Scammers are targeting U.S. drivers with fake traffic violation text messages that include QR codes, aiming to steal personal and payment information.
Scammers are increasingly sending fraudulent text messages to drivers across the United States, claiming they have outstanding traffic violations. These messages often include QR codes that, when scanned, lead victims to fake payment sites designed to steal personal information.
The scam typically begins with a text notification alerting the recipient of an alleged traffic violation. The message often demands immediate payment of a suspiciously low amount, such as $6.99, to avoid a court appearance. While the message may appear official and urgent, it is entirely fabricated.
This wave of scams has reportedly affected residents in multiple states, including New York, California, North Carolina, Illinois, Virginia, Texas, Connecticut, and New Jersey. As the scheme continues to spread, it shows no signs of abating.
Previously, similar scams, known as “smishing,” have targeted individuals by impersonating state toll agencies. However, this latest variation employs a more sophisticated approach. Instead of using plain text links, these messages feature images that resemble official court notices, complete with formal language and official-sounding headings.
One example shared by Bleeping Computer claimed to originate from the “Criminal Court of the City of New York.” The notice warned recipients that an unpaid parking or toll violation had entered the “formal enforcement stage,” demanding immediate payment or an in-person court appearance. It is important to note that legitimate courts do not communicate via unsolicited text messages containing QR codes.
When victims scan the QR code, they are directed to an intermediary page that includes a CAPTCHA. This step is intentionally designed to filter out security researchers and automated scanners, allowing the scammers’ phishing infrastructure to remain undetected for longer periods.
After completing the CAPTCHA, victims are redirected to a site that mimics their state’s Department of Motor Vehicles (DMV) or another government agency. The site presents an “unpaid balance” of $6.99, a figure that creates a sense of urgency without raising immediate suspicion.
Clicking to pay leads victims to a form requesting personal information, including name, address, phone number, email address, and credit card details. All information entered is sent directly to the scammers, who may use it for identity theft, financial fraud, or sell it to other malicious actors.
For instance, fraudulent New York DMV sites involved in this scam have used deceptive hostnames such as “ny.gov-skd[.]org” and “ny.ofkhv[.]life,” which are not affiliated with any legitimate New York state government infrastructure.
While these scams are sophisticated enough to deceive many, there are several proactive measures individuals can take to protect themselves. The most crucial step is to avoid scanning QR codes from unknown senders. If you receive a text from an unrecognized number requesting payment or urging you to scan a code, treat it with suspicion.
State agencies across the U.S. have made it clear that they do not send unsolicited text messages asking for personal information or payment details. If you genuinely owe a fine, you will receive official correspondence through the mail, complete with verifiable contact information.
It is advisable never to enter credit card information on a site accessed via a QR code in a text message. Instead, visit your state’s official .gov website directly by typing the address into your browser to check your account status. If a charge is legitimate, it will be reflected when you log in through the official site.
Utilizing strong antivirus software adds an essential layer of protection. A reliable security application can detect phishing attempts, flag malicious sites, and alert you to threats that may arrive through text or email. Ensure that your antivirus software is active and updated on all devices used to open links or scan QR codes.
If you suspect that your personal information has been compromised through a scam, consider using a data removal service. These services can scan databases for your personal information and request its removal, reducing your exposure to future scams.
Additionally, identity theft protection services can monitor your accounts and alert you to suspicious activity. Some services also offer recovery assistance and insurance in case your identity is compromised, making it easier to manage the situation.
If you have already entered your payment information on a fraudulent site, contact your bank or credit card issuer immediately to dispute any unauthorized charges and request a new card number. It is also wise to check your credit reports for any unusual activity and consider placing a fraud alert with one of the major credit bureaus.
If you receive one of these fraudulent texts, report it by forwarding the message to 7726 (SPAM), a carrier reporting shortcut used across major U.S. networks. You can also file a complaint with the Federal Trade Commission at reportfraud.ftc.gov and alert your state’s attorney general’s office.
This scam exploits the anxiety many people feel when faced with government notices demanding immediate action. The combination of fake court language, a formal tone, and embedded QR codes is designed to bypass skepticism. However, legitimate courts do not send text message ultimatums with QR codes, and no state DMV requests payment through a QR code from an unknown sender.
As this scam continues to evolve, it serves as a reminder of the importance of vigilance and skepticism when receiving unexpected communications. If something feels urgent and slightly off, it is often a sign of a scam.
For further information and updates, visit CyberGuy.com.