Groupon QR Code Scam: What It Is and What to Do
You scanned a QR code to redeem a Groupon deal — at a restaurant, a spa, or from a flyer — and the page that opened asked for unusual information, or something about the business just felt wrong. Your instinct is right to pause. Legitimate Groupon redemptions happen inside the app. Here's what's really going on and what to do.
The three Groupon QR code scams
Groupon's built-in trust — people expect QR codes in the redemption process — makes it an effective lure. Scammers exploit that expectation in three distinct ways.
1. Fake Groupon deals on social media and flyers
A social media post or printed flyer advertises a Groupon deal — a spa package, a restaurant meal, a local service — at an unusually steep discount. The post includes a QR code to "claim your deal" or "create an account to buy."
The QR code leads to a convincing fake Groupon login or sign-up page designed to harvest your email, password, and sometimes credit card details. These pages are built to look indistinguishable from the real Groupon site and are often promoted through paid social ads to reach a large audience quickly. The pattern mirrors what we see in fake coupon QR code scams more broadly.
2. The "upgrade your voucher" text scam
After purchasing a real Groupon deal, you receive a text message claiming the deal terms have changed, the business has moved, or an upgrade is available. The message includes a QR code with instructions to scan and "confirm your booking" or "pay the difference" for the upgraded version.
Scammers obtain your phone number by purchasing data from breach dumps or by targeting people who've publicly mentioned Groupon purchases. The QR code routes to a payment page under the scammer's control. Any amount you pay is unrecoverable, and Groupon will have no record of the transaction because it happened entirely outside their platform.
3. Fraudulent local businesses collecting customer data
A business — real-looking but entirely fake, or a legitimate-sounding listing operated by a scammer — lists a deal on Groupon or a Groupon-imitating site. When you arrive to redeem it, you're handed a QR code to "check in" or "activate your voucher." The form it opens asks for more than any redemption should require: your full name, date of birth, home address, or credit card details "to hold your reservation."
The business may not exist at the address listed, or it disappears shortly after collecting customer data from dozens of buyers. This variant particularly affects restaurant and food service deals — a risk covered in detail in our guide to restaurant QR code scams.
How legitimate Groupon redemptions actually work
Groupon's redemption process is entirely self-contained inside the Groupon app. When you redeem a deal, you open your voucher inside the app and show the barcode or alphanumeric code to the business — the business does not scan a QR code that you've received from anyone else, and Groupon does not send you QR codes to scan.
Groupon will never ask you to:
- Scan a QR code received by text message or email to activate a voucher
- Pay an additional amount via a QR code to "upgrade" a purchased deal
- Provide your credit card details to a merchant QR code at the point of redemption
- Create a new account through a QR code link to access a deal
If a QR code doesn't lead directly to groupon.com, it is not Groupon.
What to do right now
- If you only scanned and didn't enter anything, you're likely fine. Check your device for any new profiles or unexpected app installs. On iOS, go to Settings → General → VPN & Device Management to look for any profile you didn't add yourself.
- If you entered your Groupon login credentials, go directly to groupon.com immediately and change your password. Change it on any account that shares the same password. Review your saved payment methods and order history in Groupon's account settings.
- If you entered payment card details, call your bank or card issuer right away and report it as fraud. Request a new card number. Acting within the first hour gives you the best chance of blocking or reversing the charge.
- If you paid via a payment app, contact that platform's fraud team immediately. Peer-to-peer payments are usually irreversible, but a prompt report creates a paper trail and may open recovery options.
- Report the fraudulent listing. Contact Groupon's customer service and report the business or deal. Include any screenshots, QR code images, and the business name or URL you were directed to.
- File reports with the FTC at reportfraud.ftc.gov and with the FBI's Internet Crime Complaint Center at ic3.gov.
Frequently asked questions
Does Groupon ever ask you to scan a QR code to redeem a voucher?
No. Legitimate Groupon redemptions happen inside the Groupon app or on groupon.com using your in-app voucher code. Groupon will never send you a separate QR code by text or email and ask you to scan it to access your deal. Any QR code claiming to unlock or upgrade a Groupon voucher is a scam.
I scanned a QR code and entered my Groupon login on the page it opened. What should I do?
Act immediately: go directly to groupon.com (not via any link you received) and change your password. If you used the same password anywhere else, change it there too. Check your saved payment methods in Groupon's account settings and review any recent orders for unauthorized purchases. File a report with the FTC at reportfraud.ftc.gov.
How can I tell if a QR code linked to a Groupon deal is safe before I scan it?
Scan it with QRsafer before opening anything — it previews the destination URL and checks it against threat intelligence databases, returning a plain-language Safe, Risky, or Dangerous verdict in seconds. As a rule: if a QR code doesn't lead directly to groupon.com, don't enter any information.
Check any QR code before you scan
QRsafer checks the destination URL before you open it — so you know if a QR code is safe before you tap, pay, or enter any information. Free on iOS and Android.