Massachusetts motorists are seeing a surge in text message-based scams in 2024, with hundreds of residents receiving fraudulent messages claiming to be from the state’s electronic toll collection system, EZDriveMA. The Massachusetts Department of Transportation (MassDOT) has issued warnings about these “smishing” attacks, which attempt to collect personal and financial information from unsuspecting victims. The trend follows similar SMS-based scam patterns that have prompted other jurisdictions to implement protective measures.
The fraudulent messages inform recipients they have unpaid E-ZPass tolls and must click a provided link to settle their bill. “They’re really playing to your psyche, asking you to make sure you avoid these charges and try to do the right thing. And unfortunately, it really gets people roped in,” said MassDOT Highway Administrator Jonathan Gulliver, who explained that scammers typically target phone numbers in areas near tolling authorities, despite not having specific information about their targets.
The toll collection scam represents part of a broader trend in sophisticated mobile threats. Data shows users face between 3-6 threats weekly, potentially encountering up to 600 mobile threats annually. Social engineering-based attacks have increased by 141 percent over the past six months, according to cybersecurity analysts, reflecting a growing sophistication in fraudsters’ targeting strategies.
MassDOT officials emphasize that the agency never requests toll payments via text message. The department advises recipients to ignore and delete such messages immediately, and to contact EZDriveMA directly through official channels if they have concerns about their toll payment status. The guidance matches CISA’s mobile security guidelines, which recommend strict verification of digital communications claiming to be from government agencies.
Common indicators of fraudulent messages include claims of problems requiring immediate action, promises of prizes, and demands for specific payment methods such as cryptocurrency, wire transfers, or gift cards. Security experts recommend that individuals who receive suspicious texts should avoid clicking links, refrain from responding, and never provide personal information. The tactics mirror those seen in recent international smishing campaigns that have prompted coordinated responses from multiple countries.
Victims of text message scams can file complaints through the FBI’s Internet Crime Complaint Center (IC3) or report incidents to the Federal Trade Commission at ReportFraud.ftc.gov. Those who may have clicked on fraudulent links are advised to take immediate steps to secure their financial and personal information and report any unauthorized charges to their financial institutions. The FBI has noted a significant increase in mobile-based fraud, with recent reports showing that similar digital identity schemes have resulted in millions of dollars in losses.
Sources: NBC Boston, Help Net Security, Consumer FTC, CBS News, BleepingComputer
Follow Us