QR code checker

Inspiration

Our hack addresses the escalating threat of financial frauds and ransomware attacks by developing a QR code checker mobile application, designed to combat QR code scams and malware prevalent in Singapore. Recent incidents, such as a woman losing $20,000 to a bubble tea survey scam after scanning a malicious QR code, underscore the growing sophistication and frequency of these scams.

Article that shows the danger:

https://www.straitstimes.com/singapore/woman-who-scanned-qr-code-with-malware-lost-20k-to-bubble-tea-survey-scam-while-she-was-sleeping

What it does

Using Google's Lookup API, our app allows users to scan QR codes and perform comprehensive security checks, alerting users if a QR code is deemed dangerous before they choose to pursue accessing the link through an option within the app itself. The app provides specific reasons for the detected risks, enhancing user awareness and understanding of digital threats. By maintaining an updated list of blacklisted websites and identifying suspicious patterns using Google’s API, our app ensures users are protected against the latest scams.

While tools like Scamshield are effective, they require users to copy and paste URLs, a process that can be cumbersome, especially for the elderly. Our app simplifies this process by enabling direct QR code scanning, making it particularly user-friendly for the aging population. This is crucial given scammers' tactic of placing deceptive QR codes near legitimate scan-to-pay signs, which can easily trick customers.

Our QR code checker app is not limited to identifying QR codes involved in financial frauds. It extends its protective measures to all types of QR codes that have the potential to be dubious, checking for their legitimacy and safety. This includes QR codes that might lead to phishing sites, install malware, or compromise personal data. By providing an easy-to-use, proactive solution, our app helps users avoid downloading malicious apps and visiting harmful websites, ensuring comprehensive digital security.

The Singapore police and Cyber Security Agency have warned about the dangers of downloading apps from dubious sites, which can lead to malware installations on mobile devices. Our app addresses these concerns by preventing QR code scams and assisting users in avoiding risky downloads.

By bridging the gap between current anti-scam solutions and the needs of less tech-savvy individuals, our QR code checker app offers a comprehensive, accessible, and effective approach to enhancing digital security for all users. This is particularly beneficial for the silver population, who may find it easier to scan a QR code directly rather than navigating more complex processes.

In summary, our app not only tackles financial frauds but also protects against a wide range of digital threats, providing a robust solution to ensure the safety and security of users in an increasingly interconnected digital world.

How we built it

TECH STACK

Front-End: Flutter: For building the cross-platform mobile application. Dart: Programming language used by Flutter.

Back-End: Flask Python Requests Library Google LookUp API Google Cloud Platform

CODE DELEGATION

Frontend:
Use the library flutter barcode scanner to scan and decode QR codes.

QR code scanning and decoding.
User interface to display the analysis results. There is a safe/dangerous status that can be seen and there is a button to “see reason why” and it will tell you why it is dangerous

Backend:
- URL analysis pipeline with multiple security checks.
- Integration with third-party services for URL expansion, threat intelligence, and domain checks.