Many people in the UK have been targeted with a text or picture (MMS) message that looks like it’s from a delivery service, or it may say that you’ve received a voicemail. The message appears in your phone’s built-in messaging app (not third-party apps such as whatsapp, signal etc) and asks you to download an app so that you can track a parcel or listen to the voicemail. Some messages claim to be from DHL, like our example below. But the scam has also used other company brands like Amazon, Asda, and Argos. They can also just generically reference ‘your parcel’ without mentioning a brand name.
If you click and download the app on an Android phone, it’ll try to install the app. If the app is installed, the malware contained in the app could intercept text messages or capture online banking details.
This fraud attack has affected all network operators and, although we believe we have blocked the majority of messages thanks to our enhanced protections, a small number of our customers may have received them. We’re advising customers to be alert and careful about clicking on any links received via text or picture (MMS) message.
You can delete it. You can also report it for free by forwarding the message to 7726. Where you forward a fraudulent message to 7726 and do not receive a reply, then this may be because you forwarded an MMS (picture) message, which 7726 does not currently support. In such cases, please text the word FRAUD to 7726, followed by the sender’s number/ID when prompted.
Your phone won’t be infected with malware and you can delete the message. To report the message, forward it free of charge to 7726. Where you forward a fraudulent message to 7726 and do not receive a reply, then this may be because you forwarded an MMS (picture) message, which 7726 does not currently support. In such cases, please text the word FRAUD to 7726, followed by the sender’s number/ID when prompted.
Please be aware that your contacts, text messages, and online banking details may have been accessed by fraudsters.
If this has happened, you’re advised to follow the steps below immediately.
If you need help with any of the steps above, please contact us on 333.
For further protection:
If your device has been infected with the Flubot malware, you may have been charged for text messages over your plan. If so, we’ll arrange a refund for you as soon as possible.
Your device won’t have been affected and you can delete the message. If you’d like to report this, then forward it for free to 7726. Where you forward a fraudulent message to 7726 and do not receive a reply, then this may be because you forwarded an MMS (picture) message, which 7726 does not currently support. In such cases, please text the word FRAUD to 7726, followed by the sender’s number/ID when prompted.
Any feedback you have helps us make your experience better.