[SMSs Purportedly from Couriers] Middle-aged Woman Loses $3.2 Million after Buying Tea Bags on Pinduoduo
2025-09-19
![[SMSs Purportedly from Couriers] Middle-aged Woman Loses $3.2 Million after Buying Tea Bags on Pinduoduo](image/2025-09-25/FROALA_814972083721.png)
A middle-aged woman bought bitter gourd tea bags for $84 on the online shopping platform Pinduoduo in late August. However, by early September, the delivery had not been made. She contacted Pinduoduo’s customer service, who told her that the item had already been shipped and might be delayed in transit, advising her to contact the courier company.
Coincidentally, the woman received a phishing SMS pretending to be from the courier and stating “Delivery failed. The package will be returned to the warehouse. If not handled promptly, storage fees may be charged. Please call XXXXXXXX (phone number) for re-delivery.”
She called the number. A scammer answered the phone, claiming that the package was lost during transit but was insured, and she would be compensated at three times the value of the package. But then the scammer said that the Alipay transfer failed and asked for her bank account details to process the compensation. Later, the scammer claimed that the bank transfer also failed and the case would be passed to their supervisor for follow-up.
A scammer posing as the supervisor then called the woman, directing her to register on a “UnionPay website”. After typing the URL as provided on the browser, she connected to the fraudulent UnionPay website and contacted the “customer service officer” as instructed.
As told by the “customer service officer”, the woman sold stocks worth around $2.8 million and transferred a saving of approximately $500,000 via Faster Payment System to a designated account for “security check” conducted by “UnionPay”. The scammers even covered a $3,000 shortfall from the rushed stock sale. Later, they claimed that the stocks were not available for sale as they were temporarily held by the Securities and Futures Commission, and demanded a transfer of “ransom” to release them. The woman wrongly believed it and transferred $2.7 million to the scammers’ account, and then they could no longer be reached.
Two types of messages purportedly from couriers:
1. Scammers send phishing messages stating “Delivery failed. The package will be returned to the warehouse. If not handled promptly, storage fees may be charged. Please call XXXXXXXX.”
2. Posing as e-commerce logistics platforms such as SF Express and Cainiao, scammers send phishing messages via SMS or WhatsApp to members of the public and ask them to click on an embedded link to update their delivery address, in an attempt to steal their personal information, credit card details and money.
Reminder:
Messages from senders with the same name will be automatically dropped into the same inbox by mobile phones. Taking advantage of this loophole, scammers sent phishing messages under the name of Cainiao, so that the fraudulent messages would be displayed alongside the genuine ones, making it hard for members of the public to distinguish between genuine and fraudulent messages. Scammers would also commit fraud by sending phishing SMSs with ordinary phone numbers.
More information
Upstream Scam Intervention:
Parcel Self-pickup Notifications to be Sent via SFHK APP Starting 14 April (No More SMSs!)
https://www.adcc.gov.hk/en-hk/alerts-detail/alerts-1900431644841017346.html
Beware of Phishing Messages Purportedly from Cainiao
https://www.adcc.gov.hk/en-hk/alerts-detail/alerts-1889534362742501378.html
Our Advice
Do not click on links or call phone numbers in suspicious SMSs;
If you receive an “anti-deception alert” during transfers due to suspected scam activity involving the recipient’s bank account, you must stay vigilant;
Even if strangers who send you messages are able to tell your personal information, it does not necessarily mean that they are genuine staff. Scammers can obtain the personal information of the public by unlawful means;
Do not believe the scammers’ identities simply by the phone numbers they provide. You are advised to verify their identities by making enquiries to relevant organisations;
Do not log on to any suspicious websites or download any attachments by hastily clicking on links embedded in emails, SMSs or web pages;
You may enter suspicious information on “Scameter” of CyberDefender or “Scameter+”, the mobile application of “Scameter”, for security check in addition to seeking verification from relevant organisations;
If in doubt, please call the “Anti-Scam Helpline 18222” for assistance.
