UPS Reveals Data Breach: Customer Information Exploited in SMS Phishing Scam

An image of a red triangle on a black background, symbolizing caution and danger.

As a business owner, you know that protecting your customers’ information is crucial. Unfortunately, multinational shipping company UPS has recently discovered a breach in their system, leading to the exposure of some Canadian customers’ personal information. This breach has allowed cybercriminals to abuse the data in phishing attacks.

UPS Data Breach: What Happened?

At first, it appeared that UPS was simply warning customers about the dangers of phishing. However, it turns out that the company was actually disclosing a data breach. UPS has been receiving reports of SMS phishing messages containing the recipients’ names and address info, indicating that personal information may have been compromised.

After investigating the issue, UPS discovered that cybercriminals were using their package look-up tools to access delivery details, including recipients’ personal contact information, between February 2022 and April 2023. The company has since implemented measures to restrict access to this sensitive data, in an effort to prevent further phishing attempts.

How Has This Breach Affected UPS Customers?

UPS is notifying individuals whose information may have been affected, in an effort to maintain transparency and awareness of the situation. The information available through the package look-up tools included the recipient’s name, shipment address, and potentially phone number and order number.

Although the exact time frame of the misuse is unknown, it’s believed to have affected a small group of shippers and some of their customers from February 1, 2022, to April 24, 2023. UPS customers worldwide have been impacted by these phishing attacks, with criminals using their names, phone numbers, and postal codes, as well as information on recent orders.

How Can You Protect Your Business and Customers?

As a business owner, it’s essential to stay vigilant and take steps to protect your customers’ data. The Internal Revenue Service (IRS) and the Federal Communications Commission (FCC) have warned Americans of a massive rise in SMS phishing attacks. They advise being wary of text messages from unknown numbers with suspicious links and misleading information.

To defend against such attacks, never click links embedded in suspicious messages or reply with sensitive information. Educate your customers about the risks of phishing and encourage them to stay vigilant as well.

Partner With Experts to Protect Your Business

At ZZ Servers, we understand the importance of securing your business and customers’ information. Our team of cybersecurity experts can help you implement robust security measures and provide guidance on best practices to protect your data. Contact us today to learn how we can assist you in safeguarding your business from cyber threats.

What do you think?

Leave a Reply

Related articles

Contact us

Partner with Us for Comprehensive IT

We’re happy to answer any questions you may have and help you determine which of our services best fit your needs.

Your benefits:
What happens next?

We Schedule a call at your convenience 


We do a discovery and consulting meting 


We prepare a proposal 

Schedule a Free Consultation