The Postal Service™ reminds employees and contractors to beware of a cybercrime known as vishing — a phone call or voicemail scam. Cybercriminals use vishing scams to obtain sensitive information, including passwords, financial documents, or USPS® system and organizational data. They often research their targets to impersonate legitimate employees or executives. According to the United States Postal Inspection Service™, these cybercriminals use vishing to impersonate the voice of USPS employees and executives.
Falling for a vishing scam on your USPS-issued mobile device can result in stolen credentials, identity theft, and significant damage to the Postal Service’s reputation. Business operations could also be disrupted costing the Postal Service time and money.
Cybersafe at USPS® recommends following these steps to avoid a vishing scam:
n Don’t answer the call. When possible, avoid answering calls from unknown numbers.
n Verify the call. If you need to confirm that a call is legitimate, use a known or official number to follow up.
n End the call. If a call seems suspicious or confusing, hang up immediately.
n Report the call. Contact the organization being impersonated or the Postal Inspection Service to investigate the activity.
If you receive a call from someone impersonating USPS personnel, send an email to the Inspection Service’s Cyber Crime Unit at ISCCU@usps.gov. Include your name and contact information, the name and contact information used by the scammer, and a summary of phone calls.
— Corporate Information Security Office,
Chief Information Officer, 4-16-26
