Definition

QR Code Spoofing

Meaning ⎊ Replacing or overlaying legitimate QR codes with malicious ones to trick users into connecting to fraudulent accounts.
Greeks.liveMarch 19, 2026

QR Code Spoofing

QR code spoofing involves replacing a legitimate QR code used for wallet connection or transaction signing with a malicious one. In a financial context, an attacker might overlay a fake code on a legitimate website or redirect a user to a page that displays a code linked to the attacker wallet.

When the user scans the code, they are unknowingly establishing a connection with the attacker or signing a malicious transaction. This attack relies on the user trust in the visual convenience of QR codes.

It is a common vector in phishing campaigns targeting mobile wallet users. To defend against this, users should always verify the source of the QR code and use the built-in security features of their wallet app, which often display the destination address or the nature of the transaction before final approval.

Awareness of this physical-to-digital attack vector is essential for maintaining the security of mobile-based financial interactions.

Algorithmic Monetary Policy
Time-Lock Function
Code Auditing
Code Complexity Risk
Fee Distribution Logic Errors
Arbitrary Code Execution
Checked Math Patterns
Gas Optimization Constraints