Explore UCD

UCD Home >

Alert: QR Code Phishing Attacks, Monday, 9 October

Alert: QR Code Phishing Attacks, Monday, 9 October

Monday, 9 October 23

What is happening:

IT Services are aware of a rise in QR Code Phishing Attacks “Quishing”.

“Quishing” is the method used in fraud where valid QR codes are replaced with another code to facilitate fraud or information harvesting, QR codes are two-dimensional barcodes that can be scanned using a smartphone or other QR code scanning devices. They are commonly used to quickly access websites, apps, or other digital content. Threat actors have started to use QR codes to redirect the attack from your device to your mobile phone and trick users into providing sensitive information on a fake logon page

What to do if you receive an email with a QR code?

If a user receives a quishing email (an email containing a phishing QR code or a link to a potentially malicious website), they should take the following steps to protect themselves and their information:

  • Do Not Click on Any Links or Scan QR Codes: The first and most crucial step is to avoid clicking on any links or scanning QR codes in the email, especially if the email is from an unknown or suspicious
  • Do Not Download Attachments: If the email contains attachments from an unknown or unexpected source, do not download or open them. Malicious attachments can contain malware that can infect your device.
  • Check the Sender's Details: Examine the sender's email address and the content of the email carefully. Look for signs of suspicious or unusual behaviour, such as spelling errors, generic greetings, or requests for sensitive information.
  • Verify the Source: If the email claims to be from a reputable organization or service, independently verify the information. Do not rely solely on the email's content or links. Visit the official website or contact the organization directly through trusted contact information to confirm the legitimacy of the email.
  • Report the Email: Report the email as a phishing email from within UCD Gmail. This helps improve email security for other users and may also help in tracking down the attackers.
  • For more information go to https://www.ucd.ie/itservices/ourservices/security/protectingyourinformation/phishing/

Who will this affect:

All staff and students.

UCD IT Services

Computer Centre, University College Dublin, Belfield, Dublin 4, Ireland.

Contact us via the UCD IT Support Hub: www.ucd.ie/ithelp