Why is no one talking about all the malicious QRcode generators? They come up as top results in major search engines. Most are scams. WTF
I think common sense is probably the reason for this. Don't let anyone have your private keys or use public keys that are generated for you by a third party. This should be a no brainer. You can generate your own QR code using your public key yourself, or I'm sure there are generators out there that provide you with a QR code for payment without needing to be the ones to have access to the private key.
For example, blockchain.com provides you with a QR code for any address automatically just by looking up the address. There is no compromise of your security to use such a QR code for payments. You can also easily check to make sure the QR code is for your address by just scanning it.
https://www.blockchain.com/btc/address/168WXhArv7Fasqvi2xm5MQMfLhG18jifMeIn short, it should be common sense to anyone not to get your Bitcoin keys from someone else (some exceptions like physical Bitcoin wallets, but you shouldn't load them either) and I think that's why people are out warning people not to use malicious QR code generators. Additionally, people shouldn't have their Bitcoin private keys posted publicly, but I don't think we need to have a public discussion about that either.