The fraudulent activity is initiated by the delivery of a Facebook message with the aim of obtaining delivery and email addresses. A fraudulent message is then sent to the email address from email@example.com requesting payment of €50 as shipping tax on behalf of GLS.
Warning against phishing messages and fraudulent buyers on social media
Fraudulent SMS messages
GLS warns against fraudulent SMS messages that claim to deliver a package. Fraudulent SMS messages with malicious content are sent from a phone number that recipients are normally contacted by during the parcel delivery process. The fraudulent message may appear to be another in a conversation regarding the delivery of a package, without changing the name of the sender of the message.
Fraudulent SMS messages contain a link to a fake website requiring the completion of credit card details. GLS CZ never sends links or requests for additional payments via SMS. If you receive a similar SMS, do not click on anything and delete the message.
GLS CZ s.r.o. warns against fraudulent e-mails and messages on social networks that appear to be official GLS communications, but are aimed at obtaining personal data or financial gain. The message may be delivered from various email addresses mimicking the GLS address, but never from the gls.cz or gls.com domain. The domain is one of the important distinguishing features that point to a scam, as are uncharacteristic verbiage or grammatical errors. Fraudulent activity can also be initiated by a Facebook message aimed at obtaining a delivery or email address. The recipients of the emails are invited to click on a link or pay an amount under various pretexts, such as shipping tax, redelivery, etc.
GLS does not in any case request any additional payments from its clients or contact them via social media messages or unofficial email addresses. GLS communications are sent from official domains and each message includes the unique parcel number of the shipment in question as an identifier. The existence of the current shipment can also be verified on the GLS website in the shipment tracking section.
Example - Shipping tax
Example - Insurance on behalf of the recipient
The fraudulent activity is initiated by a message with the subject line "Confirm receipt of GLS mail", which is sent from "Service GLS Express". In this case, the fraudster informs the recipient of the package that a money order has been registered in the recipient's name. It further states that GLS provides insurance on behalf of the recipient to cover the monetary value of the loss or damage to the package. The purpose of this message is to get the user to click on a link and purchase 3,000 PSC Mastercard coupons.
The goal in this case is to obtain and misuse payment information. GLS does not request any payment information from recipients, do not click on any links, and do not respond to messages like this.
Please do not reply to messages of a similar type, do not click on the links provided here, do not provide any personal data and delete messages immediately.
Fraudulent buyers on social media
GLS CZ s.r.o. warns against the increasing cases of fake buyers on the Internet. Their trick is to contact people who sell goods, for example, through the Marketplace on Facebook or Bazoš.cz. The scammers send a message to the seller that they are interested in buying the goods and paying the money via a fictitious Secure Transaction Service on a fake GLS website. The seller is instructed to click on the Get Money button and enter their credit card details to transfer the amount of money for the goods sold.
GLS does not provide any service to third parties to enable advance payments. The fake domain used to obtain sensitive data can be identified by the altered form of the URL: gls-group-eu.site or gls-group-eu.sec-orders.site. A similar trick is to ask people to pay additional insurance or tax, e.g. by purchasing vouchers via www.dundle.com.
In email, SMS or social media communications, GLS never asks the recipient to pay any amount before the actual delivery of the parcel. The recipient shall only pay any COD amount at the time of delivery, and always to the GLS courier by credit card or cash.
Example of fraudulent communication on Whatsapp and example of a fake website
Example of a fraudulent conversation on Whatsapp
We continue to warn of fraudulent messages that are now using fraudulent GLS websites to extort money. Please pay attention to the URL address that is sent to you via the scam message. The fraudulent site uses the domain gls-group-eu.site, GLS does not offer its services at this address.
Example of a fraudulent website
The seller is directed to a fake GLS website where they are asked to click on the Get Money button and fill in their credit card details. However, this is used to charge, not credit the card. Do not enter your credit card details anywhere. GLS does not provide these services.
Example from www.dundle.com