New scam targets delivery personnel from parcel and food delivery companies in Singapore

Published by The Straits Times on Apr 13, 2021

Police have uncovered a new scam in which delivery personnel from parcel and food delivery companies are the targets.

Under this scam variant, the victims would first receive a cash-on-delivery order via their company’s delivery app, the police said in a statement on Tuesday (April 13).

On the pretext of making payment for the delivery, the scammer would then ask for the victims’ mobile phone number via the app, claiming that it was for the purpose of transferring funds to the victims via PayLah!.

The victims would then receive a one-time password (OTP) and be prompted to log in to their PayLah! account and key in the OTP in order to receive delivery payments.

Shortly thereafter, the victims would receive a notification that their PayLah! account had been linked to a Google Pay account.

Upon reaching the delivery location, the victims would find no one there to receive the item. Subsequently, unknown transactions will be done using the victims’ bank accounts.

The police advised members of the public to always confirm transactions one is making before keying in the one-time password.

They also advised people to inform their banks immediately if their PayLah! accounts were linked to other accounts without their authorisation, and to report any fraudulent transactions to the bank immediately.

In a separate statement on Tuesday (April 13), the police also noted an increase in non-banking-related phishing scams involving spoofed e-mails and text messages related to parcel delivery.

Victims of such phishing scams would receive spoofed e-mails or text messages purportedly sent from a delivery company such as SingPost or DHL.

These phishing e-mails and text messages would usually prompt the victims to check the status of their parcel delivery by clicking on the URL link included in the e-mails and text messages.

Upon clicking the URL links, victims would be redirected to fraudulent websites, where they would be required to provide their credit or debit card details and an OTP.

In some cases, the victims would receive a notification that their credit or debit cards had been linked to an Apple Pay account.

Most of the victims only realised that they had been scammed when they discovered that unauthorised transactions were made using their credit or debit cards, said the police.

The police urge members of the public not to click on URL links provided in unsolicited e-mails and text messages, and always verify the authenticity of information received with the official website or sources.

They also advise people to contact their card issuing bank immediately if they received an OTP and did not make any online transactions, and to always verify the merchant details indicated in the OTP text message or notification before providing it.

The police cautioned against keying in the OTP on the payment page if not making the transaction, and never to disclose personal or Internet banking details and OTPs to anyone.

If members of the public have information related to these scams or are in doubt, they can call the police hotline at 1800-255-0000, or submit the info online at the Singapore Police Force’s website.

For more information on scams, members of the public can visit Scam Alert’s website or call the Anti-Scam Hotline at 1800-722-6688.

新加坡出现针对包裹和餐食递送员诈骗技俩

2021年4月13日 发布于8视界

警方发现了一个新的骗局,目标是主要是包裹和餐食递送员。

警方在星期二(4月13日)发表文告说,在这种骗局下,递送员会通过递送公司的应用程序,收到“货到付款”订单,骗子会以付款为借口,然后通过该应用程序询问受害者的手机号码,以便公司能通过PayLah!把递送费支付给他们。

递送员提供号码不久后,就会收到一次性密码和登录Paylah!账户的要求。他们按指示处理后,会收到另一则信息,指他们的Paylah!户头已经同一个谷歌支付Google Pay账户挂钩。

受害人以为这同支付递送费有关,往往不疑有他,直到抵达递送地点发现没人接收包裹或餐食,才惊觉上当。受害人过后也发现自己的银行户头出现不明交易。

警方提醒公众,在输入一次性密码前,先确认正在进行的交易。如果发现Paylah!户头在未经授权的情况下同其他账户挂钩,或是发现银行户头有可疑交易,应该马上通知银行。

在周二(4月13日)的另一份声明中,警方还注意到与银行无关的网络钓鱼诈骗案有所增加,涉及到与包裹交付有关的欺骗性电子邮件和短信。

此类网络钓鱼诈骗的受害者会收到据称从诸如SingPost或DHL之类的快递公司发送的欺骗性电子邮件或短信。

这些网络钓鱼电子邮件和文本消息通常会提示受害者通过单击电子邮件和短信中包含的URL链接来检查包裹交付状态。

单击URL链接后,受害者将被重定向到欺诈性网站,要求他们提供信用卡和转账卡详细信息以及一次性密码。

在某些情况下,受害者会收到有关其信用卡和转账卡已与Apple Pay帐户关联的通知。

警方说,大多数受害者只有在发现使用信用卡和转账卡进行未经授权的交易时才意识到自己被骗了。

警方敦促公众不要点击未经认正的电子邮件和短信中提供的URL链接,并始终核实从官方网站获得的信息。

他们还建议人们在收到OTP且未进行任何在线交易时立即与发卡银行联系,并始终在提供OTP文本消息或通知中验证商户详细信息。

警方告诫不要在不进行交易的情况下在付款页面上键入OTP,也切勿向任何人透露个人或网上银行详细信息和OTP。

如果公众有关于这些骗局的信息或有疑问,他们可以拨打警察热线1800-255-0000,或在新加坡警察局的网站上在线提交信息。

有关诈骗的更多信息,公众可以访问诈骗警报网站或致电1800-722-6688拨打反诈骗热线。

Common scams tricks 常用咋骗技俩

Home 主页