FedEx Scam Emails: What They Are and How to Protect Yourself From Them

Don’t get duped by FedEx fraudulent emails

FedEx scam emails are phishing emails that look legitimate but are not from FedEx. If you click a link inside the email, your computer could get infected by a virus or malware.

FedEx has warned customers about several FedEx scams, and these emails are part of the mix.

What Is the FedEx Email Scam?

FedEx phishing emails are a scam designed to make victims click a link. These links take you to a spoofing site that looks like the actual FedEx website, but it is not. The site may ask you to enter personal information or account details. However, by clicking the link and visiting the site, you could have already infected your computer.

Cybercriminals design these FedEx spam emails carefully so recipients will trust them. Scammers use FedEx logos and other branding aspects like colors and fonts to trick users into thinking it is a legitimate email from FedEx. Some of them look very convincing, but there are ways to spot a fake FedEx email.

How Does the FedEx Email Scam Work?

The email from the FedEx scam works by tricking the user into clicking a link that will infect their computer with a virus or malware. Sometimes, the perpetrator wants to collect credit cards or other information, and sometimes they want control of the user’s computer.

These criminals use various techniques to entice the user to want to click. Many of the emails reference an incomplete package delivery. The scammer is hoping that FedEx customers will panic and click the link to ensure their delivery arrives on time. Some of the email subjects for these FedEx fraudulent emails include:

  • Tracking Service
  • Order Detail
  • Shipping Information
  • Tracking Info
  • Tracking Information
  • Shipping Service

FedEx has the following warning on their website: “FedEx does not send unsolicited emails to customers requesting information regarding packages, invoices, account numbers, passwords or personal information.

How Do the FedEx Email Scammers Find Victims?

Scammers, like other types of businesses, must first generate a database full of victims before creating the emails. There are a few different ways they get your email address and add you to the list. 

Some scammers use bot programs to collect email addresses from all over the internet. If you have ever created an account online or filled out a form, your email address is out there.

Another way they compile their lists, is to purchase them from black market email address farms. Vendors on the dark web sell email lists to cybercriminals for cash. 

Scammers also collect email addresses through fake job ads and spoofing websites. 

How Do I Avoid Getting Involved in This Scam?

It is much easier to avoid computer viruses and malware than it is to clean them up. The best way to prevent getting tricked is to know precisely what a FedEx spam email looks like. FedEx has the image below posted on its website. 

Sample FedEx phishing scam email.
FedEx

Some of the things to be aware of are: 

  • Check the “from” email address: If it doesn't say @fedex.com, then it's not from FedEx.
  • Look closely at the logos: Do they look blurry and is the registered trademark symbol included? If not, it’s not from FedEx.
  • Check the language: If the email contains broken English and does not use full sentences, or uses confusing language, it is a fake email.
  • Suspicious links: If the email includes a link and asks you to click it to fix a delivery problem, then it is not legitimate. FedEx never emails customers about delivery issues in this way.

You may see a green banner at the top saying, “This message is from a trusted sender.” This notice has been hard coded into the email so you'll think your virus program scanned it and it's safe; it is not. It's another tactic to make you believe it's from FedEx.

Sample green banner on FedEx fake email.

If you receive any unsolicited emails that appear to be from FedEx but look suspicious, delete them immediately. Do not click on any links from inside an email. You can also report these email scams to FedEx by forwarding them to abuse@fedex.com.

I’m Already a Victim. What Should I Do?

If you've already received one of these FedEx scam emails and you clicked a link, you will need to clean your computer. Depending on the severity of the virus or trojan, you may need professional help. 

  • Be sure to keep your operating system and all security patches updated at all times.
  • Install virus software if you don’t have it already and keep it updated with the latest version.
  • Run a deep scan and delete any viruses found.
  • If you provided credit card or personal information, contact your bank to cancel the cards or change account numbers. 
  • Change your passwords to your computer and other logins, to be safe.
  • If you think your computer may be hacked or still vulnerable, contact an expert to clean the infection from your machine thoroughly. 

How Do I Avoid Being Targeted for The FedEx Email Scam?

With so much of life online, it can be challenging to keep your email address private. If you're concerned about privacy and safety, create a new email address and use it sparingly online. Only give it out to legitimate companies that you approach. Never use your email address if you don’t have to. Other ways to stay safe are:

  • Change your email password frequently and make it very complex using a combination of uppercase and lowercase letters, a few numbers, and symbols. 
  • Never give out personal information (including your FedEx account number) or credit card information to someone who has requested it. Unless you initiated the purchase, do not provide it.
  • Don’t use public networks to log into secure sites and clear your browser cache often. 
  • Always look for the SSL sign before entering personal information into your browser on a website.