As a business owner, you know that protecting your customers’ information is crucial. Unfortunately, multinational shipping company UPS has recently discovered a breach in their system, leading to the exposure of some Canadian customers’ personal information. This breach has allowed cybercriminals to abuse the data in phishing attacks.
UPS Data Breach: What Happened?
At first, it appeared that UPS was simply warning customers about the dangers of phishing. However, it turns out that the company was actually disclosing a data breach. UPS has been receiving reports of SMS phishing messages containing the recipients’ names and address info, indicating that personal information may have been compromised.
After investigating the issue, UPS discovered that cybercriminals were using their package look-up tools to access delivery details, including recipients’ personal contact information, between February 2022 and April 2023. The company has since implemented measures to restrict access to this sensitive data, in an effort to prevent further phishing attempts.
How Has This Breach Affected UPS Customers?
UPS is notifying individuals whose information may have been affected, in an effort to maintain transparency and awareness of the situation. The information available through the package look-up tools included the recipient’s name, shipment address, and potentially phone number and order number.
Although the exact time frame of the misuse is unknown, it’s believed to have affected a small group of shippers and some of their customers from February 1, 2022, to April 24, 2023. UPS customers worldwide have been impacted by these phishing attacks, with criminals using their names, phone numbers, and postal codes, as well as information on recent orders.
How Can You Protect Your Business and Customers?
As a business owner, it’s essential to stay vigilant and take steps to protect your customers’ data. The Internal Revenue Service (IRS) and the Federal Communications Commission (FCC) have warned Americans of a massive rise in SMS phishing attacks. They advise being wary of text messages from unknown numbers with suspicious links and misleading information.
To defend against such attacks, never click links embedded in suspicious messages or reply with sensitive information. Educate your customers about the risks of phishing and encourage them to stay vigilant as well.
Partner With Experts to Protect Your Business
At ZZ Servers, we understand the importance of securing your business and customers’ information. Our team of cybersecurity experts can help you implement robust security measures and provide guidance on best practices to protect your data. Contact us today to learn how we can assist you in safeguarding your business from cyber threats.
