←back to thread

Bring back menus, QR codes are terrible

(slate.com)
527 points lxm | 1 comments | 29 Jun 21 03:25 UTC | HN request time: 0.257s | source
Show context
shushpanchik ◴[30 Jun 21 11:14 UTC] No.27687181[source]
I was always wondering, how secure are QR code menus? What if someone will quietly put identically looking QR code that would point not to https://coolcafe.xyz/menu/table/5, but to https://thecoolcafe.xyz/menu/table/5, that is a full copy of the legit site, just with payment form logging CC details and then throwing some vague error and then redirecting to legit site (or even more elaborate scam with proxying all requests to legit site and logging all data)? Should be pretty low-effort and low-risk operation to collect CC details. Clients do not know which site they expect to land on when they scan that QR code.
replies(1): >>27687213 #
1. h43k3r ◴[30 Jun 21 11:20 UTC] No.27687213[source]
This has already started happening in India where thiefs are replacing QR codes which are stuck outside of a Shop