Url looks suss. Seems kinda sophisticated for the usual ups fishing scam. Here’s the text message I got leading here.

“Wishing you a bright and sunny day!” Lol, I almost want to help this guy by explaining that UPS and American companies in general have disdain for their customers and would never wish them to have anything that would not benefit the company.

  • hendrik@palaver.p3x.de
    link
    fedilink
    English
    arrow-up
    298
    ·
    edit-2
    24 days ago

    I seriously doubt USPS bought a domain like gflrml dot cyou for their business. It’s 300% a scam.

    • SkaveRat@discuss.tchncs.de
      link
      fedilink
      arrow-up
      107
      ·
      24 days ago

      Reminds me of my previous bank.

      They changed some system countrywide, so I got an email that I need to update some data and go to a website to do that.

      If was something like “update-[bankname]-data-now.tld”.

      It was sent to a unique mail address I used for them. But still though it was phishing.

      Turns out: No. It was real. Whoever came up with the idea to not host that stuff on at least a subdomain of the bank really needs to get fired. and each and every manager who was part of the decision process.

      • Th4tGuyII@fedia.io
        link
        fedilink
        arrow-up
        46
        arrow-down
        1
        ·
        24 days ago

        Ugh. I work in the public sector and let me tell you, there are SO many companies that send the most dogiest, scammiest looking emails telling you to follow a link, only for it to turn out to be perfectly legitimate.

        I honestly can see now why people end up falling for these things when even legitimate companies send emails looking just like phishing scammers

      • hendrik@palaver.p3x.de
        link
        fedilink
        English
        arrow-up
        31
        arrow-down
        1
        ·
        edit-2
        24 days ago

        Had that happen, too. We all try to educate users to NOT click on some dubious phishing/scams and put in qute some effort to explain it over and over again, and then there are companies doing things like that. It’s just sad.

        • conciselyverbose@sh.itjust.works
          link
          fedilink
          arrow-up
          16
          ·
          24 days ago

          lol I have to go back to the bank (when there’s a manager, because there wasn’t last time🤦‍♀️), to turn online banking back on for my account.

          It got turned off because I didn’t pick up some spam call they made.

    • givesomefucks@lemmy.world
      link
      fedilink
      English
      arrow-up
      33
      arrow-down
      2
      ·
      24 days ago

      The text message is the big red flag, that’s obviously a scam and has been happening for at least a year. Most scam texts are filtered on my phone, but a few of these slip thru.

      I guess they’re just trying to tie phone numbers to addresses so they can sell the phone list for more info.

      Especially with people keeping their cell number while moving states, tying an address to the number and verifying it’s that person would be a tidy profit.

        • QuadratureSurfer@lemmy.world
          link
          fedilink
          English
          arrow-up
          4
          ·
          24 days ago

          Unfortunately I can think of one company in particular that uses tinyurl when you sign up for shipping updates on their website (looking at you Samsung!).

          At least with that one:

          • you know you signed up for it
          • they send a text right when you sign up for it
          • they use an official short SMS (5 digit) number.
    • SatyrSack@feddit.org
      link
      fedilink
      English
      arrow-up
      10
      ·
      24 days ago

      Also, is it common for a legitimate government agency to use a third-party link shortener like bitly?