Url looks suss. Seems kinda sophisticated for the usual ups fishing scam. Here’s the text message I got leading here.
“Wishing you a bright and sunny day!” Lol, I almost want to help this guy by explaining that UPS and American companies in general have disdain for their customers and would never wish them to have anything that would not benefit the company.
You must log in or register to comment.
Yes. Don’t click on that link, it’s been obscured using an URL shortener
Bit[dot]ly
Is an obvious clue. Companies/Entities like USPS don’t use 3rd party url shorteners…
No, they just pipe them through asinine third-party tracking URLs that get blocked on my network
It’s already returning 404 lol
Oh, dang.
Thanks for checking though.
I seriously doubt UPS bought a domain like gflrml dot cyou for their business.
The text message is the big red flag, that’s obviously a scam and has been happening for at least a year. Most scam texts are filtered on my phone, but a few of these slip thru.
I guess they’re just trying to tie phone numbers to addresses so they can sell the phone list for more info.
Especially with people keeping their cell number while moving states, tying an address to the number and verifying it’s that person would be a tidy profit.
Link shortener (not their own at least) is another massive red flag, same with typos (‘number number’ in page)
Unfortunately I can think of one company in particular that uses tinyurl when you sign up for shipping updates on their website (looking at you Samsung!).
At least with that one:
- you know you signed up for it
- they send a text right when you sign up for it
- they use an official short SMS (5 digit) number.
Reminds me of my previous bank.
They changed some system countrywide, so I got an email that I need to update some data and go to a website to do that.
If was something like “update-[bankname]-data-now.tld”.
It was sent to a unique mail address I used for them. But still though it was phishing.
Turns out: No. It was real. Whoever came up with the idea to not host that stuff on at least a subdomain of the bank really needs to get fired. and each and every manager who was part of the decision process.
Ugh. I work in the public sector and let me tell you, there are SO many companies that send the most dogiest, scammiest looking emails telling you to follow a link, only for it to turn out to be perfectly legitimate.
I honestly can see now why people end up falling for these things when even legitimate companies send emails looking just like phishing scammers
Had that happen, too. We all try to educate users to NOT click on some dubious phishing/scams and put in qute some effort to explain it over and over again, and then there are comanies doing things like that. It’s just sad.
lol I have to go back to the bank (when there’s a manager, because there wasn’t last time🤦♀️), to turn online banking back on for my account.
It got turned off because I didn’t pick up some spam call they made.
Also, is it common for a legitimate government agency to use a third-party link shortener like bitly?
You mean (uint32_t)-1 %
Go to the official UPS website (do not click that link, google it) and enter your tracking number.
If you don’t have a tracking number it means you didn’t order anything, and it’s certainly a scam.This is usps, not ups, but everything else is accurate.
Always check the real site without using a link to get there.
Bruh, just look at the address bar. That is not a USPS domain. Obviously it’s a scam.
I got one of these today too.
Something tells me the USPS wouldn’t be using bit.ly.
Expecting them to have my phone number but not my address is a mental leap I cannot fathom in the first place.
100% a scam.
The USPS won’t text you, they’ll leave you a notice in your mail box. They’re the only people besides you allowed to open your mailbox legally so it’s their best avenue.
Well, they claim they couldn’t find your house. So that wouldn’t be an option. Still a scam though
They can’t find your house, but somehow they know your phone number…? I don’t know about you, but I’ve never had to use a person’s email address or phone number when I was mailing them a letter or package, just their physical address or post office box.
It’s a scam. You can tell because you’re getting it via a rcs text. I’ve never once seen a business use an encrypted text.
Also the URL of course.
You can tell because it’s a text message.
The USPS will leave you a notice in your mailbox, not text you.
Your phone number isn’t part of the address someone mails to.
PSA you can check a bitly link without clicking it by using their link checker: https://support.bitly.com/hc/en-us/p/link-checker
TIL, ty
You clicked a random link from an sms message?
That’s a bold move, Cotton.
Just write in the nearest Subway/McDonald’s address.
Kek you clicked that?
Look man, if you want to understand what’s going on there’s a really short (even for my ADHD) video right here:
The guy here explains exactly why not to do that - https://bitly.com/98K8eH
I don’t even need to click taht to know his initials are R.A. :-)
You launch at someone clicking it then paste a URL shortener link…
The joke is always better when someone explains it.
This is 10000% a scam. That’s not the USPS url scheme. Plus, as a government entity, they’ll start correspondence through certified mail. Another question you could ask yourself is “Did I order any packages lately?” IF not, then more proof it’s a scam.
I get emails from usps all the time, they have a service to alert you of mail and packages arriving. Though, they dont SMS, and wouldnt be using a bit.ly url.
You got several good answers already.
First of all, if you aren’t expecting any shipment from USPS, then why would you be updating your address details for them at all?
But even if you are: gflmr.cyou is certainly not the USPS and I highly doubt they would have errors like “package number number” and weird grammar like “because … is not clear, your package is not delivered” on their tracking website.
If you want to be extra sure, just contact USPS directly.
