'USPS - Shipment is Still Pending' Scam

Cybersecurity researchers are warning users about a wave of misleading emails disguised as a reminder from USPS about a pending shipment. It encourages recipients to confirm shipment information by clicking on the 'View your Package' button. Also, this letter claims that the provided link will expire three days after it is sent. In reality, the lure letters are created by fraudsters with the aim of tricking recipients into opening a fake login page and entering their email/account credentials on it. This untrustworthy email is a frequent part of phishing tactics.

Con artists often take advantage of collected credentials to gain access to online accounts. They may try to hijack or sell these accounts to obtain sensitive information, make fraudulent purchases and transactions, send spam and malware, collect identities and more. Additionally, some users use the same password for multiple accounts, making it easier for hackers to access multiple accounts with the same credentials.

Therefore, examining attachments received via suspicious emails is strongly recommended before entering any information on them. This way, users can protect themselves from becoming a victim of identity theft or other unsafe activities carried out by hackers using collected credentials.

How to Spot Phishing Schemes Like 'USPS - Shipment si Still Pending?'

In today's digital world, it's becoming increasingly important to stay alert and know how to spot phishing emails and tactics. While technology has made our lives easier in many ways, it also opens us up to cyber-attackers who use phishing emails and other malicious intent.

1. Check the Sender

Whenever you receive any suspicious email, always check who sent it. Be wary of emails coming from someone you don't recognize or an address that looks strange. If a company website is included in the message, look for typos, such as different spelling in the URL address.

2. Look for Poor Grammar

One of the frequent indicators of a phishing email is poor grammar or odd phrasing used by the sender. Con artists also may use generic salutations like 'Hey User' rather than the recipient's name in the greeting line. These are signs that should raise red flags as they are not characteristic of legitimate business communications or customer service inquiries.

3. Read Carefully

Read through any message carefully before clicking on any link included in an email; some lure emails may include links that can redirect you to corrupted websites or unsafe portals that could collect any provided personal information or passwords. Also, make sure to scan any attachments that come along with a suspicious email—files containing malware often have extensions, such as '.exe,' '.scr,' '.bat.' Avoid opening these attachments unless they come from a trusted source, as they could carry malware threats

4. Look for Imitations

When attempting to detect fake emails, pay attention to even the smallest details. Lure emails often try to present themselves as legitimate communication from well-known companies. The fake emails may mimic the real ones and even have the specific company's logo and branding. To detect these schemes, double-check senders' names, pay attention to text formatting, broken images/links included, etc.