Credit Card Fraud with Package Delivery: Warning about Forged E-Mails

Shopping online and having merchandise delivered to a home address is extremely popular – and can provide opportunities for thieves. They send counterfeit emails, presenting themselves as delivery companies (i.e. the Post, DHL, UPS, etc.), where they inform you that there is a problem with a package delivery. For the second delivery attempt, a fee will be charged. To facilitiate the process, the recipient is asked to use a link in the email to give the credit card data necessary for the requested payment.

11.12.2020 – When one clicks on such a link, one is connected to a counterfeit website (“phishing”) that mimics that of the legitimate package delivery concern. If a customer relays personal data (e.g. credit card information, including the security code on the back of the card), the thieves can then immediately use this to make further purchases.

What can I do?

• If you are not expecting any packages or deliveries, mark the mail as spam and delete it immediately.
• If you are expecting a package, get in touch with the delivery firm directly over their official site; never use contact details in any email.
• Do not click on any links in emails unless you are 100% certain of the sender’s identity.
• Never confirm receipt of such an email and never make contact with the fraudulent senders.

What should I do when I already mistakenly supplied personal data?

• Immediately contact your bank and/or credit card company and have the affected card blocked.
• Should you incur any financial damage, report this immediately to your local police and start a legal proceding.
• Please also report the phishing email or phishing website to the “Analysestelle Informationssicherheit MELANI des Bundes” at: https://www.antiphishing.ch/en/