Attack Spotlight: Fraudulent Shipping Notifications

October 31, 2019
Gretel Egan

Our latest Attack Spotlight—now available—covers the trending threat of shipping-themed phishing emails. Share these free security awareness materials to help your end users stay safer this holiday season (and year round). 

Defend Against

The Proofpoint global intelligence platform analyzes billions of data points a day to deliver unmatched visibility into attack patterns and methods. In September, we saw an uptick in attackers’ use of fraudulent shipping alerts. And we know that, historically, these types of attacks escalate sharply in November and December.

Many malicious notifications mimic messages from operators like UPS, FedEx, DHL, and USPS. Recent campaigns have been targeting several industries, including the following:

  • Manufacturing
  • Technology
  • Healthcare
  • Retail
  • Construction

Attackers often use fraudulent shipping emails to spread malware. But these phishing attacks can also compromise account credentials and steal money from unsuspecting recipients.

Warn Employees About Fraudulent Shipping Notifications

Organizations and consumers regularly receive valid shipping alerts. This familiarity makes it harder for people to spot messages that imitate well-known brands. That’s why we advise you to raise awareness of these types of attacks now, ahead of the busy holiday shopping (and shipping) season.

It’s critical for users to understand the methods attackers are using. Our latest Attack Spotlight provides a real-world example of a fraudulent shipping notification. It also informs users of the ways attackers try to fool them, including the following:

  • Sending phony tracking numbers
  • Saying a package could not be delivered because nobody could sign for it
  • Requesting additional postage so a package can be delivered
  • Warning that a package has been held because of an invalid address
  • Attaching files that appear to be invoices or claim forms

Download Our Free Security Awareness Materials Today

Our latest Attack Spotlight resources are available now. The following materials are free to use and distribute:

  • Ready-to-use email content for communicating to your employees

  • A security awareness PDF detailing the threat in easy-to-understand terms

  • A short awareness module with action-oriented tips for identifying and avoiding fraudulent shipping alerts

Do you also use our ThreatSim® Phishing Simulations? If so, look in our template library for customizable phishing tests designed to assess users’ susceptibility to shipping-themed attacks.

If you haven’t used these tools in the past, be sure to visit our Attack Spotlight archive. You’ll find free resources about other trending attacks, including those that use lookalike domains and lures associated with popular cloud applications.