QR Phishing: Why Scanned Codes Can Be Risky
QR codes can hide links. Learn how QR phishing works and how to check destinations before trusting them.
QR codes hide URLs
A QR code is just a link that is hard to read with your eyes. That makes it convenient and risky at the same time.
Common QR phishing situations
Fake parking payments, delivery notices, restaurant menus, crypto wallet prompts, and stickers placed over real codes are common risk contexts.
Preview before opening
Most phones show the destination before opening it. Read the domain and stop if it looks unrelated, shortened, or urgent.
Businesses need official link lists
Companies that use QR codes should make official links easy to verify and provide a path for customers to report suspicious codes.
What CheckLink checks
Paste the QR destination into CheckLink to inspect redirects, final domain, and available trust signals before interacting with the page.
Checklist
FAQ
Is scanning a QR code always dangerous?
No. The risk comes from the destination and what the page asks you to do.
Can I check a QR link?
Yes. Copy or preview the URL, then scan it with CheckLink.
Related guides
Use CheckLink before the next click
CheckLink provides risk signals and review paths. It does not guarantee that a website is risk-free.