1. Phishing Emails or SMS

Victims receive a message claiming that a package is waiting for delivery or that there’s an issue requiring immediate action.

3. Malware Attacks

Some fake notifications contain attachments or links that install malware on the victim’s device.

2. Fake Tracking Links

Clicking on fraudulent links may lead to fake websites designed to steal personal and financial information.

4. Payment Scams

Scammers demand additional payment for “unpaid shipping fees” or customs clearance.

1. Phishing via Email and SMS

Cybercriminals send fake emails or text messages that appear to be from well-known delivery companies. These messages often contain urgent warnings like:

• “Your package is on hold due to unpaid shipping fees.”
• “Click here to reschedule your delivery.”
• “Track your package now.”

Once the victim clicks on the link, they are redirected to a fake website that looks identical to the real courier service’s site. Here, they are asked to enter sensitive information such as credit card details, passwords, or personal data.

2. Fake Phone Calls from “Delivery Agents”

Scammers sometimes call their victims, claiming to be from a courier company, stating that there’s an issue with their delivery. They may request verification details or demand a small payment to “release” the package.

3. Malware-Infected Links and Attachments

Some scam emails contain attachments labeled as “delivery receipts” or “shipping invoices.” When opened, these files can install malware, allowing hackers to steal data, spy on activities, or even lock the device for ransom.

Woman pays Rs 5 for courier, ends up losing Rs 80,000 from bank account

Chandigarh woman loses Rs 80,000

A woman belonging to Mohali, Chandigarh, received a call from an unknown number recently. The caller said that they belong to a courier service and that there is a parcel in the woman’s name. They then asked the woman to make a payment of Rs 5 as delivery charges.

Unaware of the fraudulent nature of the call, the woman proceeded to click on the payment link provided by the caller. Shortly after this, scammers withdrew two unauthorized transactions of Rs 40,000 each from her bank account, totaling Rs 80,000 in losses.

Upon realizing the fraud, the woman immediately filed a police complaint. The authorities have initiated an investigation into the incident and are working to identify and apprehend the perpetrators.

Doctor gets urgent call for an undelivered parcel, ends up losing Rs 52 lakhs

One of the recent victims of this scam is a doctor from Tamil Nadu who was duped of Rs 52 lakh by a gang of fraudsters who impersonated FedEx and CBI officials.

A doctor from Ramalinga Nagar, Anand, was duped of 52 lakh by a gang of fraudsters who impersonated as Fedex and CBI officials. Anand said that he received a call on January 11 from a person who claimed to work for FedEx. The caller claimed that he had shipped a banned item from Taiwan using his Aadhaar card as ID and that the police had filed a case against him

The following day, the doctor received another call, this time from someone claiming to be a CBI officer. This supposed officer falsely accused him of participating in money laundering and instructed him to transfer all funds from his two bank accounts to a designated CBI account in Mumbai. Believing the call came from a genuine police representative, the doctor unfortunately transferred a substantial sum of Rs. 52,10,364 via RTGS to the provided account.However, when the doctor attempted to contact the callers again, he found that their numbers were switched off. He then realised that he had been cheated and approached the police for help.

Notably, this isn’t the first case of scammers targeting victims with phone calls about illegal parcels, demanding money for their release. In recent months, hundreds of individuals have fallen prey to these deceitful tactics, losing significant sums.

Cybercriminals are now using Artificial Intelligence (AI) and deepfake technology to make fake delivery scams even more realistic and harder to detect

How AI is Enhancing Fake Scams

• AI-Generated Emails – Scammers use AI tools to create grammatically correct, well-structured emails that look authentic.

• Deepfake Voice Calls – AI-generated voices mimic real customer service agents, making fraud calls more convincing.

• Chatbots on Fake Websites – Some fraudulent courier websites now have AI-powered chatbots that interact with victims to gather sensitive information.

Real-Life Example: USPS AI-Powered Scam (USA, 2024)

• Scammers launched an AI-driven phishing campaign targeting USPS customers.

• They sent automated AI-generated voice calls and emails.

• Victims were tricked into entering their credit card details on a phishing site.

How to Protect Yourself from AI-Driven Scams

✔ Stay alert for automated voice messages requesting payments, as they could be fraudulent.
✔ Check for generic greetings like “Dear Customer” in emails—real companies typically address you by name.
✔ Enable multi-factor authentication (MFA) on your accounts to add an extra layer of security.

• Small Payments: Scammers often ask for seemingly insignificant amounts like INR 80 or INR 100, hoping that people won’t think twice about paying a small sum. However, even these minor transactions can lead to major financial losses if the fraudsters gain access to your payment information.

• Card-Only Payments: The lack of UPI or Cash on Delivery options is another red flag. India Post, and most legitimate services, offer multiple payment methods to accommodate various customer preferences.

To safeguard yourself from such scams, it’s essential to adopt proactive security measures. Here’s what you can do:

• Verify the Sender: Always check the sender’s email address or the website domain before clicking on any links. Fraudulent messages often have slight differences from the official addresses. For example, instead of a legitimate “.gov.in” domain, a scam site might use “.com” or “.net” to deceive users.
• Avoid Clicking Suspicious Links: Never click on a link in an unsolicited message, even if it appears to be from a trusted organization. Instead, visit the official website directly by typing the URL into your browser.
• Use Trusted Channels for Verification: If you are unsure about the authenticity of a message or call, contact the organization directly using official customer service numbers listed on their website. Avoid relying on contact information provided in the suspicious message.
• Enable Two-Factor Authentication (2FA): Ensure that all your financial accounts have 2FA enabled, as this adds an extra layer of security. Even if fraudsters gain access to your account details, they would need an additional code to complete any transaction.
• Install Security Software: Use trusted antivirus or anti-malware software on all your devices to protect against potential security breaches. Regularly update your software to stay protected against the latest threats.

Conclusion

Fake delivery scams have become a significant cybersecurity threat, especially with the growing reliance on online shopping. Cybercriminals exploit people’s expectations of package deliveries by sending convincing yet fraudulent messages to steal data and money.

To stay safe, always verify shipping notifications directly with the courier, avoid clicking on unknown links, and stay informed about evolving scams. By recognizing the warning signs and taking proactive steps, you can protect yourself from these deceptive cyber threats.