QRsafer LogoQRsafer

State Farm QR Code Scam: What It Is and What to Do

A convincing State Farm mailer lands in your mailbox with a QR code telling you to pay your bill now or risk policy cancellation. Or a text arrives claiming your claim is ready for settlement — just scan to confirm. These aren't from State Farm. They're quishing attacks — QR-code phishing scams — designed to steal your payment details, personal data, or install spyware on your phone.

How State Farm QR Code Scams Work

Fake bill-payment mailers. Scammers print near-identical copies of State Farm's paper billing notices and mail them to policyholders. The forged mailer includes a QR code labeled "Pay now to avoid policy cancellation." Scanning it takes you to a realistic-looking payment portal that captures your card number, routing number, or banking credentials — none of which ever reach State Farm.

Claim-settlement texts during disasters. After hurricanes, wildfires, or floods, when policyholders are actively managing claims, fraudsters send SMS messages impersonating State Farm's claims department. The message says your settlement is ready and provides a QR code to "confirm your details." The link harvests your SSN, date of birth, and banking information.

Counterfeit Drive Safe & Save enrollment codes. State Farm's legitimate telematics discount program uses an app. Scammers create fake enrollment QR codes — often shared on social media or sent via text — that point to a cloned app outside the official app stores. Installing it loads spyware that logs keystrokes, tracks location, and accesses stored passwords.

Agent impersonation at events or on door-to-door flyers. Someone posing as a State Farm agent hands you a business card or flyer with a QR code to "get a free quote" or "update your policy." The form behind the code collects your SSN, vehicle identification number (VIN), and household income — more than enough to commit identity theft or apply for fraudulent credit.

What State Farm Will Never Ask You to Do via QR Code

  • Pay a bill or avoid cancellation by scanning an unsolicited QR code in a mailer or text you didn't initiate
  • Enter your full card number, bank account number, or routing number through a QR code link
  • Install the Drive Safe & Save app from any source other than the Apple App Store or Google Play Store
  • Provide your SSN, VIN, or date of birth through a QR code sent by a text, email, or business card you weren't expecting
  • Confirm a claim settlement by scanning a code — claim management happens inside the State Farm app or at statefarm.com

What to Do Right Now

If you received a suspicious State Farm QR code but haven't scanned it:

  1. Do not scan it.
  2. Verify any billing or claim notice by logging in directly at statefarm.com or calling the number on your policy documents.
  3. Report the fake mailer or message to State Farm's fraud line so they can warn other customers.

If you scanned the QR code but didn't enter any information or install anything:

  1. Close the browser tab immediately.
  2. Monitor your State Farm account and financial accounts for unusual activity.
  3. Run a QR code safety check on any other codes you receive before scanning.

If you entered payment details or personal information:

  1. Contact your bank or card issuer immediately — freeze or replace the compromised card or account.
  2. Place a fraud alert or credit freeze with the three major credit bureaus (Equifax, Experian, TransUnion).
  3. File a report with the FTC at reportfraud.ftc.gov and report to your state's attorney general.
  4. Read the full guide: What to do if you scanned a suspicious QR code.

If you installed an app from the fake Drive Safe & Save link:

  1. Delete the app immediately.
  2. Run a security scan using your device's built-in security tools or a trusted antivirus app.
  3. Change passwords for every account you accessed from that device, starting with email and banking apps.
  4. Enable two-factor authentication on critical accounts.

Frequently Asked Questions

Does State Farm send QR codes to pay bills or enroll in programs?

State Farm does use QR codes in some official communications, but it will never send an unsolicited QR code demanding immediate payment to avoid policy cancellation, nor will it ask you to scan a code to enroll in Drive Safe & Save through a text message you didn't request. Manage your policy, payments, and program enrollments directly at statefarm.com, in the official State Farm mobile app, or by calling your agent.

What are the most common fake State Farm QR code scams?

There are four main variants: (1) Fake physical mailers that look like State Farm billing notices with a QR code to 'pay now and avoid cancellation,' routing you to a card-skimming portal. (2) Claim-settlement or claim-status texts sent during natural disasters impersonating the claims department. (3) Counterfeit Drive Safe & Save enrollment QR codes that install a spyware-laced fake app instead of the real telematics program. (4) Agent impersonation via QR codes on business cards or flyers that collect your SSN, VIN, and personal data under the guise of getting a quote.

What should I do if I scanned a fake State Farm QR code?

If you only scanned but didn't enter information or install an app, monitor your accounts closely. If you entered payment or personal details, contact your bank or card issuer immediately to freeze or replace your card, place a fraud alert with the credit bureaus, and report the incident to the FTC at reportfraud.ftc.gov. If you installed an app from the link, remove it right away, run a security scan, and change passwords for any accounts you accessed from that device. You can also report the scam to State Farm directly so they can warn other policyholders.

Scan smarter — check before you tap

QRsafer previews the destination URL before your browser opens it, flags known phishing domains, and warns you when a QR code leads somewhere unexpected. Free for iOS and Android.

Download for iOSDownload for Android

Related Guides