Delivery Scams During COVID-19: Attackers Using Fake Emails Impersonating Authentic Emails From Shipping Carriers

Image credit: Delcom Infotech

An increase in online shopping and home deliveries has been witnessed ever since COVID-19 has affected our lifestyle.

While we practice social distancing, scammers are finding innovative ways to capitalize on this situation by creating “Coronavirus delivery scams”.

This is a step by step process that has been carefully created by replicating and delivering authentic looking emails from shipping carriers like UPS, FedEx and USPS to lure customers to click the links provided in the emails. Those links eventually open malware.

Kaspersky reported, researchers have found a new pattern of phishing scams utilizing COVID-19 situation impersonating shipping carriers.

In one of the emails from Kaspersky, scammers replicated an email from DHL, stating that the package is held at a facility due to COVID-19 lockdown. The email encouraged the victim to click on a link and update the shipping information. Clicking the link would install “Bsymem Trojan”.

Image source: Cyware
Image source: Cyware

Similar scams have been discovered for UPS and FedEx.

Image source: Cyware
Image source: Cyware

How to protect yourself from becoming a phishing victim:

Everyone is advised to be extra cautious while clicking on links attached to any emails. Verify the authenticity of any notification by reading the text thoroughly as an effort to skim any grammatical errors as most authenticate emails do not have grammatical errors or strange formats.

If possible, avoid clicking email links altogether. Login to any accounts directly to find any updates that the email may have suggested.

This warning applies to all email communication received from SBA, stimulus department, CDC or WHO.