Suspicious

Phishings targeting USPS

Suspicious and active websites

Phishings targeting Usps

Suspicious and active websites

Active

New (7d)

Trend (7d)

↓33%

Website: usps.com
About: AIUS parcel-delivery scam pattern. SMS-launched 'undelivered package' lure is the most common entry vector.
Hosts: Microsoft Corporation (27) · Tencent Building, Kejizhongyi Avenue (7) · Tier 4 Cloud Services (1)
Countries: United States (28) · Brazil (7) · India (1)
TLS certs: GeoTrust TLS RSA CA G1 (25) · E8 (6) · E7 (2)

Suspicious sites — confidence is not always 100%. Use for Threat Hunting or watchlists.

Last check (UTC)	First seen (UTC) ▾	URL	Flags	Details
2026-05-26 19:30	2026-05-22 01:02	https://usps.xupqwru.one/uqjmw	OpenPhish	Details
2026-05-26 19:30	2026-05-22 01:02	https://usps.xupqunr.one/uqjmw	OpenPhish	Details
2026-05-26 19:30	2026-05-22 01:02	http://usps.xupqdfnn.one/uqjmw	OpenPhish	Details
2026-05-26 19:30	2026-05-22 01:02	https://usps.xupqcnyt.one/uqjmw	OpenPhish	Details
2026-05-26 19:30	2026-05-22 01:02	http://usps.xupqgbcv.one/uqjmw	OpenPhish	Details
2026-05-26 19:30	2026-05-22 01:02	https://usps.xupqcudw.one/uqjmw	OpenPhish	Details
2026-05-26 19:30	2026-05-22 01:01	http://usps.xupqouv.one/uqjmw	OpenPhish	Details
2026-05-26 19:30	2026-05-20 13:01	https://usps.trackingvq.cam	OpenPhish	Details
2026-05-26 19:30	2026-05-19 01:01	http://uspsmailjourney.com/uspsmailjourney.com/%c3%83%c2%83%c3%82%c2%…	OpenPhish urlscan	Details
2026-05-26 19:30	2026-05-19 01:00	http://uspsmailjourney.com/uspsmailjourney.com/%c3%83%c2%83%c3%82%c2%…	OpenPhish urlscan	Details
2026-05-26 19:30	2026-05-18 13:03	http://uspsmailjourney.com/uspsmailjourney.com/%c3%83%c2%83%c3%82%c2%…	OpenPhish	Details
2026-05-26 19:30	2026-05-18 13:02	https://uspsmailjourney.com/uspsmailjourney.com/%c3%83%c2%83%c3%82%c2…	OpenPhish	Details
2026-05-26 19:30	2026-05-18 13:02	http://uspsmailjourney.com/uspsmailjourney.com/%c3%83%c2%83%c3%82%c2%…	OpenPhish urlscan	Details
2026-05-26 19:30	2026-05-18 13:02	http://uspsmailjourney.com/uspsmailjourney.com/%c3%83%c2%83%c3%82%c2%…	OpenPhish	Details
2026-05-26 19:30	2026-05-18 01:01	https://uspsmailjourney.com/uspsmailjourney.com/%c3%83%c2%83%c3%82%c2…	OpenPhish urlscan	Details
2026-05-26 19:30	2026-05-18 01:01	http://uspsmailjourney.com/uspsmailjourney.com/%c3%83%c2%83%c3%82%c2%…	OpenPhish urlscan	Details
2026-05-26 19:30	2026-05-18 01:00	http://uspsmailjourney.com/uspsmailjourney.com/%c3%83%c2%83%c3%82%c2%…	OpenPhish urlscan	Details
2026-05-26 19:30	2026-05-17 13:01	http://uspsmailjourney.com/uspsmailjourney.com/%c3%83%c2%83%c3%82%c2%…	OpenPhish urlscan	Details
2026-05-26 19:30	2026-05-17 13:01	https://uspsmailjourney.com/uspsmailjourney.com/%c3%83%c2%83%c3%82%c2…	OpenPhish urlscan	Details
2026-05-26 19:30	2026-05-17 00:03	http://uspsmailjourney.com/uspsmailjourney.com/%c3%83%c2%83%c3%82%c2%…	OpenPhish urlscan	Details
2026-05-26 19:30	2026-05-12 01:01	https://uspsmailjourney.com/home	OpenPhish urlscan	Details
2026-05-26 19:30	2026-05-11 13:02	http://usps-discreet-priority.com	OpenPhish	Details
2026-05-26 19:30	2026-05-08 01:04	https://uspsmailjourney.com/%c3%a2%c2%80%c2%99	OpenPhish urlscan	Details
2026-05-26 19:30	2026-05-07 01:03	https://usps-wa-dev-gedsgvf9gad3g5bp.eastus-01.azurewebsites.net	OpenPhish urlscan	Details
2026-05-26 19:30	2026-05-06 13:05	http://uspsmailjourney.com	OpenPhish urlscan	Details
2026-05-26 19:30	2026-05-06 01:01	https://uspsmailjourney.com/%c3%83%c2%83%c3%82%c2%83%c3%83%c2%82%c3%8…	OpenPhish urlscan	Details
2026-05-26 19:30	2026-05-03 13:01	https://uspsmailjourney.com/%c3%83%c2%83%c3%82%c2%83%c3%83%c2%82%c3%8…	OpenPhish urlscan	Details
2026-05-26 19:30	2026-05-02 01:01	https://uspsmailjourney.com/%c3%83%c2%a2%c3%82%c2%80%c3%82%c2%99	OpenPhish urlscan	Details
2026-05-26 19:30	2026-04-20 01:01	http://uspsmailjourney.com/%c3%83%c2%83%c3%82%c2%83%c3%83%c2%82%c3%82…	OpenPhish urlscan	Details
2026-05-26 19:30	2026-04-19 13:00	http://uspsmailjourney.com/%c3%83%c2%83%c3%82%c2%83%c3%83%c2%82%c3%82…	OpenPhish urlscan	Details
2026-05-26 19:30	2026-04-19 01:01	http://uspsmailjourney.com/%c3%83%c2%83%c3%82%c2%83%c3%83%c2%82%c3%82…	OpenPhish urlscan	Details
2026-05-26 19:30	2026-04-18 13:01	http://uspsmailjourney.com/%c3%83%c2%83%c3%82%c2%a2%c3%83%c2%82%c3%82…	OpenPhish urlscan	Details
2026-05-26 19:30	2026-04-18 01:01	http://uspsmailjourney.com/%c3%83%c2%a2%c3%82%c2%80%c3%82%c2%99	OpenPhish urlscan	Details
2026-05-26 19:30	2026-04-17 13:02	http://uspsmailjourney.com/%c3%a2%c2%80%c2%99	OpenPhish urlscan	Details
2026-05-26 19:30	2026-04-17 01:01	https://uspsmailjourney.com/%e2%80%99	OpenPhish urlscan	Details
2026-05-26 19:30	2026-04-16 13:02	http://usps-wa-dev-gedsgvf9gad3g5bp.eastus-01.azurewebsites.net	OpenPhish urlscan	Details

Suspicious sites — confidence is not always 100%. Use for Threat Hunting or watchlists.

URL	Screenshot	Details
https://usps.xupqwru.one/uqjmw OpenPhish		Details
https://usps.xupqunr.one/uqjmw OpenPhish		Details
http://usps.xupqdfnn.one/uqjmw OpenPhish		Details
https://usps.xupqcnyt.one/uqj… OpenPhish		Details
http://usps.xupqgbcv.one/uqjmw OpenPhish		Details
https://usps.xupqcudw.one/uqj… OpenPhish		Details
http://usps.xupqouv.one/uqjmw OpenPhish		Details
https://usps.trackingvq.cam OpenPhish		Details
http://uspsmailjourney.com/us… OpenPhish urlscan		Details
http://uspsmailjourney.com/us… OpenPhish urlscan		Details
http://uspsmailjourney.com/us… OpenPhish		Details
https://uspsmailjourney.com/u… OpenPhish		Details
http://uspsmailjourney.com/us… OpenPhish urlscan		Details
http://uspsmailjourney.com/us… OpenPhish		Details
https://uspsmailjourney.com/u… OpenPhish urlscan		Details
http://uspsmailjourney.com/us… OpenPhish urlscan		Details
http://uspsmailjourney.com/us… OpenPhish urlscan		Details
http://uspsmailjourney.com/us… OpenPhish urlscan		Details
https://uspsmailjourney.com/u… OpenPhish urlscan		Details
http://uspsmailjourney.com/us… OpenPhish urlscan		Details
https://uspsmailjourney.com/h… OpenPhish urlscan		Details
http://usps-discreet-priority… OpenPhish		Details
https://uspsmailjourney.com/%… OpenPhish urlscan		Details
https://usps-wa-dev-gedsgvf9g… OpenPhish urlscan		Details
http://uspsmailjourney.com OpenPhish urlscan		Details
https://uspsmailjourney.com/%… OpenPhish urlscan		Details
https://uspsmailjourney.com/%… OpenPhish urlscan		Details
https://uspsmailjourney.com/%… OpenPhish urlscan		Details
http://uspsmailjourney.com/%c… OpenPhish urlscan		Details
http://uspsmailjourney.com/%c… OpenPhish urlscan		Details
http://uspsmailjourney.com/%c… OpenPhish urlscan		Details
http://uspsmailjourney.com/%c… OpenPhish urlscan		Details
http://uspsmailjourney.com/%c… OpenPhish urlscan		Details
http://uspsmailjourney.com/%c… OpenPhish urlscan		Details
https://uspsmailjourney.com/%… OpenPhish urlscan		Details
http://usps-wa-dev-gedsgvf9ga… OpenPhish urlscan		Details

AIHow to verify a real USPS URL

Legitimate USPS URLs always end in usps.com (e.g. www.usps.com, account.usps.com). Anything else — including look-alike typosquats, hyphenated variations, or unfamiliar TLDs like .xyz / .top / .vip — is not USPS.
The padlock icon proves TLS is active, not that the site is safe. Free DV certificates are issued to attackers in minutes; every active site listed above has a valid TLS certificate.
If you got the link from email, SMS, or social media, do not click it. Open usps.com from your browser bookmark or type the domain manually.
Real USPS pages almost never ask for credentials immediately after clicking from a message — treat any such redirect as a phishing attempt until the domain is verified.