Current information on phishing and fraud attempts

The amount of so-called phishing messages (e-mails, text messages, Messenger messages) and malware on websites is on the rise. This page with practical tips and examples has been created to protect you from online risks.

Our top tips

  • Be careful when prompted to enter data, especially access data, payment and address information.
  • Look closely to check if the e-mail or text message actually comes from Austrian Post.
  • Stay critical about prize draws, bogus and teaser offers. 
  • Protect your Austrian Post account.
  • If you suspect fraud, please contact our Austrian Post customer service without delay.
Our tips in detail

How to identify a phishing attempt

  • By the sender 
    • The e-mail address does not end with @post.at.
    • The sender name is not Austrian Post.
  • By the content
    • The text is written in incorrect German; the writing style does not match that of Austrian Post.
    • The design does not match other e-mails or messages sent by Austrian Post; an edited logo is used.
    • The message's content does not make sense (you are not currently expecting any delivery from Austrian Post).
    • The message includes a request to submit payment or account details or other personal information (via e-mail or by clicking on a link). Unlike in the case of phishing mails, Austrian Post never requests bank details (IBAN or BIC) for the delivery of standard parcels. Bank details are only required for the use of paid online services, such as ordering parcel stamps, PostPay or buying from the online shop. In that case, bank details are required for the order process.
  • Attention! If items that you never ordered appear in your Austrian Post account, your Austrian Post account might have been phished or used with fraudulent intent. Please contact our Austrian Post customer service immediately.

 

Examples of current phishing attempts

pdf, 354 kb

Download

Phishing attempts

A phishing email is currently circulating in which the name and design of Österreichische Post AG are misused:

Screenshots of E-Mails.
  • In this email from "ohann.jungwirth.evu10@apol.com.tw" you will be asked to pay import duty/taxes or prepayment fees.
  • The given link leads to a page designed to steal your personal information.
  • Ignore this email and do not enter any personal information or credit card details.

  • Orange-coloured notification cards urge the recipient to urgently call a given phone number after two unsuccessful contact attempts because the recipient could not be found.
  • The information "Österreichische Post AG" ("Austrian Post"), a notification number and the request to have an ID card ready are apparently intended to convey respectability.
  • This is not a printed matter from Austrian Post! It is not a notification for a deposited item. The telephone number does not belong to Austrian Post.
  • It is unclear what the intentions behind the postcards are, but there are indications of dubious practices and fraud. In this context, it is recommended not to contact unknown phone numbers and to be particularly vigilant when disclosing personal data, such as ID or account information.
Phishing

This information is NOT from Austrian Post. Please do not click on the link, do not share your personal details under any circumstances and do not follow any request for payment.
Phishing

Fraud with classified ads and supposed Austrian Post courier services is booming, as reported by the website Watchlist Internet:

Some customers have been receiving phishing e-mails from the sender info@sales.songrust.com regarding "Lieferung des aufgehängten Pakets!" ("Delivery of held parcel!"). The subject line reads: Ihr Paket ist bereit für die Zustellung ("Your parcel is ready for delivery").

Please do not click on the link, by no means provide your personal data and do not follow any requests for payment. The e-mail address "info@sales.songrust.com" is NOT an e-mail address of Austrian Post.

Phishing

Customers receive an SMS message from scammers informing them of alleged delivery attempts. Personal details must be confirmed by clicking on the link, otherwise the delivery will be returned.

Please do not click on the link, do not give out your data under any circumstances and do not respond to any payment requests. The website "postaustria.org" is NOT an Austrian Post website.
Screenshots of a phishing attack.

Customers receive a notification that looks like the “yellow notification”. This paper includes a QR code that will take you to a website where customer details are requested with fraudulent intent. The website post-kontakt.at/de is NOT a website of Austrian Post.

ATTENTION!

  • Do not scan the QR code
  • NEVER click on the link post-kontakt.at/de
  • Do not enter your personal details on this site under any circumstances

Screenshots of the notification and the underlying (fake) site

Phishing
Phishing

Phishing Website
This information is NOT from Austrian Post. Please do not click on the link, do not share your personal details under any circumstances and do not follow any request for payment. Austrian Post does not sell or raffle parcels or pallets.

Despite extensive measures, Austrian Post is being misused as a purported sender of phishing e-mails. Currently, there is a campaign involving e-mails with the subject "Your parcel is waiting!" that asks for payment of a "delivery fee".

In this fraud or phishing campaign, please note:

  • The e-mail appears to have been sent from meine.post@post.at. The scammers use a trick that makes it seem as though the e-mail is genuinely from Austrian Post. The Austrian Post logo is misused—sometimes distorted—to create a false sense of trust.

  • Do not click on suspicious links in e-mails or SMS.

  • Never open suspicious attachments or documents.

  • Never disclose passwords.

  • A common e-mail fraud scheme involves fabricating problems with a supposed parcel. As part of a payment request for further processing of the parcel, account details are demanded to withdraw large sums.
    If you receive payment requests via e-mail after ordering Austrian Post services (such as AllesPost Germany), you can verify that they are genuine transactions by checking the item and order numbers.

Screenshots of current fraud attempts

Phishing examples

Further variants

Phishing Example

Phishing examples
This information is NOT from Austrian Post. Please do not click on the link, do not share your personal details under any circumstances and do not follow any request for payment.

Phishing Website
This information is NOT from Austrian Post. Please do not click on the link, do not share your personal details under any circumstances and do not follow any request for payment.

Phishing Website
This information is NOT from Austrian Post. Please do not click on the link, do not share your personal details under any circumstances and do not follow any request for payment.