Phishing Emails
Fake emails that steal passwords, payment details, or install malware.
What is this scam?
Phishing emails impersonate trusted brands—banks, delivery companies, tax offices, or colleagues—to push you to a fake login page or malicious attachment.
The goal is to capture credentials, payment data, or to trick you into approving a fraudulent transfer.
How it works
- You receive an urgent message about a failed payment, locked account, or parcel fee.
- The email links to a look-alike website that mirrors a real login screen.
- Entered usernames, passwords, or card numbers go straight to criminals.
- Some variants use PDF or HTML attachments that install malware when opened.
Warning signs
- Generic greetings like “Dear customer” instead of your name
- Sender address that does not match the real organisation domain
- Pressure to act in minutes (“account will be closed”)
- Links that show a different domain when you hover
- Unexpected attachments you did not request
What to do
- Do not click links or open attachments if anything feels off.
- Go to the official site by typing the address yourself or using a saved bookmark.
- If you entered details, change passwords immediately and enable two-factor authentication.
- Contact your bank if payment information may have been shared.
- Report phishing to your email provider and national fraud reporting channels.
Safety checklist
- Verify the sender domain character by character
- Never approve login prompts you did not start yourself
- Use Fraudly to check suspicious shop or payment links before you continue
- Keep software and browsers updated
- Train family members on parcel and bank phishing templates
Check a website before you pay
Paste a shop or payment link into Fraudly's free checker—get trust signals before you share card details or log in.
Check a website before you payFrequently asked questions
- Is it safe to unsubscribe from a phishing email?
- Often no—unsubscribe links can confirm your address is active. Delete the message and block the sender instead.
- Can Fraudly read my email?
- No. Fraudly only analyses website URLs you choose to check—it does not access your inbox.
Related scam guides
Fake Webshops
Copycat stores that take your money and never ship—or steal card details.
Read guideBank Impersonation Scams
Fraudsters pretend to be your bank to authorise transfers or steal login codes.
Read guideParcel Delivery Scams
SMS or email claiming you owe a delivery fee or must reschedule a parcel.
Read guideFake Invoice Scams
Modified bank details on invoices or entirely fabricated bills from “suppliers.”
Read guide
Fraudly is not a law enforcement agency. We provide informational guidance and links to official reporting organisations.
Related Fraudly resources
- Website scam checkerRun a free URL check for trust signals, scam patterns, and plain-language risk context.
- Scam awareness certificateTest your scam detection skills and earn a shareable Fraudly certificate.
- Download Fraudly appGet the iOS app or Chrome extension for on-the-go website trust checks.
- Fraudly PremiumDeep Scan and Live Protection in Chrome—website scans stay free.
- Scam alertsPublished threat alerts with context on emerging phishing and scam campaigns.
- Intelligence HubEditorial guides on fake webshops, phishing, and warning signs before you pay or log in.
