Phishing email checker

Phishing Email Checker

A phishing email tries to make you click, pay, or reveal credentials before you slow down. This guide shows the signs to check first.

Check an email Read FAQ

Quick answer

Phishing emails abuse trust and urgency

A phishing email usually impersonates a trusted company, creates urgency, links to a fake login or payment page, and asks for passwords, codes, documents, or money.

Free scam check

Paste the suspicious email

The sample below shows a common account-warning pattern. Replace it with the subject, sender line, email body, or visible URL that worries you.

Sample loaded

Phishing signs to check

Most phishing emails combine several signals. One signal may be harmless; several together should make you pause.

  • Urgent account warnings, payment threats, delivery problems, or security alerts.
  • Links that do not match the real company domain.
  • Requests for passwords, one-time codes, card numbers, or identity documents.
  • Generic greetings, strange sender addresses, or mismatched reply-to domains.
  • Attachments that push you to enable macros, install software, or sign in.

What to do before clicking

Treat every link in a suspicious email as untrusted until you verify it outside the email.

  • Open the company app or website manually instead of using the email link.
  • Do not reply with personal information or security codes.
  • Hover or copy the link text carefully, but do not open it.
  • Forward or report the email using your mail provider's phishing tools.
  • If you entered credentials, change the password and enable two-factor authentication.

How ScamSpot helps

Paste the email body, subject, sender line, and any visible URL. The more context you include, the better the classification.

  • Detects phishing, impersonation, fake invoice, malware, and account takeover patterns.
  • Explains the specific signals, not just a yes or no answer.
  • Gives practical next steps based on the risk level.

Example: fake account alert

Input

Your email storage is full. Confirm your password now or your mailbox will be deleted in 24 hours.

What to notice

  • The message uses urgency and threatens account deletion.
  • It asks for credentials through an external confirmation flow.
  • Verify by logging in from the official website, not the email link.

Phishing email FAQ

Can a phishing email come from a real-looking address?

Yes. Display names can be spoofed, domains can be lookalikes, and compromised accounts can send real emails. Check links, requests, and context.

Is it safe to open a phishing email?

Usually reading the email is less risky than clicking links, opening attachments, downloading files, or replying with information.

What if I clicked the link but did not enter anything?

Close the page, do not download anything, and run a security check if prompted to install software. If you entered credentials, change them immediately.

Should I forward the email to ScamSpot?

No forwarding is needed. Copy and paste the text into the checker and avoid including sensitive personal information when possible.

Can ScamSpot guarantee an email is safe?

No. It gives a risk assessment and next steps. When money, passwords, or identity documents are involved, verify through official channels.