Scam Message Checker
Message-based fraud

Phishing

Quick answer

Phishing is when a scammer pretends to be a trusted person or organisation to trick you into revealing passwords, codes, or financial details, or into clicking a malicious link.

  • Open the official app or type the official website address yourself, then check your account directly.

What it is

Phishing is when a scammer pretends to be a trusted person or organisation to trick you into revealing passwords, codes, or financial details, or into clicking a malicious link.

How it works

A message imitates a brand, bank, employer, or contact and creates a reason to act quickly, such as a security alert or a problem with your account. It usually leads to a fake login page designed to capture whatever you type.

Red flags to watch for

  • Urgent or threatening language
  • A link to log in or verify your account
  • Sender address that does not match the real organisation
  • Generic greetings and small spelling errors
  • Requests for passwords, codes, or payment

Example

A message claims there is a problem with your account and asks you to log in through a link to fix it. This is risky because the link often leads to a fake page that steals your password.

What not to do

  • Do not click links inside the message
  • Do not enter your password on a linked page
  • Do not reply with codes or personal details

The safe next step

Open the official app or type the official website address yourself, then check your account directly.

Often seen on: Email, SMS, WhatsApp, Instagram DM, Facebook.

Commonly targets: Anyone with an email or phone, Bank and shopping customers, Employees.

How to verify safely

  • Do not use links, phone numbers, QR codes, or email addresses from the suspicious message.
  • Open the official app or website yourself - type the address manually.
  • Call a contact you have saved, or the number printed on your bank card.
  • If you are threatened or in immediate danger, contact local emergency services or police.

How to report it

Report phishing to your national authority and forward suspicious emails to the impersonated organisation.

Find official links for your country in the scam reporting directory.

Got a message like this?

Check it now to see the specific red flags and what to do next.

Check a message

Related scam types

Smishing (SMS phishing)Smishing is phishing carried out through SMS text messages, often impersonating delivery companies, banks, or government agencies.Bank impersonation scamA scammer pretends to be your bank to make you reveal codes, move money, or share card details.Brand impersonationScammers copy a trusted brand's name, look, and tone to make fake messages seem real.

Frequently asked questions

What is a phishing?

Phishing is when a scammer pretends to be a trusted person or organisation to trick you into revealing passwords, codes, or financial details, or into clicking a malicious link.

How can I avoid a phishing?

Open the official app or type the official website address yourself, then check your account directly.

What should I do if I have already been affected?

Contact your bank or the relevant provider through official channels, change any exposed passwords from a trusted device, and save evidence. See our recovery guides, and be wary of recovery scams that promise to get your money back for a fee.

Get scam safety updates

Practical scam alerts, new examples, and simple safety tips. No spam. No sensitive message data.

We only collect your email address, optional name, consent status, signup page, and signup time. See our privacy policy.