Report abuse or phishing

Tracksr links are sometimes spoofed by phishing and smishing campaigns, because parcel rescheduling is a common scam template. We take impersonation seriously and want to hear about it.

Tracksr will never

• Ask you to pay a redelivery fee, customs charge, or any other fee
• Ask for your bank account number, IBAN, or card details
• Ask for your username, password, or a one-time code
• Send messages from any domain other than tracksr.io or its subdomains

If a message you received asks for any of the above and points to a domain that looks like Tracksr, it is not us.

How to report

1. Forward the suspicious message (with full headers, if email) to abuse@tracksr.io.
2. Include the URL you were sent and a screenshot if possible.
3. If you entered any information, contact your bank and change any reused passwords immediately.
4. Report the incident to your local authorities. In Ireland: An Garda Síochána (garda.ie) and the NCSC (ncsc.gov.ie).

For security researchers

If you have identified a vulnerability in Tracksr's services, please contact us via the details in our security.txt. We respond to all good-faith reports.

For abuse of Tracksr by our customers

If you believe a Tracksr link is being used by a customer of ours to harass, defraud, or otherwise harm recipients, email abuse@tracksr.io with the URL and a description. We investigate and can suspend customer accounts found to be in breach of our terms.