QR code scams
Recently, QR code fraud has been recorded to increase sharply in the world and in Vietnam. Therefore, users need to be careful before scanning QR codes, especially wary of QR codes posted or shared in public places, sent via social networks, emails... Some banks in Vietnam also warn about credit card fraud via QR codes.
Specifically, after making friends through social networks to communicate with victims, scammers will send QR codes for users to scan. This code leads to fake bank websites. Users are asked to enter their full name, citizen identification number (CCCD), account, secret code or OTP, from which their accounts will be taken over. Meanwhile, at crowded payment points such as coffee shops, restaurants... the scam method related to QR codes is to paste over the QR code. That is, the scammer has pasted the QR code over the "real" QR code, the payer will accidentally lose money within seconds. To ensure the safety of paying customers, some restaurants and cafes only paste QR codes right at the cashier counter and always remind customers to be careful when scanning the code.
In addition to the situation of payment QR codes being overwritten, causing money to be transferred to the scammer's account, recently, the phenomenon of malicious QR codes has also been easily spread through articles and images via many messaging applications, forums, and groups on social networks, especially in live broadcast programs (livestream). When readers and viewers scan the code, they will be redirected to gambling advertising pages with malicious code that can be installed on their phones...
The QR code scam that Lam Dong Province Police recently caught red-handed is an example. Through investigation, the police discovered a group distributing leaflets containing pictures of beautiful young girls and QR codes to lure users to scan them to access the website and download the application. However, the application contained malicious software specifically used to steal users' information and data.
In fact, the nature of QR codes is not directly malicious but only an intermediary to transmit content. Therefore, whether users are attacked or not depends on how the content is processed after scanning the QR code. To avoid being scammed through this form, users need to be careful before scanning QR codes, especially wary of QR codes that are posted or shared in public places, sent via social networks, and emails. Users also need to identify and carefully check the account information of the person exchanging the QR code; carefully review the content of the website that the QR code is linked to.
Mr. Nguyen Duy Khiem (Information Security Department, Ministry of Information and Communications) commented that QR codes have become increasingly popular everywhere, not only in Vietnam but also in many countries around the world. Payment methods using QR codes are becoming more and more familiar and popular with many Vietnamese users.
According to statistics from the Payment Department ( State Bank of Vietnam ), QR codes have a strong growth rate in both quantity and value. In 2022, payments via QR codes increased by more than 225% in quantity and over 243% in value. In the first 5 months of 2023, payments via QR code scanning increased by 151.14% in quantity and 30.41% in value over the same period.
The Information Security Department recommends that users should be cautious before scanning QR codes, especially wary of QR codes posted or shared in public places, sent via social networks, or email.
The Information Security Department recommends that agencies, units and organizations providing QR codes pay attention to warnings and propaganda to users and promptly provide solutions to verify transactions with unusual signs; regularly check QR codes posted at the locations of provision.
OTP code and bank account misappropriation
The Payment Department, State Bank of Vietnam has just issued document No. 4893/NHNN-TT to credit institutions, warning about fraudulent methods of stealing OTP codes and bank accounts. Accordingly, the scammer's method is to impersonate a bank employee and call customers with the excuse of supporting balance and transaction checks; when the customer reads the name and the first 6 numbers of the domestic debit card, the subject asks the customer to read the remaining numbers on the card to confirm the correct cardholder.
The scammer then informs the bank that they will send a text message to the customer and asks the customer to read the 6 numbers in the message. In fact, it is an OTP code to make online payment transactions and if the customer follows the scammer's request, the money in the card account will be lost.
The Payment Department also informed that scammers often set up websites impersonating banks to receive and support inquiries about banking services, in order to collect personal information, transaction history and accounts. In addition, scammers send messages impersonating the bank's brand to customers to notify them that their accounts show signs of unusual activity and instruct them to confirm information, change passwords, etc. From there, scammers obtain customers' confidential information to appropriate money in their accounts.
Mr. Vu Minh Hieu, Head of Cyber Security Department, Bkav Group, shared that in many cases, if customers provide confidential information of electronic banking services such as login name, password, OTP code to scammers, it is very easy for their accounts to be taken over. According to Mr. Vu Ngoc Son, Technology Director of Vietnam National Cyber Security Technology Company, to avoid losing bank accounts or having OTP codes taken over, users should absolutely not provide personal information such as login accounts or social network accounts.
“Users should not follow the instructions of strangers to accidentally reveal personal information about bank accounts (account numbers, OTP codes), ID card numbers, phone numbers, and residential addresses. This is a way to protect yourself from online fraud,” Mr. Vu Ngoc Son emphasized.
Online fraud increased by 64%
According to the Vietnam Information Security Warning Portal, in 2022 there were about 13,000 cases of online fraud with two main types of fraud: fraud to steal personal information (accounting for 24.4%) and financial fraud (75.6%). Fraud to steal personal information is also a stepping stone to continue to develop scenarios to carry out financial fraud. The ultimate goal is to defraud and appropriate assets and the method is to exploit the gullibility, lack of access to information, low employment or income, and greed in each person. According to statistics from the Department of Information Security (Ministry of Information and Communications), in the first 6 months of 2023, the situation of online fraud in Vietnam increased by 64% over the same period.
The Ministry of Public Security also announced that there are currently 3 main groups of scams, including brand counterfeiting, account hijacking and other combined forms. With these 3 groups of scams, the Ministry of Public Security divided them into 24 forms of scams such as: "cheap travel combo" scams; Deepfake and Deepvoice video call scams; "SIM lock" scams due to unstandardized subscribers; impersonating teachers and medical staff to report that relatives are in emergency to defraud money transfers; impersonating financial companies and banks... These scams target the elderly, children, students, youth, workers, laborers and office workers. According to the Ministry of Public Security, propaganda, dissemination and awareness raising to equip each individual with basic knowledge and skills to ensure information security in cyberspace is a key factor in helping to create a safe Vietnamese cyberspace, contributing to promoting the digital transformation process and developing a sustainable digital economic and social infrastructure. This is a necessary and urgent task in the digital age, protecting information security for all subjects participating in activities in the network environment.
Source
![[Photo] President Luong Cuong receives President of the Cuban National Assembly Esteban Lazo Hernandez](https://vphoto.vietnam.vn/thumb/1200x675/vietnam/resource/IMAGE/2025/9/30/4d38932911c24f6ea1936252bd5427fa)
![[Photo] Solemn opening of the 12th Military Party Congress for the 2025-2030 term](https://vphoto.vietnam.vn/thumb/1200x675/vietnam/resource/IMAGE/2025/9/30/2cd383b3130d41a1a4b5ace0d5eb989d)
![[Photo] General Secretary To Lam, Secretary of the Central Military Commission attends the 12th Party Congress of the Army](https://vphoto.vietnam.vn/thumb/1200x675/vietnam/resource/IMAGE/2025/9/30/9b63aaa37ddb472ead84e3870a8ae825)
![[Photo] The 1st Congress of Phu Tho Provincial Party Committee, term 2025-2030](https://vphoto.vietnam.vn/thumb/1200x675/vietnam/resource/IMAGE/2025/9/30/1507da06216649bba8a1ce6251816820)
![[Photo] Panorama of the cable-stayed bridge, the final bottleneck of the Ben Luc-Long Thanh expressway](https://vphoto.vietnam.vn/thumb/1200x675/vietnam/resource/IMAGE/2025/9/30/391fdf21025541d6b2f092e49a17243f)
Comment (0)