Cash on Delivery Scam Alert: Expert Warning on Unsolicited Parcels

Post Views: 11

Beware of unsolicited cash-on-delivery (COD) parcels as cybersecurity professionals warn of a rising fraud scheme involving deceptive delivery processes.

The Kerala Incident

In the incident, an elderly couple received a shipment addressed to the woman, despite no prior order placement. The package was labeled as a face mask, but the recipients declined acceptance upon suspicion. Before returning the item, a delivery agent requested an one-time password (OTP) sent to the recipient’s mobile number. After the code was provided, the parcel was returned. Subsequent days saw repeated delivery attempts, accompanied by calls from multiple locations. Investigators confirmed all packages were sent as COD orders.

How the Fraud Works

According to law enforcement, fraudsters acquire victims’ contact details prior to sending low-value or inert items, including used clothing, bricks, or other inexpensive objects. If recipients accept the delivery and pay the COD fee, funds are transferred to the perpetrators. Persistent delivery efforts often aim to coerce victims into making payments. Delivery personnel frequently remain unaware of the deception, as they follow standard e-commerce protocols. Payments are collected via cash or QR code transactions, mimicking legitimate online purchases.

Future Crime Research Foundation’s Advice

The Future Crime Research Foundation has categorized these schemes as a novel form of social engineering, where cybercriminals exploit personal information to fabricate credibility. The organization advises consumers to reject unrequested packages, avoid sharing OTPs with unknown parties, and refrain from scanning QR codes or processing payments without verifying delivery legitimacy. It also recommends maintaining a dedicated bank account with limited funds for online transactions to reduce financial exposure.

Expert Recommendations

Experts emphasize the importance of minimizing the sharing of personal details like mobile numbers and home addresses on public platforms. Any suspicious delivery, fraudulent call, or payment request should be reported immediately to the National Cyber Crime Helpline (1930) or the National Cyber Crime Reporting Portal. Cybersecurity analysts note that the expansion of e-commerce and digital payment systems has created new avenues for fraudsters to exploit vulnerable users. They stress that vigilance against unexpected deliveries, thorough verification of payment requests, and adherence to fundamental cybersecurity practices are critical defenses against evolving COD scams.