ÉlevéActif
High Risk
75%
Package Delivery Smishing
SMS phishing impersonating couriers to steal payment info or install malware.
#phishing#smishing#mobile
Aperçu de la menace
Smishing campaigns send fake delivery failure texts with links to credential pages or Android malware disguised as tracking apps.
Comportement d’attaque
- Urgent delivery fee requests
- Fake tracking portals
- APK sideload prompts on mobile
Méthodes d’infection
- SMS links
- QR codes on physical mailers
- WhatsApp forwarded messages
Symptômes et indicateurs
- Unexpected courier texts
- Browser redirects to payment gateways
- Unknown apps requesting SMS permissions
Atténuation immédiate
- Track packages only via official retailer or carrier sites
- Never install APKs from SMS links
Guide de suppression
- Uninstall sideloaded apps
- Revoke SMS permissions
- Scan device with mobile security
Méthodes de prévention
- Mobile web guard
- Disable unknown source installs on Android
Indicateurs télémétriques
- Short-lived .top/.xyz tracking domains
- APK names mimicking DHL, UPS, FedEx
Spray-and-pray smishing targets random numbers hoping recipients have recent online orders.