Regulators and law enforcement are warning that criminals are turning routine deliveries into an easy way to steal money and personal data. Fake shipping alerts sent by text have become the most common text-based scam reported in the United States, and they are arriving during peak shopping periods when consumers expect a constant flow of parcels. The pattern links doorstep convenience with organized fraud networks that now operate across borders and across both digital and physical mail systems.
The Federal Trade Commission has documented a sharp rise in text scams that start with a message about a supposed package problem, while postal authorities and banks report related spikes in card fraud and mail theft. With nearly one fifth of retail purchases now taking place online, criminals are betting that most people will click first and think later when a delivery notification appears on their phone.
Text scams turn delivery alerts into bait
Fraud that begins with a text message has become a major source of consumer losses in the United States. Consumers reported $470 million in losses in 2024 to scams that started with text messages, according to an FTC release on text scams. That same release states that fake package delivery was the most commonly reported text-scam type, showing how criminals have learned to exploit the routine stream of shipping updates that follow online orders.
The lure is simple and repeatable. A message arrives claiming there is a problem with a parcel, often framed as a missed delivery or an issue with address details, and it includes a link that appears to lead to a familiar courier or postal brand. The wider scale of consumer complaints is captured in the Consumer Sentinel Network Data Book 2024, which compiles 6.5 million consumer reports from 2024 across 29 categories, according to the FTC’s Consumer Sentinel Network Data Book 2024. Within that flood of complaints, delivery-themed smishing has emerged as a standout tactic because it blends into the constant notifications that accompany modern e-commerce.
Holiday shopping habits create ideal cover
Fraudsters time many of these schemes for the period when parcel traffic is at its highest and shoppers are making rapid decisions. The holiday season brings a massive surge in online purchases as consumers shop for gifts, according to guidance on increased online shopping and gift deliveries from Aspire’s holiday scam advisory. That surge means people are often tracking several orders at once and may be more inclined to click on any message that appears to relate to a package.
In the United Kingdom, this seasonal pressure has helped a tactic known as “spray and pay” gain ground. Mass parcel-delivery texts are sent out to large numbers of potential victims, driving them to convincing fake courier sites that request small redelivery fees and then harvest card details and credentials, according to reporting on spray and pay parcel delivery fraud from The Guardian. That coverage notes that the pattern intensifies around Black Friday and other holiday delivery spikes, and cites delivery firm Evri reporting thousands of incidents, showing how a minor-fee request can be scaled into a large fraud operation when enough shoppers are already expecting parcels.
From fake texts to stolen cards and mail
Once a victim taps a delivery link, the fraud can move quickly from a small fee to wider financial harm. Official examples from Royal Mail describe parcel-related scam texts that claim an unpaid fee or invite the recipient to reschedule a delivery via a shortened link, which leads to fake courier pages designed for payment capture, according to Royal Mail scam examples. Those pages collect card numbers and security codes, which criminals can then use for unauthorized purchases or sell on to other groups.
Similar patterns are visible in banking data. An industry report from UK Finance covering 2024 results flags increased remote purchase fraud, linking the growth of e-commerce and card-not-present transactions to higher levels of unauthorized spending, according to the UK Finance Annual Fraud Report 2025. Card-not-present fraud is identified as a prevalent form of ecommerce fraud, where criminals use stolen details to buy goods online without presenting a physical card, according to analysis of ecommerce fraud prevention strategies from Justt. Together, these findings show how a single fake delivery message can open the door to broader card abuse far beyond the small “redelivery” charge that first appears on screen.
Postal systems under strain from both digital and physical theft
Delivery fraud does not stop at digital messages. Criminals are also attacking the physical mail stream to steal checks and other valuables. A joint public service announcement from the FBI and the United States Postal Inspection Service describes rising check fraud enabled through mail theft, including theft from blue collection boxes and schemes involving collusion or bribery, according to the alert on mail theft-related check fraud. The same alert points to trend data from the Financial Crimes Enforcement Network, noting that Suspicious Activity Report filings support the claim that check and mail-related fraud nearly doubled, according to FinCEN SAR filing statistics.
Postal authorities are also confronting digital impersonation. The United States Postal Service has issued a warning about smishing texts that claim there is a problem with a package delivery, often citing incomplete address information and including a link, according to USPS guidance on smishing scams. That guidance lists reporting channels such as emailing spam@uspis.gov and forwarding suspicious texts to 7726, which shows how postal agencies are trying to turn the same phones that deliver scam messages into tools for reporting them. The FBI, for its part, promotes email alerts on cyber threats through its own subscription system, as seen in the delivery.fbi.gov email alerts page, signaling that law enforcement is trying to match the speed of fraud campaigns with direct digital outreach.
Global networks and fake shopping sites behind local texts
The text on a victim’s phone may look local, but many of the scams sit on top of international criminal infrastructure. A recent operation coordinated by INTERPOL across 61 countries led to the seizure of USD 257 million, with accounts frozen and arrests made in connection with online scams, according to an announcement on INTERPOL’s Operation First Light. That operation targeted scam typologies including phishing and fake online shopping sites, highlighting how fraudulent delivery messages often connect back to broader schemes that also run bogus web stores or call centers.
Those fake stores are built to look legitimate at a glance. Security researchers describe how scammers register cheap domains that mimic real brands and then set up fake shops that vanish after a few weeks, according to an analysis of fake brand stores from Forcepoint. Other investigators note that criminals include popular shopping or brand keywords in domain names and URLs to increase exposure in search results, according to research on online shopping scams from CloudSEK. With nearly 20 percent of all shopping happening online in the retail market, according to analysis of retail and ecommerce fraud from Ping Identity, those tactics give fraud sites a steady stream of potential victims who may arrive either through search or through links in fake delivery texts.
Consumers push back with reporting and simple checks
Authorities are trying to shift some of the advantage back to consumers by promoting simple rules of thumb. The Department of Social Security Administration has described four Ps of spotting fraud, identifying common patterns of Promise, Problem, Pressure and Pay as warning signs of scams, according to a fact sheet on the four Ps of spotting fraud. That framework applies directly to delivery fraud, which often starts with a problem about a parcel, adds pressure by warning of a return or delay, and ends with a request for payment or sensitive details.
Reporting channels are also expanding. The FTC encourages victims to file complaints through its online portal at ReportFraud.ftc.gov, which feeds into the Sentinel Network that already holds 6.5 million consumer reports for 2024. For identity-related fallout, such as misuse of stolen credentials, the agency directs people to recovery resources at IdentityTheft.gov. In the United Kingdom, readers who encounter coverage of scams are urged to support independent reporting and access subscriber tools that can help them stay informed, as reflected in subscription and sign-in pages operated by Guardian Media Group at support.theguardian.com and profile.theguardian.com. Taken together with warnings from banks such as Capital One, which has tracked a surge in scams designed to look legitimate at first glance according to reporting on holiday fraud from Black Press USA, these efforts reflect a growing recognition that delivery fraud is now a routine feature of online shopping, not an edge case.
More From The Daily Overview
*This article was researched with the help of AI, with human editors creating the final content.
Grant Mercer covers market dynamics, business trends, and the economic forces driving growth across industries. His analysis connects macro movements with real-world implications for investors, entrepreneurs, and professionals. Through his work at The Daily Overview, Grant helps readers understand how markets function and where opportunities may emerge.
