Phishing Scams Using Fake Traffic Fines Target Drivers Globally

According to Bitdefender, the messages created a sense of urgency among recipients, warning them about unpaid tolls, traffic fines, or parking tickets and setting short deadlines, typically between 24 and 72 hours.

The messages threatened consequences such as additional fees, license suspension, legal action, or arrest warrants, prompting victims to click links that led to fraudulent websites designed to resemble official government or toll payment portals.

These websites requested sensitive information, including credit card numbers, personal data, and in some cases, banking credentials.

In certain regions, the campaign went beyond fake payment pages and delivered malware instead, with the goal of extracting personal and banking data, installing malware capable of intercepting SMS messages, accessing sensitive information on a victim’s device, or taking full remote control.

The investigation revealed that the campaign appeared to be highly coordinated, with researchers finding no clear links between the campaigns beyond the use of similar lures.

The campaigns employed tactics such as impersonating legitimate traffic authorities, creating fake websites that mimicked official portals, using shortened links, constantly rotating domains, and exploiting mobile-specific vulnerabilities.

In some cases, users were asked to reply to the message to activate the malicious link, further emphasizing the sophistication of the operation.

The use of tactics such as domain rotation and mobile-specific tricks suggests a high level of coordination and planning among the attackers.