Royal Mail Scam Texts

General Chat
#1

So I’ve nearly just been suckered in by what I think is a Scam Text.

I’m expecting a couple of parcels this week, and I just this morning got a text from Royal Mail, stating they’ve just missed me and to rearrange delivery

The text looked like a royal mail text, and it even had a tracking number that looks like a royal mail tracking number, and has similar wording from text’s RM have sent me before.

image
image1242×866 108 KB

So I click the link and I get an almost identical clone of the Royal Mail mobile site. I go through the book a redelivery page, and eventually it asks for a “redelivery fee” of £1.80. I’ve paid fees before through Royal Mail, so initially sounded logical, but then I’ve never paid for something to be redelivered.

Here’s the page it takes you to:

image
image1242×2688 170 KB

So I look a bit closer and spot the text is from a random 07 number, and the link is “royalmailgb.app”.

Didn’t get as far as actually putting in any sensitive details, but crikey this one nearly got me, just because I was anticipating post arriving.

Keep an eye out!

5 Likes
#2

Are you familiar with 7726? Last time I had a phishing text I was recommend to report it to there. Copy/paste the text to 7726, and then it’ll follow up asking to send the number it was sent from as well.

4 Likes
#3

I never click on links in texts - have a look at who owns that domain and report it for fraud

Domain:

royalmailgb.app

Registrar:

Namecheap Inc.

Registered On:

2021-01-26

Expires On:

2022-01-26

Updated On:

2021-01-31

Status:

clientTransferProhibited

Name Servers:

dns1.namecheaphosting.com
dns2.namecheaphosting.com

1 Like
#4

Interesting.

I received a similar email this morning.

I marked it as junk and binned it.

Screenshot 2021-02-08 at 13.14.49
Screenshot 2021-02-08 at 13.14.49858×90 47.9 KB

Screenshot 2021-02-08 at 13.15.03
Screenshot 2021-02-08 at 13.15.031106×408 43.9 KB

2 Likes
#5

Actual LOL at the ParcelID, which is supposed to be their attempt at a randomly generated string, but is clearly the result of a keyboard smush.

I’ve had fake parcel emails before myself, never texts. Luckily I’ve never fallen for any of them yet as they usually come in when I’m not expecting any parcels, so know they’re wrong uns. I think the one time I did get one when I was expecting something, I didn’t click the link and went to the courier’s website, and it didn’t recognise the tracking number. So I knew it was fake rather than the parcel I was expecting.

3 Likes
#6

Yeah, it came to an email address I don’t even use when dealing with Royal Mail :man_shrugging:

#7

Today I had an obvious scam text about a tax rebate, but also a genuine email from HMRC a about the upcoming change in my tax code for 2021-22, which I clocked about five minutes later. Had I seen the email first, and been the kind of person susceptible to clicking on unsolicited texts, I can imagine thinking the text message looked genuine.

You can tell how people get themselves in a mess, and it terrifies me that my parents (or I) could be just a brain-fart away from being scammed.

image
image1170×2532 124 KB
image
image1170×2532 217 KB

2 Likes
#8

Don’t think Royal Mail ever sends a text out - It’s mostly by letter

#9

I got a similar one that preys on those worried about COVID :angry:

image
image1027×473 57 KB

#10

Indeed they do.

Normally contains a link to their Track Delivery page.

Used the service for Xmas presents deliveries in December.

1 Like
#11

I just love the domain names in all of these.

They sound so professional :man_facepalming::joy:

1 Like
#12

Yep precisely, I’ve had a fair few on a regular basis with their tracked deliveries and stuff. So it wasn’t unusual to see one.

It took me longer to scrutinise the message than it otherwise would because of it.

#13

even the legit messages the domain could look suspect at first glance

image
image1125×2436 289 KB

3 Likes
#14

It’s probably time for the UK to start requiring ID for the issue of mobile numbers so they’re linked to someone personally. Keeping it all technically anonymous leads to this…

1 Like
#15

They do for contracts, but not Pay As You Go - I’d like it if ID was required for Pay As You Go though

#16

That’s not really the issue though. The issue mainly stems from all of the services that dish out UK mobile numbers.

I think every number should be tied to a specific person or company when it’s in use so that this kind of problem can be avoided by means of prosecution.

That being said I don’t think it would work because it’s all cat and mouse. If UK numbers became verified, they’d just switch to using other countries readily available virtual numbers.

#17

Yes, I had the HMRC email as well. Interestingly, and as a security measure, they don’t include a link in the text for you to follow. Good move. R-

2 Likes
#18

I had this email yesterday - it persuaded me to tell HMRC to send me letters instead
I know they are trying to be secure, but the email is so vague I thought it was phishing

#19

This one is the best/worst that I’ve received.

It’s a the legitimate three domain that was allowing for a seamless redirect to anything after the //, the sim is a 3 PAYG not contract one so I knew it had to be fake , but took me a minute to see why, if someone with a contract would have asked me if it was real I’d have said yes.

I emailed them and they fixed it within a few hours.

20210209_102646
20210209_1026461080×1920 115 KB

2 Likes
#20

Ooh that’s good. So that redirects you to “2h3.it”?