Previous All Posts Next

USPS Informed Delivery: Hidden Identity Theft Risk

Posted: December 14, 2018 to Cybersecurity.

Tags: Data Breach, Malware, Cloud Security

It’s pretty rare these days to find a letter in your mailbox.  With the electronic age dominance, most physical mail a person receives is junk mail or packages.  A new system by the United States Postal Service allows you to get delivery notifications with photos of what's being delivered, so of course, criminals have found a new opportunity to steal. The United States Post Service expects to deliver more than 900 million packages in the month of December alone. Their new alert system allows you an early look at what’s coming in your mail and when.  Mail is photographed as it’s sorted at the post office, and that photograph is then sent to anyone who has signed up for informed delivery.  But what if that person isn’t actually you? Scammers are now picking up the delivery information.  Despite security measures put in place by the USPS that ask questions such as prior addresses and the sales price of a person’s home, thieves are still jacking your information and pretending to be you.  All of that information could be on the dark web according to Cybersecurity expert Adam Levin.  Adam goes on to say that some of this information is often available via social media too. In a KrebsOnSecurity report regarding this new system, it was noted that in several states scammers were ordering credit cards in the names of the victims, signed up as those victims on Informed Delivery, and then simply picked up “their” mail upon delivery.  Chris Torraca was one victim.  He had his identity stolen during a 2015 database breach.  The scammer obtained his hacked information, ordered the cards, and then followed his postal delivery person on the date the cards were to arrive. The US Postal Service is quick to note that the actual Informed Delivery database has never been hacked, and Informed Delivery is one of their most heavily monitored programs.  The best way to protect yourself is to simply sign up for your address using your email.  Once that is done, the address is locked and available only to you.

Protect Your Business Today

Petronella Technology Group has provided cybersecurity, compliance, and managed IT services from Raleigh, NC for over 23 years. Contact us today for a free consultation and technology assessment.

Need help implementing these strategies? Our cybersecurity experts can assess your environment and build a tailored plan.
Get Free Assessment
Explore Our Services
Cybersecurity AI Services Compliance HIPAA CMMC Managed IT

Related Articles

NIST CSF 2.0: What Changed, Why It Matters, and How to Update Your Cybersecurity Program [Video + Guide] NIST CSF 2.0: What Changed, Why It Matters, and How to Update Your Cybersecurity Program [Video + Guide] Incident Response Planning: Build a Cyber Incident Response Plan That Actually Works in 2026 [Video + Guide] Incident Response Planning: Build a Cyber Incident Response Plan That Actually Works in 2026 [Video + Guide] Email Security for Business: Stop Phishing, BEC, and Email-Based Attacks Before They Cost You Millions [Video + Guide] Email Security for Business: Stop Phishing, BEC, and Email-Based Attacks Before They Cost You Millions [Video + Guide] Network Segmentation Guide: How to Contain Breaches and Protect Critical Systems with Proper Network Design [Video + Guide] Network Segmentation Guide: How to Contain Breaches and Protect Critical Systems with Proper Network Design [Video + Guide]

About the Author

Craig Petronella, CEO and Founder of Petronella Technology Group
CEO, Founder & AI Architect, Petronella Technology Group

Craig Petronella founded Petronella Technology Group in 2002 and has spent more than 30 years working at the intersection of cybersecurity, AI, compliance, and digital forensics. He holds the CMMC Registered Practitioner credential (RP-1372) issued by the Cyber AB, is an NC Licensed Digital Forensics Examiner (License #604180-DFE), and completed MIT Professional Education programs in AI, Blockchain, and Cybersecurity. Craig also holds CompTIA Security+, CCNA, and Hyperledger certifications.

He is an Amazon #1 Best-Selling Author of 15+ books on cybersecurity and compliance, host of the Encrypted Ambition podcast (95+ episodes on Apple Podcasts, Spotify, and Amazon), and a cybersecurity keynote speaker with 200+ engagements at conferences, law firms, and corporate boardrooms. Craig serves as Contributing Editor for Cybersecurity at NC Triangle Attorney at Law Magazine and is a guest lecturer at NCCU School of Law. He has served as a digital forensics expert witness in federal and state court cases involving cybercrime, cryptocurrency fraud, SIM-swap attacks, and data breaches.

Under his leadership, Petronella Technology Group has served 2,500+ clients, maintained a zero-breach record among compliant clients, earned a BBB A+ rating every year since 2003, and been featured as a cybersecurity authority on CBS, ABC, NBC, FOX, and WRAL. The company leverages SOC 2 Type II certified platforms and specializes in AI implementation, managed cybersecurity, CMMC/HIPAA/SOC 2 compliance, and digital forensics for businesses across the United States.

CMMC-RP NC Licensed DFE MIT Certified CompTIA Security+ Expert Witness 15+ Books
Related Service
Protect Your Business with Our Cybersecurity Services

Our proprietary 39-layer ZeroHack cybersecurity stack defends your organization 24/7.

Explore Cybersecurity Services
Previous All Posts Next
Free cybersecurity consultation available Schedule Now