FDIC-Insured - Backed by the full faith and credit of the U.S. GovernmentWho Sent This Package? Unsolicited Packages Containing QR Codes
Are you familiar with QR codes? They are square black and white barcodes that can be scanned from a smartphone’s camera to instantly access information like a website, mobile app, text, or contact details. Warning: Cybercriminals can use QR codes to their advantage.
Did you receive a package in the mail that you were not expecting? Is there not a return address or any sender information? Instead, you notice a QR code is printed on the package. Are you curious who it is from?
Do not scan the code! This is a scam.
The package may contain an item of little to no value and a note that says to scan the QR code to find out who sent it or to learn how to return the item. It was sent by a cybercriminal hoping that your curiosity will get the best of you. The item and note are there to tempt you to scan the code.
If you scan the code, it will take you to fake website that will prompt you to provide sensitive information such as financial information and personal data. The cybercriminals plan to steal this information and use it for more scams against you. Sometimes the cybercriminals use the websites to secretly install malware on your device. This malware will steal data from your phone or give the cybercriminals access to hack your device.
Tips to avoid falling for this QR code scam:
- Be suspicious of any package you receive that you did not order, especially if it has no sender information.
- Never scan a QR code from an unknown source you do not trust. Cybercriminals use them to collect personal information and send you to malicious websites.
- Be careful about allowing websites and apps to access your phone’s data after scanning a code. Cybercriminals can use these websites and apps to steal your data or download malware to your device.
Source:
https://consumer.ftc.gov/consumer-alerts/2025/01/scam-alert-qr-code-unexpected-package