AltoActivo
High Risk
75%
Package Delivery Smishing
SMS phishing impersonating couriers to steal payment info or install malware.
#phishing#smishing#mobile
Resumen de la amenaza
Smishing campaigns send fake delivery failure texts with links to credential pages or Android malware disguised as tracking apps.
Comportamiento del ataque
- Urgent delivery fee requests
- Fake tracking portals
- APK sideload prompts on mobile
Métodos de infección
- SMS links
- QR codes on physical mailers
- WhatsApp forwarded messages
Síntomas e indicadores
- Unexpected courier texts
- Browser redirects to payment gateways
- Unknown apps requesting SMS permissions
Mitigación inmediata
- Track packages only via official retailer or carrier sites
- Never install APKs from SMS links
Guía de eliminación
- Uninstall sideloaded apps
- Revoke SMS permissions
- Scan device with mobile security
Métodos de prevención
- Mobile web guard
- Disable unknown source installs on Android
Indicadores de telemetría
- Short-lived .top/.xyz tracking domains
- APK names mimicking DHL, UPS, FedEx
Spray-and-pray smishing targets random numbers hoping recipients have recent online orders.