Does The Courier Guy leak delivery data?

Bewlen

Bewlen

Executive Member
Joined
Apr 15, 2016
Messages
5,965
Reaction score
8,428
Why do I always receive phishing emails/sms as soon as I have a TCG package on the way? Is anyone else also experiencing this?

"Package No: xxxxxxx deliver is onhold,have an paid fee of R15.99.Visit https://tinyurl.com/zzzzzzz for the completion of your payment."

It's easy enough for me to ignore these but it's pretty clear that this data is being extracted directly from TCG platform and being delivered in a highly sophisticated process flow to bad actors. How can their systems be this insecure?

@Jan this would be an in interesting tech article/investigation...
 
Who did you actually order the package from?
 
Bewlen said:
Why do I always receive phishing emails/sms as soon as I have a TCG package on the way? Is anyone else also experiencing this?

"Package No: xxxxxxx deliver is onhold,have an paid fee of R15.99.Visit https://tinyurl.com/zzzzzzz for the completion of your payment."

It's easy enough for me to ignore these but it's pretty clear that this data is being extracted directly from TCG platform and being delivered in a highly sophisticated process flow to bad actors. How can their systems be this insecure?

@Jan this would be an in interesting tech article/investigation...
Click to expand...
Nope - order frequently making use of TCG - don't get these phishing messages
 
I get quite a few of these messages, even when not expecting something so I don't think so.

However one can never prove anything in any event but 90% of TCG process's are mechanised with very little human intervention at the main Hubs in any event.
 
I only get those messages when waiting for deliveries from RAM couriers or deliveries from China (whatever couriers they use for those)

Don't think I've ever had these messages while waiting for TCG. And I get TCG deliveries very regularly.
 
Had similar when I ordered stuff on Amazon who used Courier Guy for delivery.
 
Change your email address and phone number temporarily then order something else and see what happens. Find a bad actor is a process of elimination.
 
Bewlen said:
Why do I always receive phishing emails/sms as soon as I have a TCG package on the way? Is anyone else also experiencing this?

"Package No: xxxxxxx deliver is onhold,have an paid fee of R15.99.Visit https://tinyurl.com/zzzzzzz for the completion of your payment."

It's easy enough for me to ignore these but it's pretty clear that this data is being extracted directly from TCG platform and being delivered in a highly sophisticated process flow to bad actors. How can their systems be this insecure?

@Jan this would be an in interesting tech article/investigation...
Click to expand...
I get them all the time, and Courier It, Amarex, Fastway, Ram. I keep blocking them but they keep coming. I've only ever used Courier Guy and Amarex.
 
The frequency definitely seems to increase when I have a package with some courier on the way.

Example, did a license renewal last week, no less than 4 phishing sms so far.
 
  • Like
Reactions: B-1
I have had too many occurences like this for it to be random or just a coincidence. Nothing and then suddenly some phishing just close to a genuine delivery. Quite close sometimes so can easily fool you. Also more seemingly with CG than anyone else. The details in the sms cannot be matched and in any case you are more interested in getting your item without any further delay.

The drivers will be desperate like many hence easily corruptible so unlikely to turn down an easy opportunity to make a few bucks. I have pointed this out to Courier Guy a few times but it's just the usual denial with claims that they have internal controls in place.

Below is one feedback I had a year ago:

Hi

Thanks for the feedback

I wish I could shut down these scammers, believe me if I find out it's a staff member... I would end him myself.

The scammers are not that smart, they take a chance and they do use random numbers to send out a generic template.
If it was an inside job, they would add your name or a valid waybill number....even the weight they use is in grams sometimes, we do not use grams or add the weight as 0.856 Kg -> we round off to 1Kg. Instead they use a generic template to send out to thousands of numbers that they generate.

I recently investigated a married couple, yes we had the husbands cellphone number on our sytem but we did not have his wife's number on our system. They had a number close to each other example 1234 and 1235.

None of the links work on a scam page, you cannot login, track or get a quick quote. It jumps to shipping fees...a normal site would go through steps 1, 2 and 3 first I used fake details and it still goes through, so they just capture your card details
Notice the weight is 0.856Kg -> you cannot add this weight on our system Only a 30 day account has a fuel surcharge and we do not ask for it after the shipment has been created. There is no waybill number on this scam site, but some do have the same scam waybill number.
 
Mostly get these when expecting a parcel from TCG. And then the odd one every now and then.
 
Maybe it's confined to one area or one depot or something...rather than nationwide.

I receive courier guy deliveries almost daily, never had this happen.
 
Bewlen said:
Why do I always receive phishing emails/sms as soon as I have a TCG package on the way? Is anyone else also experiencing this?

"Package No: xxxxxxx deliver is onhold,have an paid fee of R15.99.Visit https://tinyurl.com/zzzzzzz for the completion of your payment."

It's easy enough for me to ignore these but it's pretty clear that this data is being extracted directly from TCG platform and being delivered in a highly sophisticated process flow to bad actors. How can their systems be this insecure?

@Jan this would be an in interesting tech article/investigation...
Click to expand...
Well I can tell you twice now I've had delivs come from them and around the same time I've had DHL urgent contact due to lost parcels scam messages come through.
 
Also get numerous spam emails whenever I buy from Temu - Buffalo Couriers delivered.

1761630945005.png
 
Bewlen said:
Why do I always receive phishing emails/sms as soon as I have a TCG package on the way? Is anyone else also experiencing this?

"Package No: xxxxxxx deliver is onhold,have an paid fee of R15.99.Visit https://tinyurl.com/zzzzzzz for the completion of your payment."

It's easy enough for me to ignore these but it's pretty clear that this data is being extracted directly from TCG platform and being delivered in a highly sophisticated process flow to bad actors. How can their systems be this insecure?

@Jan this would be an in interesting tech article/investigation...
Click to expand...
I don't think this is the case. I get those messages on a weekly basis and I NEVER use TCG.
 
You must log in or register to reply here.
Back
Top
Sign up to the MyBroadband newsletter
X