The Rise of Delivery Fraud
With the explosion of online shopping, courier notification messages have become part of everyday life. Scammers know this — and they exploit it by sending fake delivery texts, emails, and even phone calls that impersonate well-known carriers like FedEx, UPS, DHL, Royal Mail, and national postal services.
The messages look convincing. But they lead to phishing sites, malware downloads, or direct payment fraud. Here's everything you need to know to tell the real from the fake.
How Fake Delivery Scams Work
Step 1: The Hook Message
You receive a text message (SMS or WhatsApp) or email claiming your parcel couldn't be delivered. The message typically includes:
- A vague reference to "your package" or a fake tracking number
- A claim that a small fee is needed (customs, redelivery, address confirmation)
- A shortened or lookalike URL to "reschedule" delivery
Step 2: The Fake Portal
Clicking the link takes you to a cloned version of a real courier's website. The site asks you to confirm your address and pay a small fee — often just £1–$3 — which seems harmless. This small amount is designed to lower your guard while capturing your full payment card details.
Step 3: The Real Theft
With your card details in hand, scammers make much larger unauthorized purchases or sell your information on dark web markets. Some fake portals also install malware when you interact with the page.
Common Variations to Watch For
Cash-on-Delivery Manipulation
In some schemes, fraudsters arrange a real delivery (often of a worthless item) using a stolen or fake identity. They contact the intended victim claiming to be the courier and ask for cash payment before handing over an item the victim never ordered. Always verify any unexpected cash-on-delivery parcel before paying.
Package Interception Calls
A caller claims your package has been intercepted by customs or law enforcement and you must pay a "release fee" to retrieve it. Legitimate customs agencies do not call and demand immediate payment over the phone.
"Failed Delivery" Malware Links
Some fake notifications — particularly targeting Android users — ask you to install a tracking app via a link. This app is actually banking malware that intercepts SMS-based two-factor authentication codes.
How to Verify a Real Delivery Notification
- Go directly to the carrier's official website — type the URL yourself, don't click the link in the message.
- Enter the tracking number from the message into the official site's tracking tool to see if it's real.
- Check the sender's details: legitimate couriers send from official domain email addresses, not free Gmail or Hotmail accounts.
- Look up the order in your email — if you're expecting a package, find the original order confirmation and track it from there.
Spotting a Fake vs. Genuine Notification
| Element | Genuine Notification | Scam Notification |
|---|---|---|
| Sender address | @fedex.com, @dhl.com etc. | Random domain or free email |
| Tracking number | Verifiable on official site | Fake or non-existent |
| Fee request | Rare; handled at checkout | Small "customs" or "redelivery" fee |
| Link destination | Official brand domain | Lookalike or shortened URL |
| Urgency | Informational tone | "Act within 24 hours or lose your parcel" |
If You've Already Clicked or Paid
- Contact your bank immediately to report potential card fraud and request a block on the card.
- Change passwords for any accounts you accessed around the same time.
- Run a reputable malware scan on your device if you downloaded anything.
- Report the message to your national spam/scam reporting service (e.g., 7726 in the US/UK for SMS scams).
The "small fee" framing is a deliberate psychological trick — it makes the scam feel low-stakes. Remember: the fee isn't the theft. Your card details are.