Progressive Insurance QR Code Scam: What It Is and What to Do

How Progressive QR code scams work

Progressive sends more direct mail than almost any other insurer in the United States. That volume of legitimate outreach makes impersonation straightforward: a near-identical mailer with a forged QR code fits naturally alongside the real thing in your mailbox. Scammers exploit this familiarity across three main attack types.

Fake renewal payment QR codes. You receive a mailer or email that looks like a Progressive billing notice — correct logo, Flo branding, and a policy number that resembles yours. A QR code directs you to “pay your renewal premium before your coverage lapses.” The destination is a realistic phishing payment portal designed to capture your card number, billing address, and CVV. Progressive does not route premium payments through QR codes in unsolicited mailers or emails — all legitimate payments happen at progressive.com or in the app.

Fake Snapshot™ enrollment QR codes. Progressive's Snapshot telematics program is well-known and uses an app and a plug-in device to track driving behavior in exchange for a discount. Scammers create near-identical “enrollment” pages or fake Snapshot app listings, reachable by scanning a QR code sent via text or email, or printed on a roadside banner. Instead of installing the real Snapshot app, victims download a malicious app with spyware, or land on a form that collects driving history, date of birth, and vehicle identification number.

“Name Your Price®” rate-quote QR codes. Social media ads, parking-lot flyers, and roadside banners advertise artificially low insurance rates using Progressive's recognizable Name Your Price branding. A QR code leads to a fake quote-comparison page that requests your date of birth, Social Security number, VIN, current coverage details, and contact information — all of which go to the fraudster rather than Progressive. Real Progressive quotes are generated at progressive.com or through a licensed agent, never via an unsolicited QR code.

These tactics belong to the broader category of quishing attacks — QR-code phishing that bypasses email link filters and obscures the destination URL until after you tap.

What Progressive will never ask you to do via QR code

Progressive manages all policy and billing activity through progressive.com and the Progressive app. No legitimate Progressive communication will ever ask you to:

• Pay a premium or renewal fee by scanning a QR code in a mailer or unsolicited email
• Enroll in or re-activate Snapshot™ by scanning a QR code received via text or social media
• Provide your SSN, date of birth, or VIN through a QR code link from an unverified source
• Log in to your Progressive account through a QR code in an unsolicited message
• Supply banking or routing numbers through any externally delivered QR code

When in doubt, call Progressive directly at 1-800-776-4737 to verify any communication before scanning or providing information.

The door-to-door and fake-agent variants of this scam are detailed in our guide to insurance agent QR code scams, which covers how in-person impersonators operate across all major carriers.

What to do right now

Your response depends on what you provided after scanning.

If you only scanned and didn't enter anything: Your risk is low. Close the page, clear your browser cache, and monitor your accounts for 48 hours.

If you entered personal information (name, SSN, driver's license, date of birth, VIN):

1. Place a fraud alert with all three credit bureaus. Contact Equifax, Experian, or TransUnion — one call extends the alert to all three automatically. This makes it harder for a scammer to open new accounts in your name.
2. Consider a credit freeze. A freeze is stronger than a fraud alert and is free at all three bureaus. It blocks new credit from being opened in your name entirely and can be lifted temporarily whenever you need to apply for credit.
3. File a report with the FTC at reportfraud.ftc.gov. This creates an official record and generates a personalized recovery plan.
4. Report to your state's insurance fraud bureau. Most states operate a dedicated insurance fraud division — search “[your state] insurance fraud bureau” for contact information.
5. Call Progressive directly at 1-800-776-4737 to confirm whether the communication was genuine and to flag any risk to your account.

If you made a payment:

1. Contact your bank or card issuer immediately. Credit card chargebacks are possible. Debit card disputes carry a shorter window — act within 48 hours when possible.
2. If you paid via Zelle, Venmo, or Cash App, those payments are generally not reversible, but report the fraud within each platform and to your bank — there may be limited recovery options in some cases.
3. File a police report. Insurance impersonation fraud is a crime. A police report number supports bank disputes and insurance fraud investigations.

For a complete recovery walkthrough, what to do if you scanned a suspicious QR code covers every step in order of urgency.

Frequently asked questions