How to check if an email is phishing
The fastest way to check an email for phishing is to paste it into the checker above. To verify it yourself, work through this checklist before you click or reply.
- Check the full sender address and reply-to, not just the display name, for lookalike or unrelated domains.
- Hover over every link and confirm the real destination matches the company's official domain.
- Look for urgency or threats: account suspension, deletion, payment failure, or a security alert with a deadline.
- Watch for requests for a password, one-time code, card number, PIN, or identity document.
- Notice generic greetings, spelling errors, or a tone that does not match how the company normally writes.
- Be suspicious of attachments that ask you to enable macros, install software, or sign in to view a file.
Phishing email signs to check
Most phishing emails combine several of these signals. One signal alone may be harmless; several together should make you stop.
- Urgent account warnings, payment threats, delivery problems, or security alerts.
- Links that do not match the real company domain, or shortened links that hide the destination.
- Requests for passwords, one-time codes, card numbers, or identity documents.
- Strange sender addresses, mismatched reply-to domains, or a brand name in front of an unrelated domain.
- Attachments or buttons that push you to enable macros, install software, or sign in.
What to do before clicking a suspicious email
Treat every link in a suspicious email as untrusted until you verify it outside the email.
- Open the company app or type the official website manually instead of using the email link.
- Do not reply with personal information, passwords, or security codes.
- Copy the link text carefully to inspect it, but do not open it.
- Report the email using your mail provider's built-in phishing or junk reporting tools.
- If you already entered credentials, change the password and turn on two-factor authentication right away.
How the phishing email checker works
Paste the email body, subject, sender line, and any visible URL. The more context you include, the more accurate the phishing classification.
- Detects phishing, impersonation, fake invoice, malware, and account-takeover patterns.
- Explains the specific phishing signals it found, not just a yes or no answer.
- Gives a confidence score and practical next steps based on the risk level.
Example: fake account alert phishing email
Input
Your email storage is full. Confirm your password now or your mailbox will be deleted in 24 hours.
What to notice
- The message uses urgency and threatens account deletion.
- It asks for credentials through an external confirmation flow.
- Verify by logging in from the official website, not the email link.
Phishing email checker FAQ
How do I check if an email is phishing?
Paste the email into the phishing email checker above and it flags the phishing signals for you. To check manually, confirm the sender and reply-to domains, hover over links to see the real destination, and watch for urgency plus any request for your password, code, or payment.
Is the phishing email checker free?
Yes. The email phishing checker is free and needs no signup. Paste the suspicious email and you get a verdict, confidence score, the specific phishing signals, and what to do next.
Can a phishing email come from a real-looking address?
Yes. Display names can be spoofed, domains can be lookalikes, and compromised accounts can send real emails. Check the links, the requests, and the context, not just the sender name.
Is it safe to open a phishing email?
Usually reading the email is less risky than clicking links, opening attachments, downloading files, or replying with information. The danger comes from acting on it.
What if I clicked the link but did not enter anything?
Close the page, do not download anything, and run a security check if it prompts you to install software. If you entered credentials, change them immediately and enable two-factor authentication.
Should I forward the email to ScamSpot?
No forwarding is needed. Copy and paste the email text into the checker and avoid including sensitive personal information when possible.
Can the checker guarantee an email is safe?
No. It gives a risk assessment and next steps. When money, passwords, or identity documents are involved, always verify through official channels.