Skip to main content
Denwa
Victim Stories

The Reality of Fake Delivery SMS Phishing Scams

About 13 min read

What Is Missed-Delivery SMS Fraud?

"We attempted delivery but you were not home. To reschedule, click here." Many people have received an SMS like this. According to the Anti-Phishing Council, reports of SMS messages impersonating delivery missed-notifications (smishing) reached approximately 500,000 in 2023, accounting for about 15% of all phishing reports. As e-commerce has expanded and delivery frequency has increased, tactics exploiting the psychological gap of "I might be expecting a package" have spread explosively.

The sophistication of this scam lies in how it blends into everyday behavior. The more frequently someone shops online, the more likely they are to think "I might have ordered something" and tap the link in the SMS. Like phone scams impersonating delivery services, this tactic exploits trust in logistics infrastructure.

Victim Cases

Case 1: Credit Card Information Entered on a Fake Site

Mr. A, an office worker in his 30s, received an SMS from a 090 number: "Yamato Transport attempted delivery but you were not home. Please request redelivery at the link below." Since he was waiting for an online order, he tapped the link without suspicion. The site displayed was nearly identical to Yamato Transport's official website, showing a redelivery scheduling form.

The form requested name, address, and phone number, plus a credit card number field labeled "for identity verification." Mr. A briefly wondered whether card information was needed for redelivery, but convinced himself it might be a COD package and entered the details. The next day, his card company notified him of a 150,000 yen charge from an overseas site.

The key takeaway from this case is that the victim sensed something was off yet created his own rational explanation to continue. Scammers anticipate this psychology and include plausible-sounding reasons like "identity verification" or "security authentication" to neutralize doubt.

Case 2: Malicious App Installation (Android)

Ms. B, a homemaker in her 50s, received an SMS claiming to be from Sagawa Express about a missed delivery. Tapping the link displayed a screen saying "Please install the latest Sagawa Express app." She followed the instructions, but the app was malicious software disguised as Sagawa Express.

The malicious app seized SMS send/receive permissions from Ms. B's phone and mass-sent similar scam SMS messages using her number. Additionally, contacts, photos, and email contents stored on her phone were transmitted to an external server. Approximately 3,000 scam SMS messages were sent from her number, resulting in about 50,000 yen in communication charges.

On Android devices, if the setting "Install apps from unknown sources" is enabled, apps can be installed from outside the official store. Simply disabling this setting prevents malicious app installation.

Case 3: Apple ID Hijacking (iPhone)

Mr. C, a university student in his 20s, tapped a link in a missed-delivery SMS and was shown an Apple ID login screen. Believing the explanation that "login is required for package tracking," he entered his Apple ID and password. He was then prompted for a two-factor authentication code and entered the 6-digit code received via SMS.

The scammer hijacked Mr. C's Apple ID, accessed photos and notes stored in iCloud, and purchased approximately 80,000 yen worth of App Store gift cards using the linked credit card. Mr. C noticed the breach when he received an email from Apple saying "A new device has signed in."

For iPhone users, the primary goal is Apple ID theft rather than malicious app installation. If you are ever asked to enter your Apple ID outside of Apple's official site, it is 100% a scam. See also two-factor authentication and phone number risks.

Characteristics of SMS Scam Tactics

Missed-delivery SMS scams share several common patterns.

  • Sender numbers: Most are sent from mobile phone numbers (070, 080, 090) because they originate from ordinary users' devices infected with malicious apps
  • URL characteristics: Fake domains resembling legitimate ones are used, such as "yamato-delivery.com" or "sagawa-express.net" - URLs that look authentic at first glance
  • Timing: Most are sent during weekday daytime hours (10 AM - 4 PM), coinciding with actual delivery windows to increase credibility
  • Message variations: Multiple patterns have been confirmed, including "We were unable to deliver due to absence," "Please check your delivery status," and "There is an error in your address"

Measures to Prevent Damage

  • Do not tap links in SMS messages: Check delivery notifications through official apps or by directly accessing official websites. Never tap any link in an SMS
  • Track packages through official apps: Install the official apps from Yamato Transport, Sagawa Express, and Japan Post, and always track packages through them
  • Check Android settings: Go to "Settings" then "Security" then "Unknown sources" and disable it. This alone prevents malicious app installation
  • Enable SMS filtering: On iPhone, go to "Settings" then "Messages" then "Filter Unknown Senders" to sort SMS from unregistered numbers into a separate tab
  • Report suspicious SMS: Forward to the Anti-Phishing Council (info@antiphishing.jp) or your carrier's spam SMS reporting service

What to Do If You Are a Victim

If You Entered Credit Card Information

Immediately contact your card company to request a freeze and reissue. Unauthorized charges may be refunded through the card company's compensation program. Prompt reporting after discovering the fraud is typically a condition for compensation eligibility, so act quickly.

If You Installed a Malicious App

First enable airplane mode to cut off communication, then uninstall the malicious app. Next, change all passwords stored on your smartphone. For unauthorized communication charges, contact your carrier to explain the situation and negotiate a reduction or cancellation.

If You Entered Your Apple ID or Passwords

Immediately change your Apple ID password and review your two-factor authentication settings. Check the billing statements for credit cards linked to your Apple ID, and if unauthorized charges are found, contact both your card company and Apple Support.

In all cases, consult the police (#9110) and consumer affairs center (188) following the phone scam reporting guide. Filing a report helps prevent similar scams from spreading. Smartphone security measures Taking precautions in advance is also important.

Was this article helpful?

XHatena

Frequently Asked Questions

How can I tell a real delivery notification SMS from a fake one?

Yamato Transport, Sagawa Express, and Japan Post do not send missed-delivery notifications via SMS (Yamato uses only official LINE). Any missed-delivery SMS from a mobile phone number should be treated as a scam. Check package status directly through official apps or websites.

Can I be harmed just by tapping a link in an SMS?

Simply tapping a link typically does not cause harm. Damage occurs when you enter personal information on a fake site or install a malicious app. If you tapped a link, close the browser without entering anything.

What should I do if I installed a malicious app?

First enable airplane mode to cut off communication, then uninstall the malicious app. Next, change all passwords stored on your smartphone and contact your carrier to negotiate a reduction in charges from unauthorized SMS transmissions.

Should I report SMS scam damage to the police?

Yes, consult the police consultation hotline (#9110) and consider filing a report. Police reports help prevent similar scams from spreading. If there is financial damage, also consult the consumer affairs center (188).

Related Number Ranges

070(Mobile)080(Mobile)090(Mobile)

Related FAQ

Mobile Phone FAQ

Related Articles

Victim Stories

Delivery Scam Calls - How They Work and How to Protect Yourself

An overview of scams using fake delivery notification SMS messages and phone calls. Learn how fraudsters steal personal information through bogus delivery notices and the specific steps you can take to stay safe.

8 minScam Prevention

How to Report Phone Scams - A Complete Guide to Filing Reports

A comprehensive guide to reporting phone scam incidents. Covers where to file reports with police, consumer centers, and financial institutions, with step-by-step instructions.

8 minPrivacy Protection

Risks of Phone-Based Two-Factor Authentication and Safer Alternatives

Explores the risks of SMS-based authentication, including SIM swap attacks and SS7 vulnerabilities. Covers migration to authenticator apps, security keys, and passkeys.

8 minPrivacy Protection

Complete Guide to Phone Privacy Settings on iOS and Android

A comprehensive guide to phone privacy settings on iPhone and Android. Covers call blocking, app permission management, and configuring children's devices.

7 minPrivacy Protection

Caller ID Spoofing - How It Works and How to Spot It

Explains how caller ID spoofing works and why it is dangerous. Covers VoIP abuse tactics, how to detect spoofed numbers, and the STIR/SHAKEN authentication framework.

8 minScam Prevention

How to Spot SMS Scam Messages - 5 Checkpoints Even Teens Can Use

Delivery failure notices, PayPay payment errors, Amazon account suspensions - scam messages hide among your SMS. Learn 5 easy ways to spot them.

7 min

Search a Phone Number

Received a call from an unknown number? Search the phone number to check caller information and reviews.

Search Phone Number