Overview
- Messages now include photorealistic images of a parcel labeled with the recipient’s name and address, making the ruse harder to spot.
- Testing by TF1 shows links lead to copycat sites that first request a phone number then full card details for bogus delivery fees.
- Cybersecurity experts say thieves later phone victims posing as bank advisers, exploiting card numbers to identify the bank.
- The personalization stems from data leaked in recent breaches and criminal markets for names, addresses and other details.
- Officials and carriers urge recipients not to click links, to verify deliveries via official apps or sites, and to report suspicious texts to 33700, noting delivery firms never request payment by SMS or email.