Gen Z's Understanding of Internal Controls Dominates QRIS Phishing Prevention

Lukiyana Nurul Izza Kartika; Zaky Machmuddah

doi:10.56696/jaka.v6i2.15318

Authors

Lukiyana Nurul Izza Kartika Universitas Dian Nuswantoro
Zaky Machmuddah Universitas Dian Nuswantoro

DOI:

https://doi.org/10.56696/jaka.v6i2.15318

Keywords:

Quishing, Generation Z, Internal Controls, Risk Awareness, Self-Efficacy

Abstract

This study highlights the increasing cases of QRIS phishing targeting Generation Z through social media using various social engineering techniques. The research analyzes the influence of understanding internal controls, risk awareness, and self-efficacy on the effectiveness of QRIS phishing prevention. A quantitative approach was employed with a population of 10,951 active students at Dian Nuswantoro University and a sample of 408 respondents selected through purposive sampling based on their experience conducting QRIS transactions. Data were analyzed using multiple linear regression with SPSS. The results show that understanding internal controls, risk awareness, and self-efficacy have positive and significant effects on QRIS phishing prevention, both simultaneously and partially. Among the three variables, understanding internal controls is the most dominant factor. These findings underscore the importance of strengthening cybersecurity literacy to promote safer digital payment behavior among Generation Z.

References

REFERENCES

Agyemang, J. K. (2021). Internal Control And Fraud Prevention. Journal Of Business And Entrepreneurial Studie, March. Https://Www.Journalbusinesses.Consultorioampuero.Com/Index.Php/Revista/Article/View/234

Anggia, S., & Mutmainah, S. (2025). Can Cash Management System Reduce Fraud Indications In Government Transactions? International Journal Of Science And Society, 7(1), 177–189. Https://Doi.Org/10.54783/Ijsoc.V7i1.1370

Anisa Safitri, & Yuniarti Fihartini. (2024). The Influence Of Perceived Ease Of Use And Security On Qris Usage Decisions Among The Community In Lampung Province. Epaper Bisnis : International Journal Of Entrepreneurship And Management, 1(4), 189–198. Https://Doi.Org/10.61132/Epaperbisnis.V1i4.145

Awuah Amoah, G., & Hayfron-Acquah, J. B. (2022). Qr Code Security: Mitigating The Issue Of Quishing (Qr Code Phishing). International Journal Of Computer Applications, 184(33), 975–8887.

Azhari, F., & Bayunitri, B. I. (2025). The Influence Of Internal Control And Individual Morality On Fraud Prevention In Industrial Garment Company. Assets : Jurnal Ilmiah Ilmu Akuntansi, Keuangan Dan Pajak, 9(1), 94–106. Https://Doi.Org/10.30741/Assets.V9i1.1446

Azizah, N., Dahliani, Y., & Qomaruzzaman Ratu Edi, B. (2023). Pengaruh Citra Merek, Kualitas Produk, Desain Dan Iklan. Jurnal Manajemen Bisnis Dan Manajemen Keuangan, 4(1), 93–107. Www.Jurnal.Itsm.Ac.Id

Crossler, R. E. (2009). Protection Motivation Theory: Understanding The Determinants Of Individual Security Behavior. 169.

Danquah, P., Matey, H. A., & Asiamah, K. (2024). Influence Of Protection Motivation Theory On Information Security Practices: The Case Of Ghanaian Mobile Banking Merchants. Journal Of Applied Science And Information Technology, 1(1), 1–27.

Geisler, M., & Pöhn, D. (2024). Hooked: A Real-World Study On Qr Code Phishing. Http://Arxiv.Org/Abs/2407.16230

Ghozali, I. (2018). Aplikasi Analisis Multivariate Dengan Program Ibm Spss 25 (Edisi 9). Badan Penerbit Universitas Diponegoro.

Hassan, S., Ahmad, R., Katuk, N., Ghazali, N. N., Aripin, J. A., & Ali, F. (2024). Staying One Step Ahead: Exploring Protection Motivation Theory To Combat Cyber-Fraud Among E-Services Users. Procedia Computer Science, 234(2023), 1364–1371. Https://Doi.Org/10.1016/J.Procs.2024.04.011

Indonesia, B. (2025). Capaian Implementasi Qris Semester I 2025. Bank Indonesia. Https://Www.Bi.Go.Id/Id/Publikasi/Ruang-Media/News-Release/Pages/Sp_2717025.Aspx

Indonesia, C. (2024). Bos Ojk Ungkap Uang Hilang Akibat Scam Dan Fraud Capai Rp 25 Triliun. Https://Www.Cnbcindonesia.Com/Market/20241211121934-17-595022/Bos-Ojk-Ungkap-Uang-Hilang-Akibat-Scam-Dan-Fraud-Capai-Rp-25-Triliun

Lau, E. A., & Kulsum, U. (2023). Becoming A Cashless Society: The Role Of Qris From The Z-Generation Student’s Perspective. Journal Of Accounting And Strategic Finance, 6(1), 172–191. Https://Doi.Org/10.33005/Jasf.V6i1.404

Lee, Y. Y., Gan, C. L., & Liew, T. W. (2023). Thwarting Instant Messaging Phishing Attacks: The Role Of Self-Efficacy And The Mediating Effect Of Attitude Towards Online Sharing Of Personal Information. International Journal Of Environmental Research And Public Health, 20(4). Https://Doi.Org/10.3390/Ijerph20043514

Lomas, A. L., & Grauer, G. F. (2013). Re: Tepoxalin No Longer Available Commercially. American Journal Of Veterinary Research, 74(7), 948. Https://Doi.Org/10.2460/Ajvr.74.7.948

Ma, S., & Chen, C. (2023). Are Digital Natives Overconfident In Their Privacy Literacy? Discrepancy Between Self-Assessed And Actual Privacy Literacy, And Their Impacts On Privacy Protection Behavior. Frontiers In Psychology, 14(June 2022), 1–11. Https://Doi.Org/10.3389/Fpsyg.2023.1224168

Maddux, J. E., & Rogers, R. W. (1983). Protection Motivation And Self-Efficacy: A Revised Theory Of Fear Appeals And Attitude Change. Journal Of Experimental Social Psychology, 19(5), 469–479. Https://Doi.Org/10.1016/0022-1031(83)90023-9

Merdeka, S. (2025). Bank Indonesia Catat Pengguna Qris Capai 56,28 Juta Hingga Awal 2025. Https://Surabaya.Suaramerdeka.Com/Ekonomi/106115564093/Bank-Indonesia-Catat-Pengguna-Qris-Capai-5628-Juta-Hingga-Awal-2025#Google_Vignette

Mozes Haryanto Baottong, Al Kausar, Muhammad Imam Taufiq, B. K. (2025). Mitigating Qr-Phishing Risks In Indonesian Digital Payments Through Security Behavior Intentions Scale ( Sebis ). Jurnal Manajemen Perbankan Keuangan Nitro, 1(3), 78–92. Https://Doi.Org/10.56858/Jmpkn.V1i3.757

Pattynama, F. M., Santoso, H. A., Miarsa, F. R. D., & Pribadi, T. (2024). Legal Problems For Quick Response Code Indonesian Standard (Qris) Users In Online Payment Transactions. Anayasa : Journal Of Legal Studies, 2(1), 44–55. Https://Doi.Org/10.61397/Ays.V2i1.183

Puri, L., Kumar, A., & Singh, R. (2025). What Drives Or Discourages Fraud-Safe Behavior In Digital Transactions? A Brt Perspective. Acta Psychologica, 260(September). Https://Doi.Org/10.1016/J.Actpsy.2025.105675

Roemkenya Madolidi Handoyo, B., & Indah Bayunitri, B. (2021). The Influence Of Internal Audit And Internal Control Toward Fraud Prevention. International Journal Of Financial, Accounting, And Management, 3(1), 45–64. Https://Doi.Org/10.35912/Ijfam.V3i1.181

Sharevski, F., Devine, A., Pieroni, E., & Jachim, P. (2022). Phishing With Malicious Qr Codes. Acm International Conference Proceeding Series, 1(1), 160–171. Https://Doi.Org/10.1145/3549015.3554172

Sharevski, F., Mossano, M., Veit, M. F., Schiefer, G., & Volkamer, M. (2025). Exploring Phishing Threats Through Qr Codes In Naturalistic Settings. February. Https://Doi.Org/10.14722/Usec.2024.23050

Shehu, T. S. (2025). Internal Control System And Fraud Mitigation: A Case Of Selected Smes In Nigeria. Asian Journal Of Advanced Research And Reports, 19(4), 301–315. Https://Doi.Org/10.9734/Ajarr/2025/V19i4985

Singkeruang, A. W. T. F., Susanto, S. E., & Saeni, N. (2025). Mitigating The Risk Of Qushing Threats (Qr Phishing) Using The Security Behavior Intentions Scale (Sebis) In Supporting Digital Economic Security. Paradoks : Jurnal Ilmu Ekonomi, 8(2), 685–696. Https://Doi.Org/10.57178/Paradoks.V8i2.1196

Xinyan Ding. (2024). The Effectiveness Of Internal Control Systems In Preventing Financial Fraud: A Case Study Of Multinational Corporations. Economics & Management Information, September 2024, 1–5. Https://Doi.Org/10.62836/Emi.V3i4.231