A new message scam which has been aimed at Royal Mail app users in the UK.
The malware only affects Android phones, and is known as FakeSpy.
It can hack personal information and steal personal details from your phone, according to researchers.
The team from Cybereason have warned about the malware after reports it was first detected in South Korea and Japan.
But its use has now been reported in countried including the UK, US, China, Taiwan, France, Switzerland and Germany, MirrorOnline reports.
Ofir Almkias, a researcher at Cybereason, explained: “FakeSpy is an information stealer used to steal SMS messages, send SMS messages, steal financial data, read account information and contact lists, steal application data, and do much more.”
Video Unavailable
He explained: “FakeSpy masquerades as legitimate postal service apps and transportation services in order to gain the users’ trust.
“Once installed, the application requests permissions so that it may control SMS messages and steal sensitive data on the device, as well as proliferate to other devices in the target device’s contact list.”
How to stay safe
Experts are urging the public to log on to a genuine website and look up any expected deliveries from there.
Jake Moore, Cybersecurity Specialist at ESET, if they weren’t listed there, people should block the scam text number and consider changing any passwords if they feel they have been conned into giving details away.
He also reminds people that a physical note will usually lbe eft if a delivery is genuine.