USPS Report Shows Ineffectiveness of New eLocks for Mail Theft
- Project Safe Delivery is the USPS Initiative to fight back against mail carrier and mailbox robberies
- The USPS recently published a report entitled Security and Efficiency of the New Carrier Scanners and Electronic Locks,
- A close look at the report reveals startling failures in process and procedure
A major component to Project Safe Delivery -- the USPS Initiative to fight back against mail carrier and mailbox robberies -- is the installation of new electronic locks that can only be opened utilizing an electronic device with a specific code of frequency to open the mail box. The scanner, known as the Mobile Delivery Device – Technology Refresh (MDD-TR), was meant to deter criminals, as it could be deactivated if reported stolen.
As described by the USPS:
- The MDD‑TR is a handheld mobile scanning device used by Postal Service employees to improve real-time delivery scanning capabilities. It includes features like hazard maps, GPS, and address modification tools.
- eLock technology was introduced to enhance mail security by replacing traditional arrow keys, which are often targeted by thieves.
While this effort was praised by many, there are also critics who believe that this has been a major failure, given results from the report.
Security and Efficiency of the New Carrier Scanners and Electronic Locks Audit Report
In December 2024, the USPS published an audit report entitled Security and Efficiency of the New Carrier Scanners and Electronic Locks, wherein the USPS notes the deployment of the MDD-TRs and that "select MDD‑TRs also use electronic lock (eLock) technology as a part of a multi-factor authentication requirement to open mail collection boxes and cluster box units — adding another level of security to prevent mail from being stolen."
Frank Albergo, National President of the Postal Police Association, provides a succinct summary via LinkedIn:
USPS bought 49,500 eLocks to secure mailboxes. But as of mid-2024, 12,270 are uninstalled — blocked by:
- Outdated collection boxes
- Installation delays
- Internal tracking errors
And here’s the kicker: USPS canceled the second batch of 50,000 eLocks altogether.
Mr. Albergo goes on to note that even if all the 50,000 eLocks were installed, it would only account for 1% of mail receptacles.
A deeper dive into the report depicts a more startling failure in process and procedure. On Page 13, the report details lost, stolen, and missing MDD-TRs.
Of the 814 MDD‑TRs assigned to the 15 facilities, 163 (or about 20 percent) were unaccounted for at the time of site observations. Of the unaccounted for MDD‑TRs:
- 47 were reported to be at other facilities;
- Five were found at the facility after site observations concluded;
- Seven were reported to be lost or stolen in Ethos after site observations concluded;
- Three were re-assigned during peak season; and
- 101 were missing,24 and management could not provide supporting documentation.
Further, there were an additional 182 MDD‑TRs found at the 15 facilities that were not assigned to them in Ethos.
Needless to say, these results are less than desirable.
Moving Forward
For their part, the OIG made 12 recommendations to address the identified issues, including:
- Developing formal plans for eLock installation and MDD TR inventory evaluations.
- Enhancing geo-location accuracy and addressing hardware issues like screen sensitivity to weather.
- Providing formal training for supervisors and carriers on MDD TR functionalities.
- Expanding the deployment of the 24 Hour AKMS nationwide.
- Reinforcing policies for reporting lost, stolen, or missing devices and ensuring proper cradling of MDD TRs.
As we've noted in the past, FIs cannot rely on other entities such as the USPS to protect themselves and their customers -- particularly when it comes to stolen checks. However, engaging fintech partners like OrboGraph, who provide proven solutions to address the challenges of check fraud, is key to a multi-layered technology approach.
By combining complementary technologies such as image forensic AI, transactional analysis, rules engines, and dark web monitoring, FIs are able to achieve 95% detection rates, ensuring that -- even though fraudsters are getting their hands on stolen checks -- they can protect themselves and their customers from loss of funds.