We're aware of several new types of phishing scams currently circulating and we want to ensure our customers are as protected as possible which starts with, awareness.
The new types of phishing scams are taking advantage of the current increase in online shopping and targeting those who are expecting parcel deliveries from our partnered retailers and carriers.
There are two new phishing scams circulating targeting our customers:
- SMS and email phishing scam.
- Voicemail phishing scam.
These scam messages refer to a delivery from a carrier or retailer and always ask you to take some form of action in relation to the ‘delivery' which can include:
- tracking a delivery or paying for a held redelivery.
- managing a delivery that is ‘in transit’ or will be ‘delivered soon’.
- telling you it’s your last chance to arrange pick up/delivery of a parcel.
What is a phishing scam?.
Phishing scams are attempts by scammers to trick you into giving out personal information in order to carry out fraudulent activities, such as hacking your social media accounts, and using your credit cards to steal your money.
A scammer contacts you pretending to be from a legitimate business or retail provider and could contact you by either email, social media, phone call, or an SMS text message.
How to easily recognise a phishing scam.
Incorrect spelling and grammar. Majority of these cyber hackers are off-shore so an easy sign of a fake email or sms is poor grammar being translated. However, it is not always the case so don't only rely on poor grammar to pick a fake sms or email.
No official greeting or sign off. Phishing emails are sent out to hundreds of people at once so use generic greetings and sign-offs.
Asks you for personal information. Phishing emails are designed to obtain exactly that, your personal informatio such as passwords, key codes etc. Legitimate retailers follow safe online practices and will never ask you to provide passwords via sms or email, or phone unless you have called them directly.
You can't authenticate the sender's address or website. This might be unusual, misspelled or slightly different from the correct address, for example shippit.com.au (NOT legitimate) instead of shippit.com (legitimate).
Suspicious links and fake websites. If you receive an email with a suspicious link, hover over the link with your mouse to see the actual web address the link leads to – it could lead to a fake website.
Creating a sense of urgency. Phishing emails will often encourage you to click a link or download an attachment to avoid a problem to create a sense of urgency. Always read an email carefully before taking any action.
Malicious attachment. Often an attachment will appear to be a PDF, image or Office file, but when you try to open the document, it tries to run a program or script intended to infect your computer with malicious software.
What Shippit does to help maximise your protection.
- Shippit uses encrypted tracking pages and links to ensure your data is secure and we'll only send clickable links to the email and phone number registered on the order.
- Shippit will never ask for your personal information or payment directly. If payment is required (e.f for a redirection or to release an order from international customs) you will always need to complete this transaction directly through either the carrier's website or local customs office.
- You will only receive an sms from Shippit (see below) or Shippit.com, not a random phone number or different website address.