QR Code Phishing Security Test Product Manual
You can use our free QR Code Phishing Security Test to see how vulnerable your users may be to QR code phishing attacks.
QR codes are scannable barcodes that contain data, such as links or digital business cards, in a compact format. If your users scan a malicious QR code, they could be prompted to visit a dangerous website.
To teach your users about QR code phishing attacks and other threats, we recommend enrolling them in security awareness training. If you’re interested in KnowBe4’s training and phishing features, you can request a demo here.
See the sections below to complete your free QR Code Phishing Security Test. If you have any questions about this tool, please reach out to our support team for further assistance.
Note: This test does not require any additional software and is limited to 100 employees.
Signing Up for a Free Account
To sign up for a free account, follow the below steps. If you already have a free account, skip to the Setting Up a QR Code Phishing Security Test section of this article.
- Sign up for a free account here: KnowBe4 Free QR Code Phishing Security Test.
- After entering your information on the right side of the page, click Get Started or click the link provided in the email we will send you.
- On the next page, enter your work email address. After you enter your email addresses, click Next to create a free account.
Note: Email addresses of publicly-available email services like Hotmail and Gmail cannot be used when signing up for the free QR Code Phishing Security Test. Any email addresses that are not from the same domain as the corporate email address used for registration will not be valid.
- You will receive an email asking you to activate your account. Click the link in the email to activate your free account.
- After you click the link, you will need to set up your free account. Enter your first and last name as well as a password for the account. Then, click Save & Continue.
- As the first person to log in under your domain, you will be automatically set up as the Account Owner. Proceed to step three under the Setting Up a QR Code Phishing Security Test section of this article.
Setting Up a QR Code Phishing Security Test
To set up a QR Code Phishing Security Test, follow the below steps.
Note: Before setting up this test, you must whitelist KnowBe4 in your mail server and any spam filters that you’re using. Your mail server or mail filter may use rate limiting, which could prevent many emails from being delivered at once. Your settings may need to be adjusted. For more information, see our Whitelisting Data and Anti-Spam Filtering Information article.
- Log in to your free KnowBe4 account.
- Under the Free QR Code Phishing Security Test section, click the Get Started button.
- Choose which style of template you would like to use. We have three template options: Review Document, Voice Message, and HR Survey. Review Document will be selected by default. You can also choose the language for the template by clicking the language drop-down menu. English (United States) will be selected by default.
- Click Next Step.
- On the Choose Email Recipients page, choose who you’d like to send this phishing test to. You can enter up to 100 email addresses from your organization. Enter the email addresses in the space provided with one email address on each line. Do not use commas or spaces between email addresses.
Tip: You can import your users if you have already used the free Phishing Security Test (PST) or the free Phishing Reply Test (PRT). To import your users, navigate to the Import from: drop-down menu and select either Free PST or Free PRT.
- Click Next Step.
- On the Landing Page page, choose which landing page you would like your users to see upon failing the test. You can select a 404 error page so that the user may assume they clicked on a broken link. Or, you can select our Social Engineering Indicators (SEI) landing page, which lets the user know they failed a phishing test and teaches them about the red flags that they should have looked out for.
Note: The SEI landing page is selected by default.
- Click Next Step.
- On the Review & Launch page, review your information before launching your free QR Code Phishing Security Test. If you haven’t already done so, make sure that you whitelist KnowBe4’s mail servers and ensure that you can receive our phishing test emails.
- After whitelisting, click the Preview and Send Test Email button. A pop-up window will open that will display what the email will look like when your users receive it. After previewing the email, you can send yourself a test email by clicking the Send Me a Test Email button in the top-right corner of the pop-up window.
- After sending the test email, check your inbox and make sure you’ve received it. This email may take up to 10 minutes to send. You can also check the Test Email Delivery section towards the bottom of the Review & Launch page.
Note: If you don’t receive the email or it’s filtered by your mail server, please see our Whitelisting Data and Anti-Spam Filtering Information article.
- Once you are ready to start your test, click the Start Your Free QR Code PST Now! button. The test will send emails to your selected recipients and track QR code scans for three days.
Analyzing Your Results
After you run the test, you can view your results on the Dashboard page of your free KnowBe4 account. You will be able to view your QR Code Scanned Percentage, which will show your organization’s vulnerability to QR phishing attacks.
You can download a PDF report from the results page or from an email automatically sent to you after 24 hours. If you want to know who replied to the tests, your representative or reseller can get that information for you. If you do not know who your representative or reseller is, submit a ticket to our support team.