This screenshot shows a Hungarian‑language phishing page impersonating a courier service (likely Magyar Posta or a similar carrier). The scam uses a small delivery fee (362.74 HUF) as a pretext to collect full credit card details and personal address information.
Threat Analysis: Hungarian Delivery Phishing – Card & Personal Data Harvesting
How it works:
The victim receives an SMS or email claiming a package requires a forwarding or service fee. The link leads to this page, which asks for:
- Full card number, expiration date, CVV
- Full name
- Street address, city, postal code
A fake tracking number and a small amount (362.74 HUF) are displayed to make the request appear legitimate.
The goal:
The attacker captures:
- Full credit/debit card details for fraudulent transactions
- Personal identity information (name, address) for identity theft
Red flags:
- Suspicious URL: The page is not on the official courier’s domain.
- Request for CVV: Legitimate postal services never ask for your card security code for a delivery fee.
- Small fee trick: A trivial amount lowers suspicion.
- No trackable package reference: The victim cannot verify the supposed shipment.
What to do:
- Do not enter any personal or card information.
- Track packages directly by typing the official courier’s URL into your browser.
- If you have already entered card details, contact your bank immediately.
Protective measures:
- Never click links in unsolicited delivery messages.
- Always go directly to the official courier website.
- Enable transaction alerts on your bank account.