Concert QR Code Scam: What It Is and What to Do
You scanned a QR code at a concert — maybe for your e-ticket, an exclusive merch drop, a mobile drink order, or a promotional giveaway — and something didn't feel right. Here's how concert QR code scams work, why live-event crowds are a prime target, and exactly what to do if you already scanned it or paid.
Fake ticket QR codes sold before the show
The most common concert QR scam starts before you ever enter the venue. Scammers list fake tickets on Facebook Marketplace, Craigslist, Instagram, and Twitter at prices that are just low enough to feel like a deal. The “seller” sends you a screenshot of a QR code — or a PDF that looks like an official e-ticket from Ticketmaster, AXS, or Live Nation.
When you arrive and the gate scanner rejects your code, the seller is gone. In some cases, the fraudulent QR code was cloned from a real ticket that was already used, or it was purchased legitimately and then sold to multiple buyers — only the first scan at the gate works.
The rule: never buy concert tickets as a static QR image. Legitimate tickets are transferred through the official app — Ticketmaster's “Transfer Tickets” feature, AXS Mobile ID, or the venue's own app. If a seller can only give you a screenshot or a PDF, treat it as a scam.
Tampered QR codes inside and outside the venue
Once you're at the show, fraudulent QR codes can appear in several places:
- Seat-back stickers and table tents promoting “order drinks to your seat” or “skip the concession line” — these can be placed by scammers, not venue staff. Scanning opens a fake payment page that looks like a real food-and-beverage ordering system.
- Merch-drop flyers near the stage or exits advertising exclusive artist merchandise or limited-edition items available only “tonight via QR.” The page harvests your card details; the merchandise never ships.
- Wi-Fi QR codes on signs in the lobby or parking lot directing you to “free venue Wi-Fi” — the landing page is actually a credential-harvesting captive portal asking for your email and password.
Concerts are the perfect environment for this. Crowds are loud, excitement is high, alcohol is often involved, and most people scan without thinking because they're used to QR menus and mobile ordering. A sticker over a legitimate QR code is easy to miss in dim lighting.
Giveaway and presale QR codes on social media
Before major tours, scammers flood social media with posts impersonating the artist or the venue, announcing fake presales, VIP upgrades, or meet-and-greet giveaways. The post includes a QR code to “claim your spot” or “enter the contest.”
The landing page asks you to enter your email, phone number, and credit card to “verify your identity” or “cover a small processing fee.” Your information is harvested and the opportunity disappears. These posts often come from accounts with a large follower count and a blue checkmark — because on platforms like X (Twitter) and Instagram, verified status can be purchased or faked through account hijacking.
Legitimate presales and giveaways are announced on an artist's official website and through verified ticketing partners — never via a QR code posted on social media. If it requires scanning a QR code and entering payment information, it's a scam.
What to do right now
If you only scanned and closed the page without entering anything: Your risk is very low. Check the URL you saw — if it wasn't the official venue or ticketing platform's domain, report the code to venue staff. Monitor your accounts as a precaution.
If you entered card or payment details:
- Call your bank or card issuer immediately using the number on the back of your card. Report the transaction as fraudulent, request a chargeback, and ask for a replacement card number. Do not wait for the charge to post.
- If you paid via Venmo, Zelle, or Cash App, report the fraud to those services as quickly as possible. Peer-to-peer transfers are harder to reverse, but early reporting maximizes your chances and creates a record.
- File a report with the FTC at reportfraud.ftc.gov. Include any screenshots, transaction IDs, or seller contact information you have.
- Report the fake listing or post to the platform where you found it (Facebook, Instagram, Craigslist, etc.) so it can be removed before others are defrauded.
If you entered your Ticketmaster, AXS, or Live Nation login credentials:
- Go directly to the ticketing platform's website and change your password immediately.
- Enable two-factor authentication if it isn't already active.
- Review your account for any tickets purchased or payment methods added that you don't recognize.
- If you use the same password elsewhere, change those accounts too.
For more detail on what happens when you scan a fraudulent code, see what happens if you scan a fake QR code. For the broader music festival context, see QR code scams at music festivals and concerts.
Frequently asked questions
Can you get scammed by scanning a QR code at a concert?
Yes. Scammers place fake QR codes on flyers, seat-back stickers, and venue signage, and they sell fraudulent e-tickets with counterfeit QR codes through social media and resale sites. Scanning can land you on a phishing payment page or a fake login page. Always buy tickets through the official box office or a verified platform like Ticketmaster or AXS, and use QRsafer to preview any QR code's destination before opening it.
How can I tell if a concert ticket QR code is fake?
Key red flags: the seller sends a static image or PDF rather than transferring via the official app; the price is suspiciously low or high; there is pressure to pay quickly; the QR code leads to a URL that doesn't exactly match Ticketmaster, AXS, or the official venue website. When in doubt, preview the URL with QRsafer before your browser opens it.
I paid for concert tickets through a QR code and they were fake — what do I do?
Call your bank or card issuer immediately, report the charge as fraudulent, and request a chargeback and a replacement card. If you paid via Venmo, Zelle, or Cash App, contact those services' fraud teams right away. File a complaint with the FTC at reportfraud.ftc.gov and report the seller to the platform where you found them.
Check any QR code before you scan
QRsafer previews the destination URL of any QR code — giving you a Safe, Risky, or Dangerous verdict before your browser opens it. Free on iOS and Android.