![]() “It seems likely to me that UPS is leaking information somehow about upcoming deliveries.” “From searching the text of this phishing message, I can see that a lot of people have experienced this scam, which is more convincing because of the information the phishing text contains,” Dylan wrote. The message included his full name, phone number, and postal code, and urged him to click a link to mydeliveryfee-upsinfo and pay a $1.55 delivery fee that was supposedly required to deliver his Legos. ![]() In March, 2023, a reader named Dylan from British Columbia wrote in to say he’d received one of these shipping fee scam messages not long after placing an order to buy gobs of building blocks directly from. The written notice goes on to say UPS believes the data exposure “affected packages for a small group of shippers and some of their customers from Februto April 24, 2023.”Īs early as April 2022, KrebsOnSecurity began receiving tips from Canadian readers who were puzzling over why they’d just received one of these SMS phishing messages that referenced information from a recent order they’d legitimately placed at an online retailer. “Because this information could be misused by third parties, including potentially in a smishing scheme, UPS has taken steps to limit access to that information.” “During that review, UPS discovered a method by which a person who searched for a particular package or misused a package look-up tool could obtain more information about the delivery, potentially including a recipient’s phone number,” the letter reads. The recent letter from UPS about SMS phishers harvesting shipment details and phone numbers from its website.
0 Comments
Leave a Reply. |
AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |