Don’t Fall for the Evri@Evri-notes.com Parcel Delivery Scam

Photo of author

Written by: Stelian Pilici

Published on:

A new phishing scam impersonating the parcel delivery company Evri has been making the rounds and stealing personal and financial information from unsuspecting recipients. This elaborate scam utilizes convincing Evri branding and logos to trick customers into providing sensitive details under the guise of a delivery issue that requires immediate payment.

This article will provide an in-depth look at how the Evri@Evri-notes.com scam operates, who is behind it, how to identify fraudulent Evri emails and websites, what to do if you fell victim, and key tips to protect yourself going forward. With online shopping and deliveries surging in popularity, parcel delivery scams are becoming increasingly common and consumers must stay vigilant.

EVRI SCAM

Overview of the Evri@Evri-notes.com Scam

The Evri@Evri-notes.com scam involves victims receiving an unsolicited email claiming to be from the delivery company Evri. The emails use Evri’s official branding and colors to appear legitimate at first glance. They state that there is an issue attempting to deliver your parcel and provide a fake tracking number.

The email prompts you to click on a link to resolve the delivery problem, but the link actually directs to a sophisticated fake Evri website. On this phishing site, victims are asked to enter personal details like name, address, phone number, and even credit card information to pay a “re-delivery fee.”

In reality, the scammers behind the email do not work for Evri and are simply stealing sensitive customer data. Evri has confirmed these emails are fraudulent and not sent by them. The Evri@Evri-notes.com sender address is a clear red flag, as Evri would only send emails from an @evri.com domain.

This scam is essentially a phishing attack specifically targeting Evri customers by impersonating the company and tricking victims into willingly providing the data the scammers want. With stolen credit card numbers and personal information, victims open themselves up to identity theft and financial fraud.

The Evri scam emails and websites are designed to look authentic, mentioning specific parcel numbers and details to convince recipients the message is real. But any email from Evri-notes.com should immediately raise suspicions, as this is not an actual domain name associated with the delivery company.

Who is Behind the Scam?

Experts believe coordinated cybercriminal networks based internationally are behind most phishing scams impersonating legitimate companies like Evri. Sophisticated tools allow these bad actors to mass produce fraudulent emails and high-quality fake websites at scale.

The networks who create and spread phishing scams are skilled at exploiting vulnerable victims through urgency and impersonation. Very little is known about the actual individuals behind parcel delivery scams, as they conceal their identities and locations using proxy servers and anonymity software.

Phishing operators are skilled at staying several steps ahead of defenses by continually evolving their tactics, domains, and technical infrastructure. They work together in underground hacking forums to share information and tools that improve their capabilities and evade authorities.

While the exact source location of Evri scams is unknown, many phishing operations originate from Africa, Eastern Europe, the Middle East, and parts of Asia due to lax cybercrime laws in those regions.

How the Evri@Evri-notes.com Scam Works

The scammers behind the Evri email phishing scam use a variety of deceptive techniques to trick customers step-by-step:

1. Victims Receive an Unsolicited Email

The scam starts with victims receiving an unprompted email sent to their inbox. The sender email address is disguised to look like it is from Evri, such as “evri@evri-notes.com” or “support@evri-notes.com.”

The email has Evri logo images and branding that appear legitimate. The message complains of an issue attempting to deliver a parcel to you, trying to create panic or urgency to act.

2. Email Includes Fake Tracking Information

The scam email includes fake parcel tracking information, such as an “Order Number” and specific delivery details. This makes the email appear credible as though it references a real pending delivery the victim is expecting.

The tracking details are completely fabricated by the scammers to convince you the message relates to your purchase. Real Evri tracking numbers only work on the official Evri website.

3. Message Says Payment is Needed to Resolve Delivery

After citing fake tracking information, the email states there is a problem delivering your package that requires additional payment from you to resolve.

Common reasons given include that the parcel needs redelivery, the address is incorrect, customs fees apply, or additional delivery charges are due. The scammers make up an urgent-sounding issue to motivate customers to take action.

4. Email Includes a Link to Fake Evri Site

The scam email includes a clickable link, button, or website redirect to supposedly resolve the delivery problem. The link description disguises the destination, such as “Refund Delivery Fee” or “Update Delivery.”

In reality, the link directs to a sophisticated fake copy of the Evri website under the scammers’ control, instead of the real Evri site. Victims won’t notice the different domain at first.

5. Fake Site Requests Personal and Payment Details

On the phishing site, victims see Evri branding and payment pages. The site requests all the details needed to steal the victim’s identity and charge their credit card.

Requested data includes full name, address, phone number, credit card number, security code, and expiration date. Victims enter this sensitive information, believing they are simply paying Evri a delivery fee.

6. Scammers Steal Data and Commit Fraud

With all the personal and financial information entered, the scammers immediately steal and save victims’ details. They use this data to make fraudulent online purchases, drain bank accounts, take out loans, and steal identities.

The fake Evri site was just a front to gather sensitive customer data without raising suspicions. Victims may only realize weeks later from fraud alerts, account issues, or credit damage.

What to Do if You Fell Victim to the Scam

If you entered any sensitive information on an Evri-notes.com site or suspicious Evri email, take these steps immediately to protect yourself:

1. Contact Your Bank and Credit Card Companies

Call all financial institutions associated with any compromised accounts and notify them you were the victim of fraud. Ask to immediately freeze or cancel your cards and accounts to prevent fraudulent use.

2. Place Fraud Alerts on Your Credit

Contact one of the three credit bureaus (Experian, Equifax, TransUnion) to place an initial 90-day fraud alert on your credit file to help prevent thieves from opening new accounts. This alerts lenders to verify your identity for new applications.

3. Reset Online Account Passwords

Change the passwords on every online account that may have used the same login credentials as compromised sites. Use unique, complex passwords for each account. Enable two-factor authentication where possible.

4. Monitor Your Accounts and Credit Closely

Keep a very close eye on all your financial accounts and credit reports for signs of misuse. Check your credit card and bank statements daily to spot unauthorized charges. Review credit reports weekly for fraudulent new accounts.

5. File Reports With the FTC and Police

File identity theft and fraud reports with your local police department, the FTC at IdentityTheft.gov, and the credit bureaus. Provide copies of the official reports when disputing fraudulent accounts opened in your name.

6. Warn Contacts Who Received Scam Emails

Let your friends, family members, colleagues or contacts know to ignore any emails forwarded from your compromised account. Delete all contacts from affected email accounts to prevent further spread.

7. Strengthen Online Security Going Forward

Enhance your online security after a phishing attack by being vigilant against suspicious links, using unique passwords, installing antivirus software, avoiding public Wi-Fi for shopping, and shredding physical documents containing sensitive data.

Stay alert for additional scam attempts, as victims often get targeted multiple times. Be wary of any unsolicited contacts referencing the initial scam as those may also be fraudulent.

How to Identify and Avoid Fake Evri Emails and Websites

While scam messages and sites impersonating Evri can look convincing, there are key signs to recognize fraudulent emails and domains:

Sender Email Address

Evri only sends emails from addresses ending in @evri.com. Any Evri correspondence from a different domain like @evri-notes.com is fake.

Generic Greetings

Legitimate Evri emails address the recipient specifically by name. Impersonal “Dear customer” greetings indicate a scam.

Logos and Branding

Scammers often slightly alter logos and images compared to the real company branding. Look for minor inconsistencies.

Grammatical Errors

Scam emails and sites often contain spelling, grammar or formatting errors uncommon for major corporations.

Requests for Information

Evri never asks for personal or full payment information over email. Requests for account details or credit card numbers are a sign of fraud.

Threatening Language

Pressure tactics using urgent language and threats of account suspension are used to overwhelm victims’ judgment.

Hover Over Links

Hover your mouse over any links without clicking to preview the actual destination URL. Fake Evri sites have different domains than the official site.

Delivery Fee

Evri does not process payments or have an “ipay” delivery fee payment system, contradicting scam claims.

Contact Evri

If unsure, call Evri customer service directly at the number on their official website to verify the legitimacy of any emails or payment requests.

Enable Two-Factor Authentication

Using two-factor authentication adds an extra layer of security, requiring a secondary one-time code to log into your Evri account in addition to a password.

Frequently Asked Questions about the Evri@Evri-notes.com Scam

What is the Evri@Evri-notes.com scam?

The Evri@Evri-notes.com scam is a phishing attack where victims receive fraudulent emails pretending to be from the delivery service Evri. The emails claim there is an issue with a parcel delivery and provide a fake tracking number. They include links to a fake Evri website that steals personal and payment information entered by victims.

How does the Evri scam work?

The scam begins with an unsolicited email sent to the victim’s inbox using Evri branding and logos. The email mentions a parcel delivery problem that requires the victim to click a link and pay a redelivery fee. The link goes to a convincing but fake Evri site that requests the victim’s name, address, phone number, credit card, and other sensitive details. The scammers then steal this information.

Are the tracking numbers in the email real?

No, the tracking numbers provided in the Evri scam emails are completely fabricated. They cannot be used to track any actual shipment. The fake tracking numbers are used to make the email appear legitimate.

Should I click links or pay fees in an Evri email?

No. Any links, buttons, or payment requests in an unsolicited Evri email should be considered fraudulent. Evri does not ask customers for payments or sensitive information through email links.

How can I identify a fake Evri email or website?

Fake Evri emails come from non-Evri domains like @evri-notes.com. They have spelling errors, threatening language, fake logos, and ask for personal data. Fake Evri sites have slightly different URLs and logos compared to the real Evri site.

What should I do if I entered my information?

If you provided your details, immediately contact your bank and credit card companies to freeze accounts. Place fraud alerts on your credit, reset account passwords, monitor your credit reports, and file an identity theft report with the FTC.

How can I protect myself from the Evri scam?

Avoid clicking directly on links in emails, manually type in Evri’s real website URL each time, use unique passwords, enable two-factor authentication, watch for phishing red flags, and call Evri to verify questionable messages.

Who is behind the Evri phishing scam?

Cybercriminal networks and scammers coordinates these phishing scams, often operating internationally and using sophisticated tools to hide their identities. Their goal is to steal personal and financial data for monetary gain through fraud.

Has Evri addressed this scam?

Yes, Evri has acknowledged the scam and released warnings on their official website for customers. Evri advises customers to ignore any suspicious emails and to not provide information or payment through unverified links or sites.

Should I forward scam emails to warn others?

No, you should not forward scam emails, as this spreads the phishing attack further. Delete the email immediately and notify contacts separately with new emails or phone calls to warn them.

The Bottom Line

The Evri@Evri-notes.com email scam highlights the importance of staying vigilant against parcel delivery phishing attacks by inspecting emails closely and never blindly clicking links or entering sensitive data. If a message creates an excessive sense of urgency, fear, or pressure, treat it as fraudulent.

Safeguard your personal and financial information by proactively identifying fake emails using common red flags like incorrect domains, grammar errors, threats, and requests for private data. Avoid clicking directly from emails, independently navigate to sites using bookmarks, and confirm legitimacy directly with customer service.

With identity theft and credit card fraud on the rise, consumers must outsmart phishing scammers seeking to exploit an increase in deliveries. If you received a suspicious contact claiming to be from Evri, ignore the message and contact the company directly through their official website or customer service number to verify its authenticity.

How to Stay Safe Online

Here are 10 basic security tips to help you avoid malware and protect your device:

  1. Use a good antivirus and keep it up-to-date.

    Shield Guide

    It's essential to use a good quality antivirus and keep it up-to-date to stay ahead of the latest cyber threats. We are huge fans of Malwarebytes Premium and use it on all of our devices, including Windows and Mac computers as well as our mobile devices. Malwarebytes sits beside your traditional antivirus, filling in any gaps in its defenses, and providing extra protection against sneakier security threats.

  2. Keep software and operating systems up-to-date.

    updates-guide

    Keep your operating system and apps up to date. Whenever an update is released for your device, download and install it right away. These updates often include security fixes, vulnerability patches, and other necessary maintenance.

  3. Be careful when installing programs and apps.

    install guide

    Pay close attention to installation screens and license agreements when installing software. Custom or advanced installation options will often disclose any third-party software that is also being installed. Take great care in every stage of the process and make sure you know what it is you're agreeing to before you click "Next."

  4. Install an ad blocker.

    Ad Blocker

    Use a browser-based content blocker, like AdGuard. Content blockers help stop malicious ads, Trojans, phishing, and other undesirable content that an antivirus product alone may not stop.

  5. Be careful what you download.

    Trojan Horse

    A top goal of cybercriminals is to trick you into downloading malware—programs or apps that carry malware or try to steal information. This malware can be disguised as an app: anything from a popular game to something that checks traffic or the weather.

  6. Be alert for people trying to trick you.

    warning sign

    Whether it's your email, phone, messenger, or other applications, always be alert and on guard for someone trying to trick you into clicking on links or replying to messages. Remember that it's easy to spoof phone numbers, so a familiar name or number doesn't make messages more trustworthy.

  7. Back up your data.

    backup sign

    Back up your data frequently and check that your backup data can be restored. You can do this manually on an external HDD/USB stick, or automatically using backup software. This is also the best way to counter ransomware. Never connect the backup drive to a computer if you suspect that the computer is infected with malware.

  8. Choose strong passwords.

    lock sign

    Use strong and unique passwords for each of your accounts. Avoid using personal information or easily guessable words in your passwords. Enable two-factor authentication (2FA) on your accounts whenever possible.

  9. Be careful where you click.

    cursor sign

    Be cautious when clicking on links or downloading attachments from unknown sources. These could potentially contain malware or phishing scams.

  10. Don't use pirated software.

    Shady Guide

    Avoid using Peer-to-Peer (P2P) file-sharing programs, keygens, cracks, and other pirated software that can often compromise your data, privacy, or both.

To avoid potential dangers on the internet, it's important to follow these 10 basic safety rules. By doing so, you can protect yourself from many of the unpleasant surprises that can arise when using the web.

Previous

Don’t Fall for the Double Your Bitcoin Scam Stealing Crypto

Next

Don’t Fall for the Viral Brooks Clearance Sale Scam