Fraudsters send their victims messages with an alleged link to track the shipment in the application. The link leads to an infected inpost24 [.] Tk domain, where the visit ends with downloading the software Cerberus. Through malware, cyber criminals can steal data and thus clean up bank accounts.
The dangerous site looks like this:
Meanwhile, InPost email messages look like this:
And the application like this:
Remember that InPost never sends messages with links pointing to websites outside the inpost.pl domain. Always analyze exactly what the link you click on looks like.