Fake DMV or vehicle registration renewal phishing — fraudulent email impersonating a state Department of Motor Vehicles, DMV renewal service, or motor vehicle division claiming the recipient's vehicle registration has expired, is past due, or has an unpaid fine outstanding — directing them to click a link or visit a portal to pay the registration fee online immediately to avoid penalties, suspension, or cancellation — a smishing and phishing scam that spikes around registration renewal periods

Phishing emails impersonating state Departments of Motor Vehicles, DMV renewal portals, or motor vehicle agencies — claiming the recipient's vehicle registration has expired, is past due, delinquent, or carries an unpaid fine — then directing them to click a link or visit a fraudulent portal to pay the registration fee immediately online to avoid further penalties, late fees, or vehicle suspension. This attack vector is particularly effective as vehicle registration renewal is a universal, recurring obligation. Key facts: (1) DMV/vehicle registration smishing and phishing surged dramatically from 2021–2024 — the FTC and multiple state attorney general offices (California, Texas, Florida, New York) issued specific consumer alerts; California DMV alone reported over 10,000 smishing complaints in a single 2023 campaign; (2) Attackers use geo-targeted delivery — purchasing regional residential data to send fake DMV notices to residents of specific states where registration fees are highest (California, Texas, Florida) around peak renewal months (March, July, October based on registration anniversary dates); (3) The fee collected ($35–$150 fake "registration fee") provides direct financial harm, and payment card data harvested enables larger follow-on fraud; some campaigns also harvest driver's license numbers and addresses for identity theft; (4) All 50 US states provide official online renewal through .gov portals — no state DMV sends unsolicited "pay now or face suspension" emails with third-party payment portals. Warning signs: non-.gov sender domain, urgent suspension threat, payment link to non-government portal, request for card details or driver's license number via email.