New QR Code Phishing Scams Exploit Traffic Violation Notices in the US

Severity: Medium (Score: 51.9)

Sources: Technadu, Bleepingcomputer

Summary

Scammers are targeting US residents with fraudulent 'Notice of Default' traffic violation texts that impersonate state courts. These messages pressure recipients to scan QR codes leading to phishing sites demanding a $6.99 payment while stealing personal and financial information. The campaign, which began a few weeks ago, has affected multiple states including New York, California, and Texas. Unlike previous scams that used direct URLs, this iteration employs images of fake court documents with embedded QR codes. After scanning, victims must solve a CAPTCHA before being redirected to phishing sites mimicking local DMV agencies. The fraudulent sites collect sensitive personal information, enabling identity theft and financial fraud. Authorities warn that legitimate agencies do not request payment via text messages. The campaign reflects an evolution in SMS phishing tactics, increasing the urgency for public awareness and cybersecurity vigilance. Key Points: • Scammers use QR codes in SMS phishing targeting traffic violations. • Victims are pressured to pay $6.99, leading to personal data theft. • The campaign has spread across multiple states, including New York and California.

Key Entities

• Phishing (attack_type)
• ny.gov (domain)
• T1041 - Exfiltration Over C2 Channel (mitre_attack)
• T1566.002 - Spearphishing Link (mitre_attack)
• T1566 - Phishing (mitre_attack)