Malicious attachment
An unexpected attachment (invoice, receipt, 'document to sign') that hides malware or a phishing link.
Why it matters
Opening it or enabling content can install malware or send you to a credential-stealing page.
Example only - do not act on it
Example only: Open the attached invoice to view your charge.
Why scammers use this
An attachment feels routine in business, so it slips past suspicion.
What to do
- Don't tap the link - open the official app or type the address yourself.
- Preview the real destination (long-press) before trusting any link.
- If you opened it, don't enter anything and close the page.
What not to do
- Don't trust a link because the page looks official.
- Don't enter logins or card details on a page reached from a message.
- Don't rely on the visible link text - it can hide the real destination.
How to verify safely
Don't trust the link - reach the company yourself via its official app or a web address you type. If the claim is real, you'll see it there.
Scams where this appears
Related message checks
- Is this package delivery fee text a scam?
- Is this unpaid toll payment text a scam?
- Is this bank account blocked SMS a scam?
- Is this Instagram copyright violation DM a scam?
- Is this Meta Business Support warning a scam?
- Is this customs clearance fee text a scam?
- Is this fake delivery customs fee SMS a scam?
- Is this USPS redelivery fee text a scam?
- Is this UPS 'package cannot be delivered' text a scam?
- Is this FedEx address confirmation SMS a scam?
Related scam-type hubs
Related terms
Not sure about a message?
Paste it into the checker for a private, plain-English risk check. Your message stays in your browser.
Check a messageFrequently asked questions
Is the attachment safe to open?
If it's unexpected, don't open it. Verify with the sender through a known contact and check the account directly.