Scam Message Checker

Gmail scam checker

Gmail phishing emails impersonate brands, banks, and colleagues. Paste a suspicious email to check it.

Check a suspicious message privately

Runs in your browser. No login. No message storage.

Protect your privacy before you check

  • Do not paste passwords, OTPs, private keys, or full card details.
  • Remove bank details, passport numbers, Emirates ID, Aadhaar, or national IDs.
  • The checker is designed to run in your browser and not store your message.

Paste the suspicious message here. Remove passwords, OTPs, card numbers, bank details, passport numbers, or anything highly sensitive before checking.

For your privacy, remove OTPs, passwords, full card numbers, account numbers, and private IDs before checking. The checker is designed not to send your pasted message to analytics.

0 / 10,000 characters

Add more detail (optional)

The link is analysed locally and never opened or visited.

What is it asking for? (tick any)

Sensitive-looking details may be hidden before analysis. Everything runs in your browser - the message you paste is not saved, and not sent to any server.

Your result includes:

  • Risk level
  • Red flags found
  • Safe next steps
  • Recovery guide
  • Reporting options

Your result will appear here

Paste a message and choose Check this message to see your safety guidance.

  • A calm risk level
  • Red flags found
  • Safe next steps
  • Official reporting links
  • A family-safe summary

Your pasted message is not shown in shared or printed summaries.

Common Gmail scams

  • Brand and bank impersonation
  • Business email compromise
  • Fake invoices and payments
  • Account-security phishing

Red flags on Gmail

  • 'Account locked' or 'unusual activity' pressure
  • Links to log in instead of the official site
  • Attachments you did not expect
  • Sender domains that don't match the brand

Safety tips

  • Open accounts by typing the address yourself
  • Never enter passwords from an email link
  • Check sender addresses carefully
  • Enable two-factor authentication

Related scam types

PhishingPhishing is when a scammer pretends to be a trusted person or organisation to trick you into revealing passwords, codes, or financial details, or into clicking a malicious link.Business email compromise (BEC)A scammer impersonates a senior colleague or supplier to redirect a payment to a fraudulent account.Brand impersonationScammers copy a trusted brand's name, look, and tone to make fake messages seem real.

Related scam-type hubs

Related red flags

Glossary terms

Emergency guides

Frequently asked questions

How do I check a Gmail message for scams?

Paste the Gmail message into the checker on this page. It runs in your browser and shows the red flags, what the message is likely trying to do, and safe next steps.

Is it safe to paste a Gmail message here?

Yes. The message is analysed on your device and is not stored or sent to a server by default. Sensitive details are masked before analysis.

Get scam safety updates

Practical scam alerts, new examples, and simple safety tips. No spam. No sensitive message data.

We only collect your email address, optional name, consent status, signup page, and signup time. See our privacy policy.