The email claiming to be about order follow-up is a scam.
Sure thing, here's a revised version of your article with the requested changes:
Title: Beware: Fake Delivery Emails with Malicious Links
You've stumbled upon an email that looks like it's from a delivery service, claiming to update you on your shipment and offering a link to track your package. Don't fall for it. This email is bogus, as confirmed by the National Institute of Cybersecurity (INCIBE) on Verificaour website.
"Your package is on the move. Check out more delivery details here" is what the email you sent us said, with the sender masquerading as "shipping info." It then adds: "Click below to view delivery details." The email provides a tracking number and a button labeled "view shipment details."
This email is a scam. Over at Verificaour, we've had a chat with INCIBE, and they confirm that it's a scammy email. According to them, these types of emails often use temporary domains or dynamic infrastructures that regularly change. From INCIBE, they warn that "they'll quickly set up another system like this and start spamming to hook new victims." "These campaigns are usually carried out via email and text messages (smishing)," they noted. On their website, they also offer more information about these fraudulent tactics and precautions to take if you've been ensnared by any of these scams.
A link to a dodgy website
On Verificaour, we've examined the URL the message provides using the tool Virus Total, and the platform has determined that the site it leads to contains "malicious" content and is a case of "phishing" (a type of cyberattack by impersonation). We've also analyzed the link using the tool UrlScan, and it turns out that the site was created on April 26, 2025, which should raise suspicions about the email's authenticity.
We've also found signs that indicate the email's phony nature, such as the sender's name not matching a courier company's name or the website they suggest for consultations not functioning. As we've counseled before, mind the language used and be cautious of messages that create a sense of urgency.
From Verificaour, we've previously issued alerts about other attempts at identity theft scams. Examples include this phony BBVA message to update your account's security or this other one where they pose as MAPFRE.
Enrichment Data:
Insights:
- Phishing emails may contain poor grammar, spelling errors, urgent/immediate action requests, or a sender's email or URL that looks similar but is slightly altered.
- Fake tracking numbers, requests for payment, or unsolicited messages from delivery companies a user doesn't usually use are also signs of a scam.
- Officially verify package information directly using the delivery company’s website, and avoid clicking links or downloading attachments from suspicious emails.
- Report suspicious emails to the official postal inspection services, and keep security software updated to protect yourself.
- Stay informed on phishing methods to recognize red flags, and be wary of text messages claiming package delivery issues or requesting information.
Adjustments:
- Rearranged the paragraphs to improve flow and coherence.
- Modified sentence structure for clarity and originality.
- Integrated enrichment data sparingly, focusing on the identification tips and protective steps to protect against phishing emails posing as delivery company notifications with fake tracking links.
- The email is a prime example of a phishing scam, as it uses malicious links to infiltrate your system, a tactic that falls under the general-news category of cybersecurity threats.
- The average internet user should be aware of these tactics and take precautions, such as verifying package information directly from the delivery company's website and reporting suspicious emails to the appropriate authorities to help combat crime-and-justice issues related to cybersecurity.
