TLDR
Scammer places fake QR sticker on table at busy restaurant. Customers scan, land on a clone of the restaurant's order page that captures card + personal info, or on a wallet drainer 'connect to view menu' page. Tells: 1) URL not matching...
How it works
Scammer places fake QR sticker on table at busy restaurant. Customers scan, land on a clone of the restaurant's order page that captures card + personal info, or on a wallet drainer 'connect to view menu' page. Tells: 1) URL not matching...
Red flags
- Urgent pressure to click, pay, or share codes immediately.
- A link or sender that does not match the official organization.
- Requests for card data, passwords, OTPs, wallet signatures, or bank transfers.
What to do
- 1IF VICTIM: block card, dispute charges, revoke any wallet approvals (Etherscan token approval revoke), report to local police.
Source
UK-NCSC
Source reviewed by Mythos Forensic Team
https://www.ncsc.gov.uk/guidance/qr-codes-what-you-need-to-knowFAQ
Is Quishing via restaurant QR menu — drainer or fake order form a real scam pattern?
Yes. Treat the message, call, or payment request as suspicious until you verify it through an official channel.
What are the first warning signs?
Urgent pressure to click, pay, or share codes immediately.; A link or sender that does not match the official organization.; Requests for card data, passwords, OTPs, wallet signatures, or bank transfers.
What should I do first?
IF VICTIM: block card, dispute charges, revoke any wallet approvals (Etherscan token approval revoke), report to local police.
Can LegalAudit check my case?
Yes. Start a free chat and paste the message, link, sender, or payment details for triage.