Scammers are actively deceiving individuals across the United States by sending text messages that masquerade as legitimate “Notice of Default” notifications concerning traffic violations. These fraudulent messages impersonate state courts to pressure recipients into a financial trap, creating a false sense of legal urgency that pushes victims to act before thinking critically about the message’s legitimacy.
The scale of this campaign is notable, with reports of these deceptive texts appearing in multiple states simultaneously, suggesting a coordinated and deliberate effort to exploit Americans who may be genuinely uncertain about whether they have an outstanding traffic violation.
The QR Code Is the Gateway to the Phishing Site
The scam begins with a misleading text message that falsely informs recipients of a supposed traffic violation. The message fabricates urgency by referencing a “Notice of Default,” prompting recipients to act quickly to avoid supposed legal consequences. Central to the operation is a QR code embedded in the text message, which functions as a direct gateway to a phishing site carefully constructed to extract sensitive personal and financial information from unsuspecting victims.
Key elements found on the phishing site include:
- Visual imitation of official state court interfaces to appear legitimate
- Requests for personal identification details from the victim
- A nominal $6.99 fine payment request submitted via credit card
The $6.99 charge is deliberately small to avoid raising immediate red flags. Victims are far more likely to pay a low-dollar fine without questioning it, which is precisely what makes this tactic effective. The real goal, however, is not the small payment — it is the credit card data and personal details entered during the transaction.
Victims Face Serious Financial and Identity Theft Risks
Once a victim accesses the phishing site and submits their information, attackers harvest credit card numbers and personal details that can be used for a wide range of criminal activity, including unauthorized charges, account takeovers, and full-scale identity theft. Because the initial payment appears routine, many victims do not realize their information has been stolen until fraudulent charges begin appearing on their accounts.
The consequences can extend well beyond a single unauthorized transaction, as stolen financial credentials are frequently sold on dark web marketplaces or bundled with other personal data to carry out more sophisticated fraud schemes.
Steps You Can Take to Protect Yourself from This Scam
To reduce exposure to this type of phishing campaign, individuals should put the following practices into place immediately:
- Treat any unsolicited text message referencing legal or financial obligations with skepticism.
- Never scan a QR code received through an SMS message without independently verifying its source.
- Contact the relevant state court office directly using official contact information to confirm whether any notice is legitimate.
- Monitor financial accounts regularly for unauthorized or suspicious transactions.
- Consider placing a credit freeze with major credit bureaus to limit the risk of identity theft if your information has already been compromised.
Reporting This Scam Helps Authorities Track the Campaign
Law enforcement agencies and cybersecurity organizations are urging anyone who receives one of these fraudulent text messages to report it immediately. Reports can be filed with local law enforcement, the Federal Trade Commission, or through the FBI’s Internet Crime Complaint Center at IC3.gov. Prompt reporting helps authorities map the reach of these campaigns and potentially identify those responsible.
Anyone who has already interacted with one of these phishing sites should act quickly by contacting their bank or card issuer to dispute any charges and request a new card number, as well as reviewing account statements for any activity they do not recognize.
