US cities warn of wave of unpaid parking -phishing texts

US cities warn of an ongoing mobile phishing campaign that specifies to be texts from the city’s parking injury departments to unpaid parking bills, which arise in the event of unpaid additional fines per day.

During Park fraud for years there has been a massive wave of Phishing text messages that have prompted numerous cities in the United States for years, including Annapolis, Boston, Greenwich, Denver, Detroit, Houston, Milwaukee, Salt Lake City, Charlotte, San Diego, San Francisco and many others.

The current wave of text started last December and has continued since then. Bleeping computer received a text on the residents of New York at the beginning of this week.

The SMS received by Bleeping Computer claims to come from the city of New York, about unpaid parking bills that meet a fine of 35 US dollars every day if they are not paid. The text then calls you on visiting a closed link to pay the fine.

“This is a last memory of the city of New York in relation to unpaid parking bill. A daily overdue fee of 35 US dollars is calculated if the payment is not made today,” says the phishing text.

The same phishing template is used in texts for unpaid parking bills from other cities that are seen by pleeping computers.

To avoid this, the fraudsters on Google.com use an open forwarding to lead users to a phishing website named after the city that runs out. For example, the phishing location for New York City Nycparkclient (.) Com.

Last year Apple introduced a security function that deactivates links in text messages from unknown senders and suspicious domains.

Since Google.com is a trustworthy domain, Apple Imessage does not disable the link. The use of the company’s Open Redirect makes it easier to get unsuspecting users to accidentally click on the link.

In the New York City Phishing campaign, you bring “NYC Department of Finance: Parking and camera violations” to be with which you can enter your name and postal code.

At this point, you can enter any name and the postcode and be brought to one side: “Your vehicle has unpaid parking bill in the city of New York. To avoid late fees of 35 US dollars, please restrict your remaining amount.”

The remaining amount owed varies per campaign, which was preserved by Bleeping computer that we owed 4.60 US dollars.

However, as you can see from the following pictures, there is a distributed sign that it is a fraud, since the dollar sign is shown after the amount and not beforehand, as is common in the USA. This further indicates that the phishing fraud was created by people outside the United States.

If you click on the “NOW demand” button, you will get to the screen on which the threat players try to steal your data, including your name, address, telephone number, the e -mail address and ultimately your credit card information.

This information can then be used for a variety of malignant activities, including other phishing attacks, identity theft, finance fraud and the sale of your data to other threats.

If you usually receive a text from an unknown telephone number or email address that is a rash greeting or asks you to click on a link, pay an invoice or answer in any way, you should report and block the number instead.