Security advice
GLS brand impersonation
At GLS Spain we have detected an increase in cases in which our name and brand image are used to commit fraud related to the shipment of goods, mostly on platforms for the sale of second-hand products on the Internet. We provide some tips to detect them and avoid being victims when we find ourselves before them:
• At GLS we do not transport cash (currency in legal tender), securities or bank checks.
• We do not intervene in economic money transactions, either between individuals or between companies.
• We are not intermediaries or depositories in the sale of second-hand products.
• We do not request payment details by e-mail or SMS to create a customer account at GLS Spain. In case you are expecting a parcel from a non-EU country or if you are based in a non-EU country you may be contacted to pay duties & taxes by Email, SMS or letter by either GLS or an authorized agent.
• We do not use online platforms dedicated to the sale of products to promote our shipments or services.
• For our communications, we use the email domain “xxxx@gls-spain.es”, “xxxx@gls-spain.dev” or “xxxx@gls-spain.com”.
• The official website of GLS Spain is gls-spain.es, so we only send e-mails and SMS with links that lead to it. Report here those emails that do not meet these characteristics.
• We only charge for expenses incurred when managing shipments and official GLS services.
• We actively collaborate with the State Security Forces to prosecute any fraudulent activity in the use of our corporate image. However, at GLS Spain we have no control over the creation of these fraudulent environments, so we are not responsible for expenses, surcharges or irregular payments made to third parties who impersonate us.
Impersonation of the GLS brand
With the huge increase in e-commerce in recent years, internet scam attempts have become more common and sophisticated. Criminals impersonate the identity of GLS, using social networks and sending false emails or SMS, among others. These usually contain requests for payment or personal data.
In addition to this fraudulent use of our name and image, there are specific cases in which fraudsters impersonate the identity of the telephone number to send communications (spoofing). These cases, which have been detected through smishing (phishing via SMS), make it difficult to identify the scam and against which we ask that you take extreme precautions by avoiding clicking on the link.
The recipients of these messages must inform GLS immediately and under no circumstances meet the payment or personal data requirements. It is not recommended to try to unmask criminals because if it is a random scam attempt, it will be confirming that the account is still active and, therefore, they will use it again in future scams.
GLS will never ask recipients by email to pay any amount through an online payment platform, credit cards or bank transfer.
Avoid giving out your credit card details, making bank transfers or downloading attached documents.
GLS is not responsible for damages caused by scams in which your identity is impersonated. Consequently, GLS does not accept any responsibility for costs, charges or payments illegally collected as a result of a scam.
Contact to report any suspicious activity to our Information Security team.
Scam types and communication channels
Scam types and communication channels
There are a variety of scam types that use different communication channels, for example:
- Fraudulent e-mails
- SMS or WhatsAp
- Fake websites
- Social networks
GLS maintains a proactive stance in the fight against these scams and we welcome any reports of suspicious activity that may involve the use of our brand. Please let us know immediately if you suspect that an e-mail or SMS might be fake, or if a website or social media account is imitating us, so that we can take action to stop the scam.
We will carefully review each notice received, but generally will not respond to personal inquiries. If you have any questions about the status of your shipment, you can send them directly to our Customer Service.
Examples of detected scams
Here are some examples of real scams that have been reported to us by recipients. Currently, the scam attempts originate, in many cases, in the use of false profiles on platforms for buying and selling second-hand products between individuals (Beseif, Wallapop, Milanuncios, etc.). The most common method is to contact a user who sells an item, communicate interest in the product and offer payment by third parties or cash on delivery. Once they have obtained the phone number and e-mail, they contact the victim pretending to be GLS and requesting an amount for the cost of packaging the parcel to avoid damage and breakage, as we can see in the following image.
Later in the same e-mail, they provide a bank account number to make the deposit.
The blue hyperlink that says “click here to open your GLS premium account” redirects us to a page where we have to fill in a form with all our credit card information.
Sometimes they don’t even bother to create the form and ask for the information directly in the e-mail itself, as, for example, in the following image
E-mail is often used in conjunction with sending WhatsApps from foreign numbers, as the following example shows.
If you have been the victim of a scam, we recommend that you always report the facts to the State Security Forces.