FedEx Spam Flooding the Net As Campaign Gets Second Wind


The massive spam campaign that started before the holidays has gotten its second wind and launched yet another flood of spam.

The messages brandjack FedEx and look like notifications from the company. The notices inform the recipient that a package is waiting for them, and since they were unable to complete delivery, they must print the attached receipt and bring it to their local depot. Those that clicked on the attachment were prompted to download a program rather than an image file or PDF of the promised attachment. Most people would realize something’s not right and cancel out but those who proceed wind up with malware infecting their system. The payload varies. Sometimes it’s a worm or Trojan, other times a fake antivirus program. It’s easy to protect yourself from this attack, you just need to use your common sense. FedEx doesn’t send delivery notices via email, for example.

“And delivery tracking information is usually sent by the merchant, not the delivery company,” says the Connecticut Better Business Bureau’s Howard Schwartz. “Every link in an unsolicited email and every attachment has the potential to not only ruin our lives, but steal personal information, harvest email addresses and contact information, turn our computers into spam generators or worse.”

These types of attacks will continue to grow throughout 2013 as spammers turn away from traditional spam and come up with new ways to distribute malware and go spear phishing. The face of spam is changing-huge botnets are out, malicious spam and text message spam are in. Spammers are constantly reinventing themselves and their techniques and it will be quite a task to stay one step ahead of them.

Written by Sue Walsh


  1. Lydia · February 6, 2013

    Aha, this must be the spammers’ way to celebrate Valentines Day! Since it’s also an occasion on which many packages are delivered, it’s another golden mine for spammers.

  2. Anthony Lark · February 15, 2013

    And how’s your Valentine’s Day, Lydia? I just took my girl to a great DVD marathon of the sappiest movies in history. Haha! I cooked food for her as well. She was absolutely happy, which made it a very huge success. Anyway, you could be right in saying it has something to do with Valentine’s, though from the way the writer described it, the e-mail was very generic and thus can apply to any occasion. In fact, considering that FedEx delivers thousands of packages every day, it could just work for a lot of people at any time. I wonder what FedEx is really doing about this.

  3. Solomon Winster · February 20, 2013

    Spammers will always find a reason to leave messages in our inbox. It’s basically like when you’re in love, and the girl happens to be a thousand miles away from you. You try to find a way to communicate or get to know her much better, obtain information about how her day is like. If you’re super duper in love, you can leave a lot of messages in a day. That will probably give her the creeps, but I think you get my analogy. What I would be interested to know is what FedEx is doing. Are they becoming proactive about it?

  4. Lena · February 21, 2013

    I am also wondering what FedEx has been doing to stop this spam. This isn’t the first name someone brandjacked them. Perhaps they’re giving those e-mails saying “Please don’t open mails from unsolicited blah blah blah.” The question is, are they cooperating with the government? Are they reporting this thing? There’s a good thing they don’t, because they themselves sometimes spam their subscribers with lots of promos and products. Oh well, as e-mail users, we just have to remind ourselves not all we get are real, and it’s our responsibility to make sure that what we’re opening is not spam.

  5. Mandy · February 25, 2013

    Hi, Lena, I would like to believe that FedEx is levelheaded enough to really do something about it. Just a few days ago, I received a note from my subscription that it’s denouncing the spam and that the company is currently coordinating with authorities for further investigation. Here’s my take on it, however. FedEx can only do so much. There will come a time when all its efforts are no longer sufficient to hold off these kinds of instances. I would suggest that let’s be smart with how we handle e-mails and spam.

  6. Edward · February 25, 2013

    I was really expecting them to come up with something that’s related to the Oscar’s, like you can get free tickets if you sign up in a raffle or something. Haha! Yes, I am very creative, and I think I make a good spammer. Of course, I wouldn’t do it. Sometimes the desperation of spammers is very laughable. Just look at the things they can come up with. I just hope that we are smart enough to notice that and that we don’t fall into any of their evil schemes. We have plenty of materials to help us in that aspect, including this blog.

  7. Ethan · February 28, 2013

    You cannot put an end to something that’s not bound to be dead. As long as FedEx is around and as long as there are still millions of people who use the service, we can still see a lot of these in the future. Spammers should always go for something that people believe in. However, I have to agree with those who say FedEx should take this seriously. Who knows, if this gets out of hand or if it causes a very huge issue, it may bring the reputation the company has worked hard for, for many years way, way down.

  8. Vince Gabriel · June 2, 2013

    This is why I am always reluctant when receiving messages that seem off-key. Even in cases where the message looks legit, I always call the company or individual that sent it. If there’s no way of contacting them, I don’t open the message at all. I agree that FedEx should do something about problems like this, but I also believe that we should play our part right. We should try to educate ourselves in the best way we can about spamming and spammers. This unscrupulous practice isn’t going away anytime soon, so we might as well learn to fight it.

Leave A Reply