The truth behind those mysterious shipment emails in your inbox

written by Kurt Knutsson
Kurt is using a phone

Over the past year, more people have reported receiving order shipment emails for purchases they never made. These messages usually come from legitimate retailers, often sportswear brands or electronics stores, and contain real tracking numbers and delivery details. The products are being shipped to different names at different addresses, but for some reason, the buyer’s contact email is yours.

It might seem like a harmless clerical error or someone accidentally typing the wrong email address. But when it happens repeatedly, and across multiple unrelated orders, it starts to look less like a coincidence and more like a tactic.

Arthur from Cape Coral, Florida, recently reached out with an experience that mirrors what others have been describing:

“My wife’s e-mail address is showing up in emails from various sports entities to notify her of shipping dates, etc. So far, three separate individuals have ordered products, shipped to a different name at a different address, but used her email as the contact. They didn’t use our credit card to place the order. What could be going on? I don’t believe it’s a coincidence.”

Arthur is right to question what’s happening. Scammers are deliberately using real email addresses to push fraudulent purchases through retailer systems with fewer checks. They rely on your email to carry out the scam, even if they have not stolen your payment details.

 

 

A laptop with Google Chrome open

 

What’s likely happening with those shipment emails in your inbox

It is unlikely that someone is accidentally typing your email address every single time. Rather, scammers are deliberately using valid, active email addresses like yours to bypass retailer fraud filters. Numerous sources confirm that fake order and shipping confirmation emails are a common tactic in fraud operations, with criminals exploiting the trust systems placed in legitimate email addresses.

When a stolen credit card is used, pairing it with a real email that has not triggered spam alerts increases the chance the transaction will go unnoticed by anti-fraud systems. Retailers often check whether an email address is active or bounces. If the system sees a functioning address, it may be less suspicious than an obviously fake one.

Once the order is placed, products are frequently sent to drop addresses or freight-forwarding services, as confirmed by official investigations into brushing scams. These services act as intermediaries, making the scam harder to trace. In that context, your email is simply a means to an end, a validated contact point that helps the operation move forward smoothly.

A laptop with Google Chrome open

 

How bad actors are able to get your email

Your email address may have ended up in the hands of scammers through several common methods. The most likely cause is a data breach. Many well-known companies have suffered leaks where customer emails and other information were exposed. 

Once your email is part of a leaked database, it often circulates on the dark web or in underground forums where it is freely traded and reused. Even if you were not part of a breach, scammers often use a technique called credential stuffing. This involves testing stolen login details across different websites to confirm which email addresses are active.

 

Remove yourself from the web

The best thing you can do to prevent this from happening is to invest in a data removal service. While no service promises to remove all your data from the internet, having a removal service is great if you want to constantly monitor and automate the process of removing your information from hundreds of sites continuously over a longer period of time. 

Incogni, a service I trust 100% and use myself, helps automate the process by submitting removal requests to hundreds of data brokers and people-search sites on your behalf.

Incogni automatically contacts data brokers on your behalf and requests the removal of your personal information. It also continues monitoring those sites and submits new removal requests if your data reappears.

  • Incogni currently removes personal data from 420+ data broker and people-search websites, and its Unlimited plan allows you to request removals from as many additional sites as you need.
  • Incogni has also received third-party assurance from Deloitte, validating its marketing claims.
  • The goal is simple: make it much harder for strangers, scammers, and cybercriminals to find your personal information online.

CyberGuy Exclusive: 60% off

CyberGuy readers get 60% off Incogni’s annual plans using the links in this article.

The service also includes a 30-day money-back guarantee, so you can try it risk-free and see how much of your information is exposed online.

Get Incogni and remove your info
Get Incogni’s Family Plan

   

 

Is your personal information exposed online?

Run a free scan to see if your personal info is compromised. Results arrive by email in about an hour.

 

A laptop with Google Chrome open

 

7 ways to secure your email from scammers

These simple but powerful steps can help you protect your inbox, safeguard your identity, and stay one step ahead of scammers misusing your email.

 

1) Protect and Monitor Your Email


Start by locking down your email account with a strong, unique password that you don’t reuse anywhere else. Enable two-factor authentication (2FA) so hackers can’t get in even if they’ve stolen your password. A password manager makes this much easier by generating and securely storing complex passwords, helping you avoid the risks of reuse. 

Next, see if your email has been exposed in past breaches. Our #1 pick NordPass includes a built-in breach scanner that checks whether your email address or passwords have appeared in known leaks. If you discover a match, immediately change any reused passwords and secure those accounts with new, unique credentials. 

One of the best password managers out there is NordPass. It is secure, user-friendly, and uses zero-knowledge architecture with military-grade XChaCha20 encryption to protect your data. NordPass works across Windows, macOS, Linux, Android, iOS, and major browsers and includes features like:
  • Unlimited password storage
  • Secure sharing
  • Password health reports
  • Auto-fill and emergency access
  • Data breach monitoring to alert you if your credentials have been exposed
  • A Security Dashboard with tools like the Data Breach Scanner and Password Health Checker to identify weak, reused, or compromised passwords
Use NordPass to check if your email or passwords have shown up in known data breaches, and take immediate action if they have.
 
CyberGuy Exclusive Deal: Save 52% now with CyberGuy’s exclusive NordPass offer – Get 1 extra month FREE with a 2-year plan. Try 30 days risk-free for only $1.43 per month!

 

2) Watch for suspicious messages

Scan your inbox regularly for order confirmations, shipping notices, or account sign-ups you don’t recognize. If something looks off, report it directly to the retailer or platform; it could be part of a larger scam using your email address. Scan your inbox regularly for order confirmations, shipping notices, or account sign-ups you don’t recognize. If something looks off, report it directly to the retailer or platform; it could be part of a larger scam using your email address. Never click on suspicious links, even if the message looks legitimate, and protect your devices with strong antivirus software to catch threats before they spread.

The best way to safeguard yourself from malicious links that install malware, potentially accessing your private information, is to have antivirus software installed on all your devices. This protection can also alert you to phishing emails and ransomware scams, keeping your personal information and digital assets safe.

My top pick is TotalAV.

TotalAV is easy to set up and offers real-time protection for paid users, keeping your devices safe around the clock. It includes tools to block phishing scams, remove ransomware and spyware, and clean up adware and junk files. The software also features a browser manager, system tune-up tools, and protects across Windows, Mac, Android, and iOS devices.

GET MY EXCLUSIVE CYBERGUY TOTALAV DEAL:


Please note:
1) If you're having difficulty seeing either of the above deals, do this:

- If you're on a mobile device, hold down the link above, "Copy Link", and then paste it into a private or incognito browser.

- If you're on a laptop or desktop, right click the link, "Copy Link", and then paste it into a private or incognito browser.

2) During registration you may see optional upsells you can decline. Our top pick is the core antivirus product.

3) If you need help after your purchase, you can reach TotalAV directly through their official support page here.


 

3) Be picky about where you share your email

Avoid entering your email on shady giveaway sites or sketchy online forms. When in doubt, skip the sign-up or use a throwaway email. The fewer places your email lives, the harder it is for scammers to get hold of it

 

4) Create a second email address for shopping

Set up a dedicated email for online purchases, newsletters, and subscriptions. This helps keep your main inbox clean and makes it easier to spot strange activity. Sometimes, it’s best to create various email aliases so that you don’t have to worry about all your info getting taken in a data breach.  An email alias address is a great way for you to stop receiving constant spam mail by simply deleting the email alias address. These aliases forward messages to your primary address, making it easier to manage incoming communications and avoid data breaches.

For those of you seeking comprehensive email privacy and robust alias management, my #1 pick for private and secure email platforms is StartMail, which contains no ads, no tracking, and powerful privacy features like password-protected email and unlimited disposable email addresses.

You can get an Exclusive deal for CyberGuy readers: 50% off: $23.98 for first year ($2.50 per month, billed annually).  Includes a free 7-day trial.

Some of StartMail's best perks include:

  • StartMail email address
  • 20 GB of email
  • Unlimited aliases
  • Access email on any device
  • Import your contacts easily
  • No ads, no tracking
  • Send encrypted emails to anyone
See my review of best secure and private email services here

Why it matters: You stay anonymous, avoid data leaks, and never have to change your main email address again.

 

5) Monitor your credit and identity regularly

Even if no purchases appear under your name, scams involving your email can be a red flag for future identity misuse. Set up alerts with your bank and consider a credit monitoring service to catch unauthorized activity early.

One of the best parts of my top pick, Aura Identity Protection, is its all-in-one approach to safeguarding your personal and financial life. Aura includes identity theft insurance of up to $1 million per adult to cover eligible losses and legal fees, plus 24/7 U.S.-based fraud resolution support with dedicated case managers ready to help restore your identity fast.

Exclusive CyberGuy deal: Save up to 68% today: Get Aura’s award-winning identity theft protection and credit monitoring for as low as $9/month when billed annually.

See my full list of trusted identity theft protection services and expert tips to stay safe online.

 

6) Review connected accounts and revoke access

Sometimes, the real trouble isn’t a shady email- it’s what’s hiding in your email’s backstage: apps or services that are still allowed to access your account. Those unauthorized shipment emails could signal that someone else is quietly piggybacking on your inbox. That’s why it’s essential to check which apps, services, or delegates have entry—especially in Gmail or Outlook—and remove anything you don’t recognize or use.

Why it matters

Even if you didn’t actively give access, past integrations (like signing in with Google on a random site, or giving an app access to your calendar or contacts) may still be lingering. These permissions can be exploited – some apps scan your emails, others share your data. A classic example: Unroll.me was found scanning Gmail for Lyft receipts and selling that information behind the scenes. That’s why even a seemingly harmless shipment email matters – it might be a clue that something connected to your account is being misused or monitored.

In your email settings (e.g., Gmail, Outlook), check for any connected apps, services, or delegated access you don’t recognize and remove them. This ensures no third party is piggybacking off your account.

For Gmail:
  • Go to Google Account → SecurityThird-party apps with account access.
  • Select anything suspicious or outdated and hit Remove access.
For Outlook:
  • Open SettingsView all Outlook settingsMailSync email.
  • Delete any accounts or services you don’t want connected.

Check this every few months. Revoking access shuts the door on apps or people piggybacking on your inbox and helps keep mysterious emails from turning into something worse.

 

7) File an identity theft report if the problem escalates

If this email misuse leads to fraudulent financial activity, direct users to file a report with the FTC at IdentityTheft.gov or their local authorities. Include this only if appropriate to your tone.

 

Related Links:

 

Kurt’s key takeaway

If you are receiving order confirmations for things you never bought, do not shrug it off. Your email is likely being misused as part of a larger fraud operation, not by accident but intentionally. Scammers are taking advantage of active, trustworthy email addresses to slip past retailer defenses and carry out unauthorized purchases. The repeated use of your email shows that fraud networks are already circulating it, even if your financial information remains untouched.

Are you comfortable with how much of your personal information is floating around online? Let us know in the comments below.

FOR MORE OF MY SECURITY ALERTS, SUBSCRIBE TO MY FREE CYBERGUY REPORT NEWSLETTER HERE

 

 

Copyright 2025 CyberGuy.com.  All rights reserved.  CyberGuy.com articles and content may contain affiliate links that earn a commission when purchases are made.