At the end of January 2025, Chronopost was the victim of a cyber attack causing a personal data leak of 210,000 customers of the delivery service. Reported to the CNIL as soon as possible, the incident was quickly controlled. However, the personal data of users is in the wild at the mercy of the pirates who have already launched phishing offensives at SMS to get much more than a customer profile.
Don't pay attention to these SMS
Who has never received SMS or an email from a courier or a delivery service to notify that delivery has been made, will be late or must be offset? And it may even have been that for a few weeks, you have received one or more, even though you have not ordered anything recently.
And no, rest assured, it is not a forgetfulness on your part. It is even the opposite since behind this message is surely hidden a pirate having had access to the Chronopost customer file during the recent leak in which the mail's express delivery service was victim.
The process is simple. A “courier” sends you a message pretending that your package is too big to be put in the mailbox. He therefore invites you to reprogram the delivery of the package by clicking on a link at the end of the SMS.
If you ignore this message, then everything is fine.
How to protect yourself from scams?
If this scam works, it is because by targeting a very important customer file, the pirates can hame people who are really waiting for a package. So by a simple SMS, hackers can obtain personal data from only a few people, but enough to achieve their ends.
To protect yourself from phishing scams, there is not really existing protection apart from observation and common sense. Indeed, if you often receive packages, you know that when you are contacting, add the number or identifier of your order in the message and not your name or simply no information.
Then, if there must ever be a delivery reprogramming, the link on which you are redirected has information related to the delivery service (at least the company name).
Finally, the delivery services, whether it be Chronopost or Amazon for example, do not make you send an SMS. In fact, most of the time, the courier calls you when he arrives at the bottom of your home in order to warn you of his arrival. Even if, sometimes, the call is only there to look good, you are given.
The main thing to remember is that in essence, the hackers who go through the SMS play on the naivety of people. This is why some messages are full of faults, because they do not take the time to develop something “serious”.
To protect yourself at best with this type of scam, the best solution remains to ignore this type of messages, even if the source seems serious. Because with a single click, in an email or an SMS, your life can end up no longer belonging to you.
Source: Signal scams
With an unwavering passion for local news, Christopher leads our editorial team with integrity and dedication. With over 20 years’ experience, he is the backbone of Wouldsayso, ensuring that we stay true to our mission to inform.
