discord qr code exploit

Discord qr code exploit

Cybercriminals are increasingly using malicious QR codes to trick consumers. You see QR codes just about everywhere these days.

In December, developers at Discord — a voice and text chat app widely used by the gaming community — announced the launch of a QR code feature that enables users to log into the desktop web client using their phone, by scanning the code that appears on-screen. While this feature is aimed at simplifying the Discord login process for desktop users, news has surfaced that fraudsters have been exploiting the system in an effort to gain unauthorized access to accounts. In scanning the code, however, users inadvertently provide the attacker with access to their account. Discussion of the QR code login exploit has taken place on various Discord servers. Opinion is split over the potential severity of this exploit.

Discord qr code exploit

The link looks right but something seems…off. They claim you did things you know you have never done. You might have heard about scams like this happening on Discord recently. Or it might have even happened to you. You may already know some of these tips and tricks, but a refresher never hurts. This is in no way an exhaustive list. While we hope you take the time to read the finer details below, we also wanted to provide a TLDR; some cliff notes to keep in your back pocket:. We are always working behind the scenes to keep Discord safe, but we need your help too! Here are two safety checklists and another article listing common scams to brush up on your defenses—help us make these tips common knowledge for everyone! We recommend getting it checked against a resource like VirusTotal to see if someone has already flagged it as potentially dangerous. Downloading and running programs that someone sends you unprompted is almost always a bad idea. If it sounds too good to be true, it probably is. Sharing your password not only gives away access to your account but also exposes any personal information you have tied to that account — and potentially any website where you use that password — making you vulnerable to more than just a single account takeover. The above tips can be applied anywhere on the internet!

Stay safe out there!

.

For full functionality of this site it is necessary to enable JavaScript. Here are the instructions how to enable JavaScript in your web browser. Around mid-December, Discord launched new functionality that allows users to log into their Discord account by simply scanning a QR code. The idea was simple, and in execution, it worked well; almost instantaneous log-in on your mobile device using a QR code that the desktop version would generate. No good deed goes unpunished, however, and bad actors were quick to attempt to scam users out of their accounts. It could be a permanent loss too, assuming that the legitimate user would change the password before the new user could run through the settings. Discord Nitro is a subscription-based program that is perhaps best heralded as a way to support the international Discord servers, allowing the development team to keep working on new features and ensuring that groups that want to game together, stay together. They do offer a few elements, or goodies, that come along with the subscription.

Discord qr code exploit

QR codes are all the rage and scammers have taken notice. Look out for dangers lurking behind those little black-and-white squares. Cecilia Pastorino. QR codes are having a moment.

Blue dot sessions

Downloading and running programs that someone sends you unprompted is almost always a bad idea. Sign up. However, if you have 2-Factor Authentication enabled on your account, the hacker will also be required to provide a 2FA code to change your password. Note that the QR code has been altered and will not lead to a malicious website. If your account gets compromised, it can have greater effects on communities you moderate. But it will take you to scammy websites designed to get bank account , credit card or other personal information. If the code doesn't look like it fits in with the background, ask for a paper copy of the document you're trying to access or type the URL in manually. Instead of being taken to the city's authorized website or app, however, motorists who scanned the scam stickers were led to a fake website that collected their credit card information. Be vigilant for bots that are impersonating larger well-known bots. We are always working behind the scenes to keep Discord safe, but we need your help too! Bree Fowler writes about cybersecurity and digital privacy. Is it a sticker or part of a bigger sign or display?

In December, developers at Discord — a voice and text chat app widely used by the gaming community — announced the launch of a QR code feature that enables users to log into the desktop web client using their phone, by scanning the code that appears on-screen. While this feature is aimed at simplifying the Discord login process for desktop users, news has surfaced that fraudsters have been exploiting the system in an effort to gain unauthorized access to accounts. In scanning the code, however, users inadvertently provide the attacker with access to their account.

What it boils down to is that QR codes are just one more way for cybercriminals to get what they want and yet another threat people need to be on the lookout for. A screenshot of the scam website drivers were led to when they used their phones to scan malicious QR code stickers on parking meters in Austin, Texas. While this feature is aimed at simplifying the Discord login process for desktop users, news has surfaced that fraudsters have been exploiting the system in an effort to gain unauthorized access to accounts. Just like with keeping your IRL-self healthy and whole, taking preventative measures can keep your virtual self safe and secure. For that reason, consumers should regard any email containing a QR code with suspicion, he says. If the URL looks strange, you might want to move on. If possible, delete references to old invite links and make it known that those links have been updated. However, if you have 2-Factor Authentication enabled on your account, the hacker will also be required to provide a 2FA code to change your password. While we hope you take the time to read the finer details below, we also wanted to provide a TLDR; some cliff notes to keep in your back pocket:. Experts say they still represent a small percentage of overall phishing, but numerous scams involving QR code have been reported to the Better Business Bureau , especially in the past year. The department encourages anyone who thinks they may have had their credit card information stolen by the fake website to contact them.

1 thoughts on “Discord qr code exploit

Leave a Reply

Your email address will not be published. Required fields are marked *