Real Delivery Locker Code vs Locker Phishing

Tell a genuine parcel locker access code from a phishing text exploiting the parcel-locker format.

Last reviewed: 1 June 2026

Parcel lockers — such as Amazon Hub or InPost — send genuine one-time codes by text or email. Scammers copy this format to send phishing links alongside fake codes. The differences below help you collect your parcel without being defrauded.

Side-by-side comparison

	Real locker code	Locker phishing
Trigger	Arrives after you placed an order and the carrier confirms delivery to a locker	Arrives unexpectedly with no order to match it to
Action required	Enter the code at the locker keypad; no login or payment needed	Asks you to click a link, pay a fee, or log in to 'release' the parcel
Sender	Recognised shortcode or official email domain of the carrier or retailer	Generic mobile number or lookalike domain
Fee	No fee to collect from a locker you booked	Claims a customs or redelivery fee is required before the code works
Code format	Code works at the locker with no additional steps	Code is presented alongside a link 'to activate it'

Common red flags

A fee required to activate or use the locker code
A link to a website to 'complete' collection
Locker code arrives with no corresponding order in your account
Sender number or domain does not match the official carrier
Urgency threatening that the locker will be reallocated within the hour

Verification steps

Check your order confirmation email or the retailer's app to verify that a locker delivery was scheduled
Do not follow any link — go straight to the locker with the code
Check the carrier's official tracking tool using your order reference
If the code does not work at the locker, contact the carrier through their official app

What not to do

Don't click any link in a locker code message
Don't pay any fee to use a locker code
Don't enter personal or card details to 'activate' a code

A safe response

Go directly to the locker and enter the code at the keypad. If you did not place an order matching the message, delete it and report to 7726.

Frequently asked questions

Do locker codes ever require a link to activate?

No. Genuine locker codes work directly at the keypad. Any message asking you to click a link to activate a code is a phishing attempt.

Side-by-side comparison

	Real locker code	Locker phishing
Trigger	Arrives after you placed an order and the carrier confirms delivery to a locker	Arrives unexpectedly with no order to match it to
Action required	Enter the code at the locker keypad; no login or payment needed	Asks you to click a link, pay a fee, or log in to 'release' the parcel
Sender	Recognised shortcode or official email domain of the carrier or retailer	Generic mobile number or lookalike domain
Fee	No fee to collect from a locker you booked	Claims a customs or redelivery fee is required before the code works
Code format	Code works at the locker with no additional steps	Code is presented alongside a link 'to activate it'

Common red flags

A fee required to activate or use the locker code

A link to a website to 'complete' collection

Locker code arrives with no corresponding order in your account

Sender number or domain does not match the official carrier

Urgency threatening that the locker will be reallocated within the hour

Verification steps

Check your order confirmation email or the retailer's app to verify that a locker delivery was scheduled

Do not follow any link — go straight to the locker with the code

Check the carrier's official tracking tool using your order reference

If the code does not work at the locker, contact the carrier through their official app

Real Delivery Locker Code vs Locker Phishing

Side-by-side comparison

Common red flags

Verification steps

What not to do

A safe response

Frequently asked questions

Related pages

Real Delivery Locker Code vs Locker Phishing

Side-by-side comparison

Common red flags

Verification steps

What not to do

A safe response

Frequently asked questions

Related pages