    [status] => inherit
    [uploaded_to] => 54174
    [date] => 2024-01-19 11:23:53
    [modified] => 2024-04-25 11:24:20
    [menu_order] => 0
    [mime_type] => image/jpeg
    [type] => image
    [subtype] => jpeg
    [icon] => https://ergotechnologygroup.com/wp-includes/images/media/default.png
    [width] => 600
    [height] => 420
    [sizes] => Array
        (
            [thumbnail] => https://ergotechnologygroup.com/wp-content/uploads/2024/01/dora-150x150.jpg
            [thumbnail-width] => 150
            [thumbnail-height] => 150
            [medium] => https://ergotechnologygroup.com/wp-content/uploads/2024/01/dora-300x210.jpg
            [medium-width] => 300
            [medium-height] => 210
            [medium_large] => https://ergotechnologygroup.com/wp-content/uploads/2024/01/dora.jpg
            [medium_large-width] => 600
            [medium_large-height] => 420
            [large] => https://ergotechnologygroup.com/wp-content/uploads/2024/01/dora.jpg
            [large-width] => 600
            [large-height] => 420
            [1536x1536] => https://ergotechnologygroup.com/wp-content/uploads/2024/01/dora.jpg
            [1536x1536-width] => 600
            [1536x1536-height] => 420
            [2048x2048] => https://ergotechnologygroup.com/wp-content/uploads/2024/01/dora.jpg
            [2048x2048-width] => 600
            [2048x2048-height] => 420
        )

)
1
                            

Blogs

Ensuring DORA compliance: time to act now for CIOs and IT leaders in the financial sector