In a world of evolving technology and increasing reliance on digital transactions, the U.S. Army in South Korea has found itself targeted by a new type of cyber threat involving deceptive QR codes. Soldiers and civilians alike have been issued a stark warning regarding fake parking notices that could compromise personal and operational security.
Col. Juan Martinez, an Army spokesman, informed the public via a Facebook post that the Korea National Police Agency issued an advisory alerting individuals to the appearance of bogus parking notices. These notices, meant to deceive, are designed to resemble legitimate warnings for illegal parking. Unlike real citations, which are mailed to registered addresses or sent via text for toll violations, these fraudulent stickers and flyers lure individuals to malicious websites through QR codes.
The imitation notices, which bear a bright-yellow color and parallel red lines, present various alleged violations and urge drivers to “be sure to use the [code].” As Martinez cautions, legitimate notices do not contain QR codes and do not require drivers to pay fines through such means.
The deceptive use of QR codes is not isolated to parking notices. Reports indicate that across South Korea, other illicit activities have involved QR codes, including promoting illegal substances at universities and malicious websites on electric scooter rentals.
Army Criminal Investigation Command’s Major Cybercrime Unit also raises the alarm on the increasing misuse of QR codes, a trend that has surged amid the COVID-19 pandemic’s push towards touch-free interactions. ThreatPost.com, a cybersecurity website, notes that while not rampant, QR code frauds are developing in numerous ways, from adding harmful contacts to initiating unauthorized payments.
Protection from these schemes requires vigilance. The Federal Trade Commission suggests skepticism towards unexpected QR codes and advises against acting hastily when prompted by a sense of urgency. Users should inspect URLs before opening them and refrain from scanning QR codes from unknown emails or text messages. Additionally, phone operating systems should be updated, and online accounts secured with strong passwords and multi-factor authentication.
Even the US forces in South Korea were not immune to related cybersecurity breaches when they received fake, urgent messages telling them to evacuate the country immediately. These hoaxes, delivered via SMS and Facebook, were swiftly debunked by Army officials. However, they underscore the absence of a secure method for disseminating such critical alerts, leaving verification of sender legitimacy as the primary defense.
Relevant articles:
– Army warns troops about deceptive QR codes on bogus parking notices in South Korea, Stars and Stripes
– Scammers hide harmful links in QR codes to steal your information, Federal Trade Commission (.gov)
– CID Lookout: Army CID Cautions Rise in QR Code Scams, Army CID (.mil)
– US forces in South Korea receive fake, urgent message telling them to evacuate immediately, The Independent