One-time code (OTP) request
Someone asks you to share, read out, or forward a verification code sent to your phone or email.
Why it matters
A one-time code is the final lock on an account or payment. Sharing it lets a scammer log in as you or approve a transaction in that moment.
Example only - do not act on it
Example only: I sent a code to your number by mistake - can you read it back to me?
Why scammers use this
A one-time code is the key to your account or a transaction. If you share it, the scammer can log in or authorise a payment as you.
What to do
- Never share a code with anyone.
- If a 'friend' asks, contact them another way to check.
- Turn on two-step verification on important accounts.
What not to do
- Never read out or forward a code.
- Do not enter a code on a page you reached from a message.
- Do not ignore a code you didn't request - secure that account.
How to verify safely
Genuine codes are for you to enter yourself; no bank, platform, or real contact ever needs you to read one out. Log in via the official app to check.
Scams where this appears
Related message checks
Related scam-type hubs
Related terms
Not sure about a message?
Paste it into the checker for a private, plain-English risk check. Your message stays in your browser.
Check a messageFrequently asked questions
Is it ever safe to share an OTP?
No. No legitimate person or company needs a code that was sent to you. Sharing it hands over access.