Dangerous Mail Data

Mail Security Incident Statistics

RaySecur’s Dangerous Mail Data center is an open-source database for tracking in near real-time dangerous mail incidents.

We utilize the US Department of Alcohol Tobacco and Firearms’ (ATF) categorization system, with emphasis on location, target, responsible response organization and the success or failure of the threat. 

Packages Scanned by MailSecur™


2020 Threats to Date


Dangerous Mail Alerts

RaySecur is designated by the US DHS, and we’d love for you to join our community.

We provide ongoing mailroom threat incident analysis – find out what is happening near you so you can respond quickly. 

2020 Mail Security Report.

2020 Dangerous Mail Report

The USPIS Dangerous Mail Investigations Unit responds to 10 dangerous mail incidents every day, on average. RaySecur CSO Will Plummer analyzes trends from the known dangerous mail incidents in 2020.

Fauci White Powder ABC News.

“If it was ricin, I was dead” – White Powder Mail Threatens Dr. Fauci

Dr. Anthony Fauci received a white powder threat that could have killed him. The powder spilled all over his face and chest. “It had to be one of three things: A hoax. Or anthrax, which meant I’d have to go on Cipro for a month. Or if it was ricin, I was dead, so bye-bye.” [...]

Mail Threat Alerts 2020-11 Nov.

Dangerous Mail Threat Alert: November, 2020

Excerpt of mail threats incidents across the US in Nov, 2020. Use these threats to plan for the future of mail security.

Mail Threat Alerts: October, 2020.

Mail Threat Alert: October, 2020

Excerpt of mail threats incidents across the US in Oct, 2020. Use these threats to plan for the future of mail security.

Mail Threat Alerts: September, 2020.

Mail Threat Alert: September, 2020

Excerpt of mail threats incidents across the US in Sep, 2020. Use these threats to plan for the future of mail security.

Mail Threat Alert: Aug, 2020.

Mail Threat Alert: August, 2020

Excerpt of mail threats incidents across the US in Aug, 2020. Use these threats to plan for the future of mail security.

Mail Threat Alert: Jun/Jul, 2020.

Mail Threat Alert: June & July, 2020

Drugs are no longer primarily passed from hand to hand on a street corner. They have transitioned into the mail and show up at the office with the regular mail. The office is a lot safer for the delivery, because the drugs are hidden in the mass of mail. Angry ex-employees can target companies who [...]

3D Real-Time Imaging Threat Delivery Method

Delivery methods vary from bags and boxes to pressure cookers and pipe bombs.

However, 42% of recorded incidents utilize letters while 18% rely on parcels.

This means 60% of these suspect packages can be screened and deterred by the MailSecur.

RaySecur’s 2019 Targeted Sites

In capturing and analyzing possible threats, we focus on types of targets.

Over 1/3 of targets are government facilities, while 22% are businesses and another 25% are public spaces and public transportation.

RaySecur’s 2019 Targeted Days

The data demonstrates that every day of the week mail handlers deal with suspect packages of one type or another.

However, Tuesdays and Wednesdays are the days most likely for these occurrences to happen. A full 41% of incidents occur on these two days.

However, Thursday-Sunday sees a precipitous drop in events in that less than 40% of all events occur on these days.

ATF’s 5-Year Trend of 3 Largest Target Types (Business, Edu, Residential)

Statistically, the five-year trend shows a downward trend in overall targeting of businesses and residential areas. T

he educational site targeting continues to show historically erratic incidents. All three saw an increase over 2018 from 2017.

ATF’s 5 Year Trend Data of the 3 Highest Threats by Delivery Method

Delivery types stay within historical levels and heavily lean towards packages that are small and innocuous to the surrounding areas.

There is, however, a 95% increase in letters, parcels and powders between 2017 and 2018 indicating a shift in the general methodologies of attack.

ATF’s 5 Year Trend Data of Hoax Versus Validated

The 5-year trend analysis demonstrates a steady reduction in hoax threats while simultaneous exhibiting an increase in validated threats.

This statistical combination suggests a trend of increased lethality.

About the Threat Data Center

Cataloged in this data are dates of offenses, target types, means of attack, and the eventual outcomes. The intent is to capture a holistic understanding of threat events as they unfold and not continue dependence on the annual reports of other organizations. 

All statistical information contained in the TDC Tracker is based on reports from a variety of open media sources. Information is not added to the tracker until the sources are determined as credible, with updating occurring daily.

Statistically, local police initiate investigations into events most often followed up by Bomb Squads from local, state or federal levels. 

The largest number of threats reported to date has been suspicious packages and when they contain powders the substance is four times as likely to be chemical rather than biological. 

Injuries are most often associated with white powder events. Victims may experience sickness and unexpected health issues. 

Traditionally, anthrax is the concern in these scenarios. However, drugs such as fentanyl and methamphetamine are becoming more common.

The overall threat with the highest probability of being targeted is government and businesses and the states experiencing the most events are California, Florida, New York, Massachusetts, followed by Texas. 

By city, Cambridge, MA, reports the most incidents, followed by Oklahoma City, Washington D.C., and finally, Phoenix. This covers settlements ranging from medium-size cities to bustling metropolitans areas, however, we track all instances in the United States. 

Potential attacks are most likely to occur on Tuesday or Wednesday, while they are least likely to happen on the weekends.