This cluster centers on a debt collection operation presenting itself as Harris & Harris, a company claiming to collect on behalf of government clients including the Oklahoma Turnpike Authority and the Government of Washington, D.C. The operation uses the domain hhcollect.co, registered on January 9, 2024, through GoDaddy.com, LLC, and the toll-free number 866-659-4104. These two entities have been reported together in community submissions, with a confidence score of 0.50 across two recorded relationship instances.
Consumer-submitted reports describe receiving unsolicited text messages originating from shortcode 69534. The messages follow a consistent template: they announce enrollment in Harris & Harris text notifications, reference a specific government client as the creditor, cite a balance owed, and direct recipients to hhcollect.co for payment. One report references a specific balance of $348 allegedly owed to the Government of Washington, D.C. The payment links include personalized or semi-personalized URL paths appended to the hhcollect.co domain, a tactic consistent with phishing infrastructure designed to track individual targets or present tailored pages.
The domain hhcollect.co was registered in early 2024, indicating a relatively recent operation. There are currently zero FTC complaints on record for 866-659-4104, which may reflect underreporting, the campaign's early stage, or the use of rotating contact vectors that distribute complaint volume. The BBB has flagged at least one of the reported incidents under the scam category of Debt Collections, with the business name recorded as Harris & Harris.
The geographic targeting pattern suggested by the reports spans multiple jurisdictions, including Oklahoma and Washington, D.C. Invoking government transportation authorities and municipal governments as creditors is a deliberate tactic to lend legitimacy to collection demands and pressure recipients into making payments to an unverified destination.
The threat level for this cluster is moderate and should be considered active. The infrastructure is newly registered, the outreach methodology is systematic and template-driven, and the impersonation of government-affiliated debt collection adds a layer of social engineering that increases the likelihood of victim compliance. The low formal complaint count does not diminish the operational footprint visible in community reporting.