I see your point, but that seems highly improbable. That a bad actor would be willing and able to successfully create a QR Code that looks enough like the restaurant’s QR and that neither the patrons nor the establishment itself would notice. Not only improbable, but the roi for the scammer seems very poor.
No one working at the restaurant is analyzing the pixels in a QR code to see if they are in the right spot. A QR looks like a QR code. Show someone 10 QR codes and ask them to pick the one from their restaurant, no way anyone is getting that right based on anything more than dumb luck.
The fake one could even forward on to the normal menu after it does the nasty bits, assuming it’s just installing something that will run in the background. This seems like a great way to get some malware out into the wild, especially if it can’t self-replicate.
Removed by mod
Even a restaurant’s legit web site may require cookies or some other thing that not everyone is comfortable with
I see your point, but that seems highly improbable. That a bad actor would be willing and able to successfully create a QR Code that looks enough like the restaurant’s QR and that neither the patrons nor the establishment itself would notice. Not only improbable, but the roi for the scammer seems very poor.
No one working at the restaurant is analyzing the pixels in a QR code to see if they are in the right spot. A QR looks like a QR code. Show someone 10 QR codes and ask them to pick the one from their restaurant, no way anyone is getting that right based on anything more than dumb luck.
The fake one could even forward on to the normal menu after it does the nasty bits, assuming it’s just installing something that will run in the background. This seems like a great way to get some malware out into the wild, especially if it can’t self-replicate.