Skip to main content

Do you ship? Get the refunds you deserve!

Sign up, sit back, get paid.

Do you ship? Get the refunds you deserve!

Sign up, sit back, get paid.


Protect your FedEx account against security breaches

By Last updated on: March 9, 2023

Shipping is an essential part of all e-commerce companies and most other industries. As a result, what would happen if your FedEx account was hacked? A FedEx security breach could be disastrous for any company. Let’s examine some best practices to prevent unauthorized FedEx access by hackers that are attempting a brute force attack.

Current FedEx Password Requirements

FedEx account password must use the following rules to create a password:

  • At least 8 characters or more
  • Contain one upper case letter
  • Contain one lower case letter
  • One numeric character
  • FedEx password cannot contain your full company name
  • The password cannot include your email address
  • FedEx passwords are case sensitive
  • Lastly, the password cannot have more than three occurrences of the same consecutive character

Best Practices for FedEx Passwords

Here are some tips to help protect your FedEx account from potential threats and security breaches. However, feel free to do further research on your own to increase online security.

1. Create a new ID for each team member.  

FedEx security breach FedEx Billing Online Add User

Let’s face it, employees move jobs frequently. According to various online reports, it is rare for employees to stay at a job for over 4 to 5 years. If multiple employees are accessing the same credentials, many employers decide not to update security when an employee leaves. Therefore, make it a company policy to add individual user accounts rather than one set of credentials for everyone.  

Log into the FedEx Billing Online. Next, go to the “My Options” tab. The menu will drop down, click the “Manage User” tab. Once that page opens, you will see the purple “Invite New User” button in the bottom right corner. Click the “Invite New User” button and the page expands.  

Here you can enter the new users’ first name, last name, email address, and user permissions. Choose the “Standard: User can view, pay, and dispute.” Standard will allow Refund Retriever to download the invoices and dispute late deliveries and other billing mistakes.

Therefore, to add a user for us, use the email address (Your Company Name at Remember to choose the standard permissions. Once this is submitted, FedEx will send us an email notification. One of our refund geeks in the back office will set up a secure login ID and password. So then we can start downloading FedEx invoices.

2. Make the password difficult to remember

  • Avoid single words or a word followed by a number
  • The longer the password, the better
  • Use a combination of words, numbers, symbols and upper/lower case letters
  • Avoid passwords based on confidential information (i.e. SS# or DOB)
  • Avoid using adjacent letters/numbers on your keyboard
  • Use two-factor authentication for any site with the option

If you can remember your FedEx password, it is a bad password.

Refund Retriever Director of Technology

3. Use a password manager

As a user of many websites and sensitive databases, I could never remember all the user names and passwords for each one. Consequently, I use a password manager with two-factor authentication. Password managers allow for a central repository of my user names and password. All my data is behind a secondary password that changes every 30 seconds. Check out Dashlane, Keeper, or 1Password.

How to Update a FedEx Password for Refund Retriever

For Refund Retriever to audit your FedEx invoices, we need access to the FedEx Billing Online. Many customers allow us to use current credentials, but there is another option. Refund Retriever customers have the opportunity to add a secondary user within FedEx Billing Online.

If the FedEx password we have is no longer valid, customers can log into the Refund Retriever Client Interface and update it. Log into the interface and click on “Shipping Accounts” on the left menu bar. This will open a list of all your accounts. Next, click on the purple “EDIT ACCOUNT” button. Here you can enter the new credentials securely.

Update FedEx Password on Refund Retriever FedEx security breach

How can Refund Retriever help if there is a security breach?

Refund Retriever monitors every shipment that is charged to your FedEx account. Therefore, if there is any fraudulent activity, it will be evident from the billing data. Refund Retriever provides a full suite of reports and analytics free for each audit customer.

One report that will help is our third-party report. The third-party report filters all packages not shipped from or delivered to your address. These are packages that you are not in the chain of custody. These could be valid shipments or a result of a security breach of your FedEx billing.

Refund Retriever 3rd Party Package Report FedEx security breach

To learn more about how Refund Retriever can help lower your shipping costs and increase your FedEx security and visibility, contact us today. We can lower your FedEx shipping costs through our parcel auditing or contract analysis services.  

Brian Gibbs

Author Brian Gibbs

More posts by Brian Gibbs

Brian Gibbs | President of Refund Retriever

Brian Gibbs founded Refund Retriever in 2006 while running his first eBay-based business and seeing the shortcomings of other shipment auditing companies. Refund Retriever's primary focus is FedEx and UPS parcel invoice auditing. After graduating from Texas A&M University in 2001, he graduated from the University of Houston in 2004 with a JD and MBA. Gibbs has been featured in Forbes, Entrepreneur, and other publications discussing parcel auditing, shipping, e-commerce, and more. Learn more at or call (800) 441-8085 for more information.

Sign Up Now Contact Us