We are in the era of «phishing«, the scam system in which cybercriminals try to obtain our data (banking, mainly) by posing as organizations and companies through emails and SMS. The new attack that is spreading like wildfire recently in Spain is what, via an SMS from, supposedly, Correoswe must confirm a payment to clear customs of a package that could not be delivered to us.
But if we are attentive, we can verify that, indeed, it is one of the many digital scams that lately populate our inboxes.
Avoid falling into the trap of the new SMS phishing that uses bait Emails
This is not the first time we have seen phishing that uses the Post Office as bait, in fact it tends to be recurring in the multiple attempts that reach Spanish phones throughout the year.
On this occasion, the prefix The number that sends us the SMS makes us suspicious, since the +33 comes from France. Furthermore, when it is an official message from the Post Office, the name of the entity usually appears instead of a telephone number.
Although the message could appear official, it is the link that reveals the phishing attack. Banks and other organizations, such as the Post Office, They never include any type of link in their communications. On the contrary, they usually indicate how to access the personal areas of their services in the event that the client had to take some action.
But as is usually the case in these scams, the SMS link redirects us to a website very similar to that of the Post Office, but which is definitely not that of the postal company. In it they ask us to enter our bank details in order to pay the requested amount, which leads us to fall into the scam.
Besides, checking the name of the websitewe also realize that it is not Correos, and to make matters worse, its domain (ending in .pe) tells us that it is a web page located in Peru.
Therefore, it is advisable to carefully review both the sender of the digital correspondence that we receive, as well as other details that may make us suspicious, such as the fact of including links in the communications – especially if they are from banks – and in the message they urge us to pay with some urgency.
Finally, and if you have an Android smartphone, you may be interested in activating it to largely prevent these types of messages from reaching you.