Police warn of new scam targeting delivery people
They also note rise in phishing scams involving spoof e-mails and texts
Police have uncovered a new scam targeting delivery people from parcel and food delivery companies.
The victims would first receive a cash-on-delivery order via the company's delivery application, the police said in a statement yesterday.
On the pretext of paying for the delivery, the scammer would then ask for the victims' mobile phone number via the app, claiming it was to enable the transfer of funds to the victims via PayLah!
The victims would then receive a one-time password (OTP) and be prompted to log in to their PayLah! account and key in the OTP in order to receive payments for their deliveries.
Shortly thereafter, the victims would receive a notification that their PayLah! account had been linked to a Google Pay account.
Upon reaching the location for delivery, the victims would find no one there to receive the item.
Subsequently, there will be unknown transactions in the bank accounts of the victims.
The police have advised members of the public to always confirm the transactions they are making before keying in the OTP.
They also advised people to inform their banks immediately if their PayLah! accounts have been linked to other accounts without their authorisation, and to report any fraudulent transactions to the banks immediately.
In a separate statement yesterday, the police said they have noted an increase in non-banking-related phishing scams involving spoof e-mails and text messages related to parcel delivery.
Victims of such scams would receive spoof e-mails or text messages purportedly sent from a delivery company such as SingPost or DHL.
These phishing e-mails and text messages would usually prompt the victims to check the status of their parcel delivery by clicking on the URL link included in the text messages and e-mails.
Upon clicking the URL links, the victims would be redirected to fraudulent websites where they would be required to provide their credit or debit card details and OTP.
Most of the victims only realised they had been scammed when they discovered unauthorised transactions made using their credit or debit cards.
The police urged people not to click on URL links provided in unsolicited e-mails and text messages, and to verify the information received with the official website or sources.
They also advised people to contact their card issuing bank immediately if they receive an OTP but have not made any online transactions, and to always verify the merchant details indicated in the OTP text message or notification before providing it.
They advised people not to key in the OTP on the payment page if they are not making the transaction, and never to disclose personal or Internet banking details and OTP to anyone.
If you have information related to these scams or are in doubt, you can call the police hotline on 1800-255-0000, or submit information online at www.police.gov.sg/iwitness
For more information on scams, you can visit www.scamalert.sg or call the Anti-Scam Hotline on 1800-722-6688.