Threat Intel: This scam layout was detected, analyzed, and contained firsthand by the
Antiphishing.bizsecurity team during our standard URL vetting operations. To protect the public, the hostile origin link has been fully defanged within our infrastructure. We document and analyze these live visual patterns to help security researchers and users spot lookalike phishing methods before financial damage occurs.
This screenshot shows a Hungarian‑language phishing page impersonating a courier service (likely Magyar Posta or a similar carrier). The scam uses a small delivery fee (362.74 HUF) as a pretext to collect full credit card details and personal address information.
Threat Analysis: Hungarian Delivery Phishing – Card & Personal Data Harvesting
How it works:
The victim receives an SMS or email claiming a package requires a forwarding or service fee. The link leads to this page, which asks for:
- Full card number, expiration date, CVV
- Full name
- Street address, city, postal code
A fake tracking number and a small amount (362.74 HUF) are displayed to make the request appear legitimate.
The goal:
The attacker captures:
- Full credit/debit card details for fraudulent transactions
- Personal identity information (name, address) for identity theft
Red flags:
- Suspicious URL: The page is not on the official courier’s domain.
- Request for CVV: Legitimate postal services never ask for your card security code for a delivery fee.
- Small fee trick: A trivial amount lowers suspicion.
- No trackable package reference: The victim cannot verify the supposed shipment.
What to do:
- Do not enter any personal or card information.
- Track packages directly by typing the official courier’s URL into your browser.
- If you have already entered card details, contact your bank immediately.
Protective measures:
- Never click links in unsolicited delivery messages.
- Always go directly to the official courier website.
- Enable transaction alerts on your bank account.