A new phishing campaign targeting DHL delivery customers has been detected by the Comodo Antispam Labs team.
The phishing emails are “sent” from DHL Worldwide and contain in the subject line “DHL Shipping Delivery Tracking Number.” To appear realistic the emails use DHL's color scheme and logos, Comodo said in a blog post. The phisher then asks the customer to verify the tracking information for their packages in an attempt to steal DHL account logins, passwords and the packager delivery information.
When the customer clicks on the DHL.com/tracking link, as seen above, it takes them to a fake landing page where it attempts to steal the password and login information.
“After the phishing victim simply verifies their email address and enters the password, a page opens with the text appearing “Your email has been updated” – making the victim feel as if all was an authentic transaction, Comodo researchers said. “In actuality, the log in and password have now been sent to the cyber criminals and they can immediately begin using that to access account and data information, or selling that information on the black market.”
The phishing threat can potentially reach DHL's 2.5 million business and consumer customers worldwide.