low

Traffic violation scams switch to QR codes in new phishing texts

April 6, 2026·BleepingComputer·Threat Intel
phishingqr-codesmobile-securitysocial-engineering

Traffic Violation Scammers Weaponize QR Codes in Nationwide Text Campaign

TL;DR: Cybercriminals are sending fake traffic violation texts impersonating state courts, using QR codes to direct victims to phishing sites that steal personal and payment information for a bogus $6.99 fine. The campaign exploits people's fear of legal consequences and the convenience of mobile payments.

What Happened

According to BleepingComputer, scammers have launched a sophisticated text message campaign targeting smartphone users across the United States. The fraudulent messages pose as "Notice of Default" communications from state courts, claiming recipients have unpaid traffic violations. Instead of including traditional malicious links, these messages now embed QR codes that victims scan to access fake payment portals.

The scam leverages urgent language and official-sounding legal terminology to pressure recipients into immediate action. Once scanned, the QR code redirects users to convincing phishing websites that mimic legitimate court payment systems, requesting both personal information and credit card details to process a $6.99 "fine."

Technical Analysis

This campaign represents a notable evolution in phishing tactics. QR codes offer several advantages to attackers:


The phishing sites reportedly use HTTPS encryption and professional design elements to appear legitimate. They collect standard personally identifiable information (PII) including names, addresses, and phone numbers alongside complete payment card details.

Impact & Who's Affected

This campaign targets the general public nationwide, with messages impersonating courts from multiple states. The $6.99 amount is strategically chosen—small enough that many victims pay without extensive verification, yet large enough to generate significant revenue when scaled across thousands of targets.

Beyond immediate financial loss, victims face:


What You Should Do

For Individuals:
1. Verify independently: Contact the court directly using official phone numbers found on government websites, never numbers provided in suspicious messages
2. Check official channels: Legitimate traffic violations typically arrive via postal mail with specific citation numbers
3. Examine the QR code source: Screenshot and reverse-search QR codes using tools like Google Lens before scanning
4. Trust your instincts: Urgent payment demands via text message are virtually always fraudulent

For Organizations:
1. Update security awareness training to include QR code phishing scenarios
2. Deploy mobile device management solutions that can scan and block malicious QR codes
3. Implement email/SMS filtering that analyzes embedded images for suspicious QR codes

The Bigger Picture

This campaign highlights how cybercriminals continuously adapt their tactics to exploit both technological trends and human psychology. QR codes experienced massive adoption during the COVID-19 pandemic for contactless interactions, creating a trusted user behavior that attackers now exploit.

The targeting of legal processes is particularly insidious—it exploits citizens' civic responsibility and fear of legal consequences. This psychological manipulation, combined with the technical sophistication of QR code obfuscation, makes these scams especially effective.

Security practitioners should expect QR code abuse to increase as traditional link-based phishing becomes less effective. The challenge lies in educating users about QR code risks without completely undermining the legitimate convenience they provide in daily digital interactions.

Source: Original reporting by BleepingComputer

← All Threat IntelSource: BleepingComputer