HochAktiv
High Risk
75%
Package Delivery Smishing
SMS phishing impersonating couriers to steal payment info or install malware.
#phishing#smishing#mobile
Bedrohungsübersicht
Smishing campaigns send fake delivery failure texts with links to credential pages or Android malware disguised as tracking apps.
Angriffsverhalten
- Urgent delivery fee requests
- Fake tracking portals
- APK sideload prompts on mobile
Infektionswege
- SMS links
- QR codes on physical mailers
- WhatsApp forwarded messages
Symptome & Indikatoren
- Unexpected courier texts
- Browser redirects to payment gateways
- Unknown apps requesting SMS permissions
Sofortige Abwehr
- Track packages only via official retailer or carrier sites
- Never install APKs from SMS links
Entfernungsanleitung
- Uninstall sideloaded apps
- Revoke SMS permissions
- Scan device with mobile security
Präventionsmethoden
- Mobile web guard
- Disable unknown source installs on Android
Telemetrie-Indikatoren
- Short-lived .top/.xyz tracking domains
- APK names mimicking DHL, UPS, FedEx
Spray-and-pray smishing targets random numbers hoping recipients have recent online orders.