惯性聚合 高效追踪和阅读你感兴趣的博客、新闻、科技资讯
阅读原文 在惯性聚合中打开

推荐订阅源

S
Schneier on Security
The Register - Security
The Register - Security
月光博客
月光博客
freeCodeCamp Programming Tutorials: Python, JavaScript, Git & More
OSCHINA 社区最新新闻
OSCHINA 社区最新新闻
The GitHub Blog
The GitHub Blog
博客园 - 司徒正美
罗磊的独立博客
U
Unit 42
S
SegmentFault 最新的问题
Y
Y Combinator Blog
博客园_首页
Hugging Face - Blog
Hugging Face - Blog
J
Java Code Geeks
Schneier on Security
Schneier on Security
Know Your Adversary
Know Your Adversary
C
Check Point Blog
Cyber Security Advisories - MS-ISAC
Cyber Security Advisories - MS-ISAC
Simon Willison's Weblog
Simon Willison's Weblog
V
Vulnerabilities – Threatpost
让小产品的独立变现更简单 - ezindie.com
让小产品的独立变现更简单 - ezindie.com
阮一峰的网络日志
阮一峰的网络日志
The Hacker News
The Hacker News
博客园 - 叶小钗
C
Cybersecurity and Infrastructure Security Agency CISA
Spread Privacy
Spread Privacy
L
LINUX DO - 热门话题
T
The Exploit Database - CXSecurity.com
P
Palo Alto Networks Blog
cs.CL updates on arXiv.org
cs.CL updates on arXiv.org
Latest news
Latest news
L
Lohrmann on Cybersecurity
A
About on SuperTechFans
L
LangChain Blog
Stack Overflow Blog
Stack Overflow Blog
S
Securelist
A
Arctic Wolf
D
Darknet – Hacking Tools, Hacker News & Cyber Security
T
Threatpost
Scott Helme
Scott Helme
博客园 - 聂微东
博客园 - 【当耐特】
T
Tenable Blog
I
Intezer
D
DataBreaches.Net
B
Blog RSS Feed
Security Latest
Security Latest
C
Cisco Blogs
T
Tor Project blog
N
Netflix TechBlog - Medium

Malwarebytes

Kali365 phishing kit bypasses MFA and steals Microsoft logins Company bragged phone mics could listen to conversations. They couldn’t. Fake LinkedIn emails abuse Adobe to track victims Fake software on GitHub and SourceForge distribute Deno RAT 700+ education and tech websites hijacked in huge ClickFix malware campaign Scammers pretending to be Microsoft had help from US executives A week in security (May 18 – May 24) Update Chrome now: Critical bugs could let attackers run code Microsoft Defender vulnerabilities are being exploited in the wild TikTok, YouTube, and Roblox face scrutiny, but age gates won’t fix child safety Catch spyware in the act with Windows Webcam Monitoring Researchers left AI agents alone in a virtual town and watched it all unravel Fake malware-signing service Fox Tempest dismantled by Microsoft Firefox 151 packs big privacy upgrades into a small update Biometrics, diagnoses, and bank details exposed in major healthcare breach Facebook scam promises cheap Aldi meat boxes, steals payment info instead YouTube wants your face to fight deepfakes Microsoft is changing Edge’s plaintext password behavior A week in security (May 11 – May 17) AI is distorting the Holocaust (Lock and Code S07E10) Attackers replaced JDownloader installer downloads with malware Meta’s confusing new approach to chat privacy Why Malwarebytes blocks some Yahoo Mail redirects Deepfake sextortion forces schools to remove student photos from websites Texas sued Netflix over claims it secretly collected and sold users’ data May 2026 Patch Tuesday: no zero-days but plenty to fix Fake Claude search results lure Mac users into ClickFix attack 1 in 8 employees have sold company logins or know someone who has Stolen Canvas data was “returned” after hacker agreement, Instructure says Yarbo responds to robot flaws that could mow down their owners A week in security (May 4 – May 10) Microsoft says Edge’s plaintext password behavior is “by design” ShinyHunters escalates Canvas attacks with school login defacements Massive AI investment scam network spans 15,500 domains If a fake moustache can fool age checks, is the Online Safety Act working? Google Chrome’s silent 4GB AI download problem Attackers adopt JavaScript runtime Bun to spread NWHStealer Millions of students’ personal data stolen in major education breach Update WhatsApp now: Two new flaws could expose you to malicious files Cyberattacks are raising your prices (Lock and Code S07E09) Thousands of Facebook accounts stolen by phishing emails sent through Google The 2026 World Cup scam economy is already running before the first whistle A week in security (April 27 – May 3) 3 easy-to-miss cybersecurity risks for small businesses Actively exploited cPanel bug exposes millions of websites to takeover More PayPal emails hijacked to deliver tech support scams Hackers stole hundreds of thousands of Roblox accounts: Here’s what to do Researchers built a chatbot that only knows the world before 1931 Microsoft won’t patch PhantomRPC: Feature or bug? Scam-checking just got a lot easier: Malwarebytes is now in Claude Fake CAPTCHA scam turns a quick click into a costly phone bill Chinese engineer stole US military and NASA software for years A week in security (April 20 – April 26) Medical data of 500,000 UK volunteers listed for sale on Alibaba How cyberattacks on companies affect everyone Apple fixes iOS bug that kept deleted notifications, including chat previews Roblox clamps down on chats and age checks as legal pressure builds Malicious trading website drops malware that hands your browser to attackers Researcher claims Claude Desktop installs “spyware” on macOS Fake Google Antigravity downloads are stealing accounts in minutes Real Apple notifications are being used to drive tech support scams Android 17 ends all-or-nothing access to your contacts Big Tech can stop scams. They just don’t (Lock and Code S07E08) Mythos: An AI tool too powerful for public release A week in security (April 13 – April 19) This old-school scam is still working “Your shipment has arrived” email hides remote access software Browser Guard gets even better with Access Control “iCloud storage is full” scam is back, and now it wants your payment details A fake Slack download is giving attackers a hidden desktop on your machine Booking.com breach gives scammers what they need to target guests AI clickbait can turn your notifications into a scam feed Fake YouTube copyright notices can steal your Google login From fake Proton VPN sites to gaming mods, this Windows infostealer is everywhere April Patch Tuesday fixes two zero-days, including one under active attack Credit Resources Vault: Why this credit email set off our scam alarms Omnistealer uses the blockchain to steal everything it can ChatGPT under scrutiny as Florida investigates campus shooting Simply opening a PDF could trigger this Adobe Reader zero-day A week in security (April 6 – April 12) Fake Claude site installs malware that gives attackers access to your computer ClickFix finds a new way to infect Macs Scammers pose as Amazon support to steal your account NSFW app leak exposes 70,000 prompts linked to individual users 30,000 private Facebook images allegedly downloaded by Meta employee This fake Windows support website delivers password-stealing malware Your extensions leak clues about you, so we made sure Browser Guard doesn’t Russian hacking group targets home and small office routers to spy on users Timeshare owners warned to watch out for cartel-linked scams Traffic violation scams swap links for QR codes to steal your card details Support platform breach exposes Hims & Hers customer data A week in security (March 30 – April 5) Killer robots are here. Now what? (Lock and Code S07E07) That dream job offer from Coca-Cola or Ferrari? It’s a trap for your passwords Blocking children from social media is a badly executed good idea Apple expands “DarkSword” patches to iOS 18.7.7 Malwarebytes Privacy VPN receives full third-party audit Wikipedia’s AI agent row likely just the beginning of the bot-ocalypse WhatsApp on Windows users targeted in new campaign, warns Microsoft Why we’re still not doing April Fools’ Day
Beware of "Parcel Expert" job offers: They're parcel mule scams
Pieter Arntz · 2026-06-26 · via Malwarebytes

A parcel mule scam, also called a reshipping scam, is a fake job offer designed to recruit people into handling stolen goods.

It usually starts with a fake remote job offer that promises easy money for receiving, inspecting, repackaging, and forwarding packages from home. The “employer” may claim to be connected to familiar companies, but the real purpose is to move goods bought with stolen payment information so they are harder to trace. Victims often think they are doing routine logistics work, but they are actually helping criminals launder stolen merchandise.

Targets get “recruited” to work from home for shipping companies or retailers. Scammers reach them by email, direct messages on social media, WhatsApp, and any other channel they can think of. One job title that appears frequently is “Parcel Expert.”

Let’s look at an example received unsolicited on WhatsApp:

“Hi! I hope you’re doing well.
My name is Elena from the Logistics Department. We reviewed your profile and would like to offer you a position as a Parcel Expert. This is a remote part-time opportunity with flexible hours and a monthly income of up to $5,300.
Your main duties will be: receiving packages at your home address, checking items against invoices, taking photos if needed, preparing documents, and forwarding the parcels to our distribution hubs. In some cases, you may be asked to send urgent orders directly to international destinations.

We work with well-known retailers, including Amazon, Best Buy, Walmart, and Zappos, so the process is simple and safe. No experience is necessary, and we provide full instructions.

Please reply ‘interested’ if you would like to proceed, and we will send you the onboarding details.”

It follows the classic pattern closely: high pay for low-skill, home-based work, packages sent to a private address, and a requirement to forward items to hubs or international destinations. The mention of well-known retailers like Amazon, Best Buy, and Walmart is also a common trust signal scammers use to make the offer sound legitimate.

How to recognize parcel mule scams

All I really need to do here is quote the Malwarebytes Scam Guard analysis:

Red flags identified

The companies mentioned in the scams vary by location. For example, a German target was “recruited” to work for DHL, a Spanish customer got an offer for Mercado, and a US victim received one for Freight Metro. But it’s mostly the big global names like Amazon, FedEx, and retailers like Best Buy, AliExpress, and Walmart.

  1. Work from home shipping packages: Legitimate companies do not ship high-value goods to the private home address of someone they just hired online, especially for work-from-home roles.
  2. Payment promises seem too good to be true: $4,400 base salary plus performance bonuses for unskilled logistical work is extremely unrealistic, especially for remote roles with no experience required.
  3. Handling of items from retailers: Fraud rings commonly use stolen credit card info to order goods sent to recruited “mules” (victims) who unknowingly forward them, making tracing harder for law enforcement.
  4. International reshipping: Legitimate logistics companies use professional hubs—they do not ask new hires to ship internationally directly from their homes.
  5. Personal risk: You may become involved in credit card fraud and have law enforcement contact you, as your home address will be connected to the receipt and shipping of stolen goods.
  6. Typical language patterns: The description is nearly identical to those used by scammers globally.

What are the risks

The most obvious risk is wasting your time on a job you’ll never get paid for. But there are others:

  • Scammers may ask for personal documents, increasing the risk of fraud and identity theft if they collect IDs, banking details, or other sensitive data during the “onboarding” process.
  • Victims can become suspects or persons of interest if authorities trace stolen goods back to them.
  • Criminals know you are vulnerable and will try to take advantage of you again.

How to stay safe

Recognizing scams for what they are is the best protection, so keep reading our blog.

  • The most important rule for all types of scams is simple: Do not interact. Not even for fun or to waste the scammers’ time. It takes a lot of preparation to do that safely.
  • Verify the company independently, search for complaints or scam reports, and be skeptical of any offer that is unusually vague or highly paid.
  • Do not share identity documents, your home address, phone number, or bank details.
  • Be cautious of any role that requires upfront payments or fees to get started. While some legitimate franchise or business opportunities involve investment, they should be transparent, well-documented, and independently verifiable.
  • Be aware that receiving and forwarding stolen goods is illegal and could implicate you in a crime.
  • Report the incident to the proper authorities. In the US, report it to the FTC.

Pro tip: Malwarebytes Scam Guard identified this scam for what it is and will advise users on how to proceed.


Something feel off? Check it before you click.  

Malwarebytes Scam Guard helps you analyze suspicious links, texts, and screenshots instantly.  

Available with Malwarebytes Premium Security for all your devices, and in the Malwarebytes app for iOS and Android.  

Try it free → 

About the author

Was a Microsoft MVP in consumer security for 12 years running. Can speak four languages. Smells of rich mahogany and leather-bound books.