Missed Package Delivery Messages, Calls or Voicemail (Flubot) Scams

Missed Package Delivery Messages, Calls or Voicemail (FlubotFlubot Flubot is a new Android & iPhone malware/spyware that aims to steal financial login and password data from your device. Flubot malware uses smishing (or SMS/Text phishing) to attack you & your device. You will receive an SMS that informs you about a package delivery or something else. The SMS will include a link to trigger the malware attack.) ScamsScams A Scam is a confidence trick - a crime -  is an attempt to defraud a person or group after first gaining their trust through deception. Scams or confidence tricks exploit victims using their credulity, naïveté, compassion, vanity, irresponsibility, or greed and exploiting that. Researchers have defined confidence tricks as "a distinctive species of fraudulent conduct ... intending to further voluntary exchanges that are not mutually beneficial", as they "benefit con operators ('con men' - criminals) at the expense of their victims (the 'marks')". A scam is a crime even if no money was lost.

How Scams Work

A SCARSSCARS SCARS - Society of Citizens Against Relationship Scams Inc. A government registered crime victims' assistance & crime prevention nonprofit organization based in Miami, Florida, U.S.A. SCARS supports the victims of scams worldwide and through its partners in more than 60 countries around the world. Incorporated in 2015, its team has 30 years of continuous experience educating and supporting scam victims. Visit www.AgainstScams.org to learn more about SCARS. Insight

Have You Received Messages About Missed Package Deliveries?

People everywhere have been getting scamScam A Scam is a confidence trick - a crime -  is an attempt to defraud a person or group after first gaining their trust through deception. Scams or confidence tricks exploit victims using their credulity, naïveté, compassion, vanity, irresponsibility, or greed and exploiting that. Researchers have defined confidence tricks as "a distinctive species of fraudulent conduct ... intending to further voluntary exchanges that are not mutually beneficial", as they "benefit con operators ('con men' - criminals) at the expense of their victims (the 'marks')". A scam is a crime even if no money was lost. text messages about missed calls, voicemail or delivery-related messages. The average person with a smartphone account receives one to two of these scams a day.

The text messages ask you to tap on a link to download or access something. There are a large number of variants of the Flubot text messages, but often they ask you to download an app to track or organize a time for a redelivery of your package, hear a voicemail message, or view photos that have been uploaded. However, the message is fake, there is no delivery. The voicemail or photos uploaded and the app is actually malicious software called Flubot.

Android Phones And iPhones Can Both Receive Texts From The Flubot.

If you receive one of these messages, do not click or tap on the link. Delete the message immediately.

What The Scam Messages Look Like

NOTE: Scammers are frequently updating the Flubot text message format. So always be on guard!

Flubot Text Messages Change Regularly

Flubot scammers are regularly updating the text messages they send out to try and infect your device with Flubot. Recently, we’ve received reports of messages relating to Zoom invites, Google verifications, and ‘thank you’ messages from clinics, as well as the major categories set out below.

Flubot text messages include a link that almost always contains a series of 5-9 random letters and numbers at the end of the link

As a general rule, if you receive a text message that contains a link, do not click on the link.

Photo Uploads

Starting in October 2021, some Flubot messages now say that your photos have been uploaded. They provide a link to where the ‘album’ has been uploaded.

The typical wording of these messages is: Someone uploaded your | pictures. A whole album is uploaded – | here:

FLUBOT Example

FLUBOT Example: An SMS that says someone has uploaded your photos

We strongly recommend that you never click on the links in these messages. However, if you do accidentally click on this link, we note that this will take you to a page that claims your device is already infected with Flubot and tells you that you need to install a security update to remove Flubot.

This is a clever trick by scammers; your phone is not infected, but installing the security update will infect your phone as it downloads the Flubot malwareMalware Short for "malicious software," this term means computer viruses and other types of programs that cybercriminals use to disrupt or access your computer, typically with the aim of gathering sensitive files and accounts..

Delivery Notifications

Starting in September 2021, many Flubot messages now talk about a delivery. They usually refer to DHL and always ask you to take some form of action in relation to the ‘delivery’. We have also started to see reports referring to Amazon deliveries.

Messages can include:

  • scheduling a delivery time
  • tracking a delivery
  • managing a delivery that is ‘in transit’ or will be ‘delivered soon’
  • telling you it’s your last chance to arrange pick up/delivery of a parcel
  • asking you to enter your details to receive a package
  • getting ‘more information’ about your delivery.

Unlike earlier Flubot messages (which are also still circulating), the new text messages may not contain spelling mistakes, so they can be harder to spot. However, they do contain a website link followed by 5-9 random letters and numbers. Here are some examples:

  • The delivery time for your parcel is 03/09. Check out your options:
  • Your DHL order ID1842225 will arrive soon. Track progress here: <>
  • Your order will be delivered by DHL tomorrow between 11:26 and 14:26. Track progress
  • You have (1) Pending Package! Ref: DHL-6461W Last chance to PICK it up >
  • You must enter your details 2cc receive your package with DHL
  • ARRIVAL today: your Amazon package. More INFO at
  • Arriving today: your (d08) Amazon {s7} package. More info at

 

Voicemail And Missed Call Notifications

Missed call and voicemail messages started circulating in 2021. They often begin with 5-9 random lowercase letters or numbers, then say you had a missed call or voicemail message.

The text message often includes several misspellings. Here are some examples.

  • ab12c3 Nfw voice yessage received
  • gh6tr7 Voicemail message receiied
  • x78y9z New oozce-message received

After saying you have a missed call, voicemail, or message, the messages include a link. The message may also say the voicemail message will be automatically deleted if you don’t access it.

 

What Happens If You Click Or Tap The Link

Clicking/tapping the link could lead to downloading malware (malicious software) to your phone.

Here’s what each type of scam looks like.

For Photo Upload Texts

You’ll probably see a screen with:

  • a warning that your device has been infected with Flubot
  • a button or link that asks you to ‘install security update’

The page sometimes says that a window may appear preventing the installation and that you should enable the instillation via your devices settings.

For Delivery Texts

You’ll probably see a screen with:

  • stolen DHL / courier branding
  • a button or link asking you to download an app to track your delivery’s progress

The page sometimes says your phone may flag the app as suspicious and that you should ignore this warning.

For Voicemail/Missed Call Texts

You’ll probably see a screen with:

  • your phone number
  • a note saying how long the fake message is (such as 2 minutes and 34 seconds)
  • a link to ‘Download voicemail app’ and instructions to enable the download of the application if this was blocked initially by your phone.

If You Have An Android Device

If you have an Android device, it will download an application called Voicemail71.apk, Update42.apk’ or DHL34.apk. This application is malware.

You would then be asked to install the application.

The landing page that fraudulently states your device is infected with Flubot can look like this:

The landing page that asks you to download the fake DHL application can look like this:

 

The Application May Be Able To:

  • read your text messages
  • send text messages from your phone
  • make phone calls from your number
  • access your contacts

Installing the software is likely to give scammers access to your passwords and accounts. They may be able to use this information to steal your money or personal information.

It will also ask other infected Australian phones to send Flubot messages to the numbers it steals from your phone, continuing and expanding the scam.

If You Have An iPhone

If you have an iPhone, you may see a link to download software. This software isn’t the same as Flubot, but it can still damage your device.

What To Do If You’ve Downloaded The Flubot

Act immediately. If you have already clicked the link to download the application, your passwords and online accounts are now at risk from hackers.

Don’t enter any passwords or log into any accounts until you have followed the below steps. If you need to check your online banking, use a different device to do so.

Clean Your Device

Cleaning your device using the steps below will remove the malicious software from your device.

To clean your device, you can:

  • contact an IT professional
  • download official Android anti-virusVirus A computer program that can replicate itself and spread from computer to computer or file to file. It comes to life only when you take a specific action, such as running a particular program. software through the Google Play Store or iPhone iTunes Store
  • perform a factory reset of the device, as soon as possible.

The best way to make sure that your phone is clean is to use the ‘Erase all Content and Settings’ or ‘Factory reset’ features. The exact name of the feature will depend on the device you have. Performing this reset of your device will delete all of your data including photos, messages, and authentication applicationsApplications Applications or Apps An application (software), commonly referred to as an ‘app’ is a program on a computer, tablet, mobile phone or device. Apps are designed for specific tasks, including checking the weather, accessing the internet, looking at photos, playing media, mobile banking, etc. Many apps can access the internet if needed and can be downloaded (used) either for a price or for free. Apps are a major point of vulnerability on all devices. Some are designed to be malicious, such as logging keystrokes or activity, and others can even transport malware. Always be careful about any app you are thinking about installing..

When performing a factory reset it’s important that you don’t restore from any backups created after you downloaded the app, as they will be infected.

Change Your Passwords And Secure Your Information

If you have logged in to any accounts or appsApps Applications or Apps An application (software), commonly referred to as an ‘app’ is a program on a computer, tablet, mobile phone or device. Apps are designed for specific tasks, including checking the weather, accessing the internet, looking at photos, playing media, mobile banking, etc. Many apps can access the internet if needed and can be downloaded (used) either for a price or for free. Apps are a major point of vulnerability on all devices. Some are designed to be malicious, such as logging keystrokes or activity, and others can even transport malware. Always be careful about any app you are thinking about installing. using a password since downloading the app, you need to change your passwords.

If you have used the same passwords for any other accounts, you also need to change those passwords.

Contact your bank and ensure your accounts are secure.

How To Protect Yourself

  • Do not click on links in text messages that contain a link with a series of random numbers and letters.
  • Do not call back the individual who sent the text. It’s unlikely that they are a scammerScammer A Scammer or Fraudster is someone that engages in deception to obtain money or achieve another objective. They are criminals that attempt to deceive a victim into sending more or performing some other activity that benefits the scammer. or criminalCriminal A criminal is any person who through a decision or act engages in a crime. This can be complicated, as many people break laws unknowingly, however, in our context, it is a person who makes a decision to engage in unlawful acts or to place themselves with others who do this. A criminal always has the ability to decide not to break the law, or if they initially engage in crime to stop doing it, but instead continues.. Scammers can disguise their caller ID as legitimate numbers to carry out these scams. This is also known as spoofingSpoofing Spoofing occurs when a caller maliciously transmits false caller ID information to increase the likelihood that you'll answer. Scammers often spoof local numbers, private companies, government agencies and other institutions. It can also apply to pretending to be an email address, or through other media..
  • Delete the message immediately.
  • Learn more about FluBot scams and other relevant phone scams at the ID Care website .

Have You Been Scammed?

  • Make a report to your National CybercrimesCybercrimes Cybercrime is a crime related to technology, computers, and the Internet. Typical cybercrime are performed by a computer against a computer, or by a hacker using software to attack computers or networks. Police, such as the US FTCFTC The Federal Trade Commission (FTC) is an independent agency of the United States government whose principal mission is the enforcement of civil (non-criminal) U.S. antitrust law and the promotion of consumer protection. The FTC can also act as a clearinghouse for criminal reports sent to other agencies for investigation and prosecution. To learn more visit www.FTC.gov or to report fraud visit ReportFraud.FTC.gov, UK ActionFraudActionFraud Action Fraud is the UK’s national reporting centre for fraud and cybercrime where you should report fraud if you have been scammed, defrauded or experienced cyber crime in England, Wales and Northern Ireland. WEBSITE LINK, Australian ACCC – if you have been a victim of this cybercrimeCybercrime Cybercrime is a crime related to technology, computers, and the Internet. Typical cybercrime are performed by a computer against a computer, or by a hacker using software to attack computers or networks..
  • We encourage you to report scams to the SCARS www.Anyscam.com website as well. This can help us to warn people about current scams, monitor trends and disrupt scams where possible. Please include details of the scam contact you received, for example by including the email or screenshot.
  • If you have lost personal information to a scammer and are concerned, you can contact IDCARE.
  • Spread the word to your friends and family to protect them.

Portions Courtesy of Scamwatch a service of the Australian Government’s Australian Competition and Consumer Commission (ACCC)

Essential Tools For Every Scam Victim From SCARS Publishing

Visit shop.AgainstScams.org

Each is based on our SCARS Team’s 31 plus years of experience.

SCARS Website Visitors get an Extra 10% Discount
Use Discount Code “romanacescamsnow” at Checkout

SCARS GREN BOOK - The SCARS STEPS Guide to Scam Victim Recovery
SCARS RED BOOK - Your Personal Scam Evidence & Crime Record Organizer
SCARS BLUE BOOK - Survivor's Recovery Journal
SCARS SLATE BOOK - A Guide For Families & Friends Of Scam Victims
SCARS LIME BOOK - Wisdom & Motivation for Scam Victims
SCARS CHERRY BOOK - A Guide To Understanding Your Fear
SCARS WORKBOOK - 8 Steps To Improvement
SCARS WORKBOOK - Understanding Self-Blame, Guilt, and Shame
100% of all profit goes to support FREE Scam Victims' Services

100% of all profit goes to help SCARS help more scam victims worldwide.

Your generous purchase allows us to maintain our scam avoidance, support, and recovery services. Please help SCARS and stand proud.

Always Report All Scams – Anywhere In The World To:

U.S. FTC at https://reportfraud.ftc.gov/#/?orgcode=SCARS and SCARS at www.Anyscams.com

Find Real Scammer & Fake Stolen Photos On ScamsONLINE.org
The SCARS Scammer Photo Gallery Website
Click Here To Donate To SCARS

Scroll to the bottom to leave a comment!

Your Feedback!

Please share your feedback below. Hearing from victims helps us refine our knowledge about scammer’s processes and methods, and then be able to better share factual authoritative information with victims worldwide. Please scroll down and share your thoughts and comments. What you think and experienced matters.

Please Share:

Please share our articles and knowledge with your friends & family. This is important!

Help others stay safe online – your knowledge can make the difference for both those being groomed and victims! The next victim might be your own family member or best friend!

SCARS the Society of Citizens Against Relationship Scams Incorporated

By the SCARS™ Editorial Team
Society of Citizens Against Relationship ScamsSCARS SCARS - Society of Citizens Against Relationship Scams Inc. A government registered crime victims' assistance & crime prevention nonprofit organization based in Miami, Florida, U.S.A. SCARS supports the victims of scams worldwide and through its partners in more than 60 countries around the world. Incorporated in 2015, its team has 30 years of continuous experience educating and supporting scam victims. Visit www.AgainstScams.org to learn more about SCARS. Inc.

A Worldwide Crime Victims Assistance & Crime Prevention Nonprofit Organization Headquartered In Miami Florida USA & Monterrey NL Mexico, with Partners In More Than 60 Countries
To Learn More, Volunteer, or Donate Visit: www.AgainstScams.org
Contact Us: Contact@AgainstScams.org

Latest & Updated SCARS RomanceScamsNow.com Posts:

SCARS Webinar: Money Mules

SCARS Webinar: Money MulesMoney mules Money mules are a type of money laundering where a person transfers illicit funds through a medium (such as a bank account) to obfuscate where the money came from. There are different types of money mules including witting, unwitting, and complicit. [VIDEO] Understanding How Victims Are [...]

SCARS Webinar: Romance Scams #1 – Pig Butchering Fraud & Military Impersonation Fraud [VIDEO]

SCARS Webinar: Romance Scams #1 [VIDEO] Pig ButcheringPig Butchering Sha Zhu Pan 殺主盤 “Pig Butchering” This is a scam type that originated in China involving the scammer developing a relationship with the victim - sometimes romantic sometimes not - and leading the victim to invest in a fake company or asset. These typically target smart younger women. FraudFraud In law, fraud is intentional deception to secure unfair or unlawful gain (money or other assets), or to deprive a victim of a legal right. Fraud can violate civil law (e.g., a fraud victim may sue the fraud perpetrator to avoid the fraud or recover monetary compensation) or criminal law (e.g., a fraud perpetrator may be prosecuted and imprisoned by governmental authorities), or it may cause no loss of money, property, or legal right but still be an element of another civil or criminal wrong. The purpose of fraud may be monetary gain or other benefits, for example by obtaining a passport, travel document, or driver's license, or mortgage fraud, where the perpetrator may attempt to qualify for a mortgage by way of false statements. A fraud can also be a hoax, which is a distinct concept that involves deliberate deception without the intention of gain or of materially damaging or depriving a victim. [...]

The World Online Is Not Safe For Those That Don’t Know!

REPORT-BLOCK-RECOVER

The Issue Of Race In Scam Reporting
Click Here To Learn More!

FIND SCAMMER PHOTOS ON
SCARSONLINE.ORG

FIND SCARS ON FACEBOOK
CLICK HERE

Disclaimer:

SCARS IS A DIGITAL PUBLISHER AND DOES NOT OFFER HEALTH OR MEDICAL ADVICE, LEGAL ADVICE, FINANCIAL ADVICE, OR SERVICES THAT SCARS IS NOT LICENSED OR REGISTERED TO PERFORM.

IN MANY SCARS ARTICLES, WE MENTION TOPICS INCLUDING TRAUMATrauma Emotional and psychological trauma is the result of extraordinarily stressful events that shatter your sense of security, making you feel helpless in a dangerous world. Psychological trauma can leave you struggling with upsetting emotions, memories, and anxiety that won’t go away. It can also leave you feeling numb, disconnected, and unable to trust other people. Traumatic experiences often involve a threat to life or safety or other emotional shocks, but any situation that leaves you feeling overwhelmed and isolated can result in trauma, even if it doesn’t involve physical harm. It’s not the objective circumstances that determine whether an event is traumatic, but your subjective emotional experience of the event. The more frightened and helpless you feel, the more likely you are to be traumatized. Trauma requires treatment, either through counseling or therapy or through trauma-oriented support programs, such as those offered by SCARS., ABUSE, SELF-HARM, SUICIDALITY, RISKY BEHAVIORBehavior   Behavior / Behavioral Actions Otherwise known as habits, behavior or behavioral actions are strategies to help prevent online exploitation that target behavior, such as social engineering of victims. Changing your behavior is the ONLY effective means to reduce or prevent scams., DISORDERS, ADDICTION, AND OTHER PSYCHOLOGICAL CONDITIONS. THE INFORMATION IS NOT A SUBSTITUTE FOR PROFESSIONAL MEDICAL ADVICE. ALWAYS SEEK THE ADVICE OF YOUR PHYSICIAN OR OTHER QUALIFIED HEALTH PROVIDERS WITH ANY QUESTIONS YOU MAY HAVE.

IF YOU’RE FACING A MEDICAL EMERGENCY, CALL YOUR LOCAL EMERGENCY SERVICES IMMEDIATELY, OR VISIT THE NEAREST EMERGENCY ROOM OR URGENT CARE CENTER. YOU SHOULD CONSULT YOUR HEALTHCARE PROVIDER BEFORE FOLLOWING ANY MEDICALLY RELATED INFORMATION PRESENTED ON OUR PAGES.

ALWAYS CONSULT A LICENSED ATTORNEY FOR ANY ADVICE REGARDING LEGAL MATTERS.

A LICENSED FINANCIAL OR TAX PROFESSIONAL SHOULD BE CONSULTED BEFORE ACTING ON ANY INFORMATION RELATING TO YOUR PERSONAL FINANCES OR TAX RELATED ISSUES AND INFORMATION.

This content and other material contained on the website, apps, newsletter, and products (“Content”), is general in nature and for informational purposes only and does not constitute medical, legal, or financial advice; the Content is not intended to be a substitute for licensed or regulated professional advice. Always consult your doctor or other qualified healthcare provider, lawyer, financial, or tax professional with any questions you may have regarding the educational information contained herein. SCARS makes no guarantees about the efficacy of information described on or in SCARS’ Content. The information contained is subject to change and is not intended to cover all possible situations or effects. SCARS does not recommend or endorse any specific professional or care provider, product, service, or other information that may be mentioned in SCARS’ websites, apps, and Content unless explicitly identified as such.

The disclaimers herein are provided on this page for ease of reference. These disclaimers supplement and are a part of SCARS’ website’s Terms of Use

Legal Notices: 

All original content is Copyright © 1991 – 2021 Society of Citizens Against Relationship Scams Inc. (D.B.A SCARS) All Rights Reserved Worldwide & Webwide. Third-party copyrights acknowledge.

SCARS, SCARS|INTERNATIONAL, SCARS, SCARS|SUPPORT, SCARS, RSN, Romance Scams Now, SCARS|INTERNATION, SCARS|WORLDWIDE, SCARS|GLOBAL, SCARS, Society of Citizens Against Relationship Scams, Society of Citizens Against Romance Scams, SCARS|ANYSCAM, Project Anyscam, Anyscam, SCARS|GOFCH, GOFCH, SCARS|CHINA, SCARS|CDN, SCARS|UK, SCARS|LATINOAMERICA, SCARS|MEMBER, SCARS|VOLUNTEER, SCARS Cybercriminal Data Network, Cobalt Alert, Scam Victims Support GroupSupport Group In a support group, members provide each other with various types of help, usually nonprofessional and nonmaterial, for a particular shared, usually burdensome, characteristic, such as romance scams. Members with the same issues can come together for sharing coping strategies, to feel more empowered and for a sense of community. The help may take the form of providing and evaluating relevant information, relating personal experiences, listening to and accepting others' experiences, providing sympathetic understanding and establishing social networks. A support group may also work to inform the public or engage in advocacy. They can be supervised or not. SCARS support groups are moderated by the SCARS Team and or volunteers., SCARS ANGELS, SCARS RANGERS, SCARS MARSHALLS, SCARS PARTNERS, are all trademarks of Society of Citizens Against Relationship Scams Inc., All Rights Reserved Worldwide

Contact the law firm for the Society of Citizens Against Relationship Scams Incorporated by email at legal@AgainstScams.org

Share This Information - Choose Your Social Media!

Leave A Comment

Go to Top