Beware of Mobile Phishing Scams Targeting Parking Violations in US Cities

US Cities Warn of Widespread Mobile Phishing Scam Targeting Parking Violations

In a growing wave of cybercrime, cities across the United States are alerting residents about a sophisticated mobile phishing campaign masquerading as parking violation notifications. The scam, which has gained traction since last December, involves text messages claiming to be from local parking departments, threatening recipients with a $35 daily fine for unpaid invoices.

Cities including New York, Boston, Denver, and San Francisco have reported similar phishing attempts, with messages urging recipients to click on a link to settle their alleged debts. A recent example received by BleepingComputer read, "This is a final reminder from the City of New York regarding the unpaid parking invoice. A $35 daily overdue fee will be charged if payment is not made today."

The scam operates by using an open redirect on Google.com, allowing the link to appear legitimate. When users click the link, they are directed to a phishing site that mimics the official city finance department, requesting personal information such as names, zip codes, and credit card details. Notably, the site displays the dollar sign after the amount owed, a clear indication of its fraudulent nature, as this format is uncommon in the U.S.

Experts warn that falling victim to this scam could lead to identity theft and financial fraud. Apple has introduced security features to help combat such threats, but the use of trusted domains like Google makes it easier for scammers to deceive unsuspecting users.

Authorities urge the public to remain vigilant. If you receive an unexpected text asking for payment or personal information, it’s best to report and block the number rather than engage. As phishing tactics evolve, awareness and caution remain the best defenses against these malicious schemes.