Phishing and other attempts at fraud on the Internet
Tips on dealing with suspicious cases
What you can do in the case of suspicious e-mails/telephone calls
If you suspect that you have received a fake message (or phone call) on behalf of Swiss Post and would like to clarify the matter, please feel free to contact our Customer Service.
- Swiss Post never asks its customers for personal security elements such as passwords or credit card numbers by e-mail or telephone.
- Genuine “Post CH Ltd – Consignment status info” e-mails are sent by <email@example.com> from our Swiss Post mail servers (not from Bluewin), are DKIM signed and do not contain any XLS attachments.
- Don’t trust unsolicited e-mails.
- Whenever possible, enter Internet addresses for login areas manually into your Internet browser’s address bar.
- Compare the sender’s name with the e-mail address and the mail that is actually stored. You can this do by hovering the mouse over the e-mail address, or on tablets and smartphones, by holding your finger / touchscreen pen on the link without pressing. Delete all e-mails known to be phishing immediately.
- Use the online security check available from the Swiss Internet Security Alliance (SISA) to make sure your system is not affected by malware.
- Use only reputable and secure online payment service providers to shop online, and don’t enter your credit card details unless you completely trust the retailer.
- Use secure passwords with a combination of upper case and lower case letters, numbers and special characters.
Already disclosed your data?
If you have entered your data on a phishing site, you should change your access or e-mail passwords for Swiss Post services immediately in the “My Post” customer portal.
You will need to change login data for other portals such as social networks, auction sites, other payment systems or credit card details directly with each provider.
Report phishing e-mails
In the fight against attempted fraud on the Internet, your help is also needed. By reporting phishing attempts to the Confederation’s National Cyber Security Centre (NCSC), you help to protect other Internet users. Your report can be used to remove the alleged phishing site more quickly from the network, reducing fraudsters’ chances of success. The NCSC operates a special website for this purpose, where phishing site links or phishing e-mails can be reported without comment.