Fraud Awareness
Thank you for joining our effort to combat online fraud. DHL goes to great lengths to protect our customers from fraud. If you suspect having received fraudulent emails, SMS or found a website or social media account that tries to pass off as DHL, we encourage you to let us know at your earliest convenience, so that we can quickly take actions to stop the fraud.
Please report all suspicious activity to our dedicated Anti-Abuse Mailbox at phishing-dpdhl@dhl.com following the below instructions.
We thoroughly investigate every report of suspected fraud, but generally, will not respond to personal inquiries. If you have questions regarding the status of a shipment or an invoice, please direct those to our customer support.
Fraudulent Email
Below are some indicators that can help you assess whether the received email is fraudulent.
- Official DHL communication is always sent from @dhl.com, @dpdhl.com, @dhl.de, @dhl.fr, @dhl-news.com or another country domain after @dhl.
Note! Be aware of spoofed phishing emails sent from fake email addresses using DHL legitimate domains. In such cases, when the sender appears legitimate, but the email still seems suspicious, always inspect the content of the email for anomalies such as an urgent tone, grammatical errors, unfamiliar URLs or attachments. Please refrain from clicking on any unknown links or opening attachments that seem suspicious. - We never use @gmail, @yahoo or other free email services to send emails.
- We never link to a website other than our own starting with for example https://dhl.com/, https://dpdhl.com/, https://dhl-news.com/, or a country/campaign website
From a desktop computer:
Drag & Drop the suspicious email into a new message and send it to phishing-dpdhl@dhl.com as attachment. If the “drag & drop” feature is not available in your email client, please follow this guide that includes some of the most used email clients on how to forward email attachments. To effectively shut down the fraudulent service, we need complete mail headers which are not included in a forwarded message.
From a mobile device:
- Forward the message to us. If feasible, please always send the suspected email from a desktop as attachment including complete mail headers.
- Report the message as spam within your mail app, so that your mail provider can take appropriate actions.
Fraudulent SMS
- SMS Scams often include a shortened URL e.g. starting with https://bit.ly/ to obfuscate the final destination of the link.
- The sender number is not visible, instead you find a generic name such as “Delivery”.
- The phone number starts with a a country prefix outside of an expected territory (e.g. +235).
Send a screenshot of the suspicious SMS to phishing-dpdhl@dhl.com, include the suspicious phone number in the message.
Fraudulent Social Media Accounts Incl. WhatsApp
- The account is lacking a sign of verification (e.g. there is no blue badge).
- The account attempts to continue the communication over an encrypted channel such as Whatsapp or Telegram.
- The account is only a couple of weeks old.
- The account offers “free Visa”, “free flights” or to “double your investment”.
- The account does not make use of an adequate profile picture (DP/DHL Logo) and background picture.
- Please report the social media account/post destination (URL) or phone number to phishing-dpdhl@dhl.com.
- If available, report the account/post directly to the social media channel as fraud.
Hacked DHL Accounts
If you receive unexpected messages alerting you over changes to your account, such as address changes or password reset notifications that were not triggered by yourself, it is possible that hackers are trying to take over your account.
- Login to your account and change the password
- If you lost access, please report this incidence via customer support
Fraudulent Email
Below are some indicators that can help you assess whether the received email is fraudulent.
- Official DHL communication is always sent from @dhl.com, @dpdhl.com, @dhl.de, @dhl.fr, @dhl-news.com or another country domain after @dhl.
Note! Be aware of spoofed phishing emails sent from fake email addresses using DHL legitimate domains. In such cases, when the sender appears legitimate, but the email still seems suspicious, always inspect the content of the email for anomalies such as an urgent tone, grammatical errors, unfamiliar URLs or attachments. Please refrain from clicking on any unknown links or opening attachments that seem suspicious. - We never use @gmail, @yahoo or other free email services to send emails.
- We never link to a website other than our own starting with for example https://dhl.com/, https://dpdhl.com/, https://dhl-news.com/, or a country/campaign website
From a desktop computer:
Drag & Drop the suspicious email into a new message and send it to phishing-dpdhl@dhl.com as attachment. If the “drag & drop” feature is not available in your email client, please follow this guide that includes some of the most used email clients on how to forward email attachments. To effectively shut down the fraudulent service, we need complete mail headers which are not included in a forwarded message.
From a mobile device:
- Forward the message to us. If feasible, please always send the suspected email from a desktop as attachment including complete mail headers.
- Report the message as spam within your mail app, so that your mail provider can take appropriate actions.
Fraudulent SMS
- SMS Scams often include a shortened URL e.g. starting with https://bit.ly/ to obfuscate the final destination of the link.
- The sender number is not visible, instead you find a generic name such as “Delivery”.
- The phone number starts with a a country prefix outside of an expected territory (e.g. +235).
Send a screenshot of the suspicious SMS to phishing-dpdhl@dhl.com, include the suspicious phone number in the message.
Fraudulent Social Media Accounts Incl. WhatsApp
- The account is lacking a sign of verification (e.g. there is no blue badge).
- The account attempts to continue the communication over an encrypted channel such as Whatsapp or Telegram.
- The account is only a couple of weeks old.
- The account offers “free Visa”, “free flights” or to “double your investment”.
- The account does not make use of an adequate profile picture (DP/DHL Logo) and background picture.
- Please report the social media account/post destination (URL) or phone number to phishing-dpdhl@dhl.com.
- If available, report the account/post directly to the social media channel as fraud.
Hacked DHL Accounts
If you receive unexpected messages alerting you over changes to your account, such as address changes or password reset notifications that were not triggered by yourself, it is possible that hackers are trying to take over your account.
- Login to your account and change the password
- If you lost access, please report this incidence via customer support
Fraudulent Use of the DHL Brand
Attempts have been made to defraud Internet shoppers by the unauthorized use of the DHL name and brand via email communications and graphics which appear, on the surface, to have originated from DHL.
In most cases the communications concern the sale of consumer goods over the Internet where payment may be requested before the goods are delivered.
The only payments DHL requests via email or SMS are for customs duties and taxes. This process includes a safety measure where an OTP is sent to the consignee's registered contact before processing the payment.
This security notice does not affect the obligation of a consignee to pay shipping, customs, VAT or similar charges, where these are properly payable at the time of delivery.
DHL accepts no responsibility for any costs, charges or payments made which were improperly incurred as a result of fraudulent activity.