How to Spot a Phishing Email
Learn to spot the warning signs of phishing emails.
Phishing emails try to trick you into clicking malicious links, downloading infected files, or sharing sensitive information.
Warning Signs
- Urgency: 'Your account will be closed in 24 hours' or 'Immediate action required'
- Unexpected sender: An email from someone you don't normally hear from requesting something unusual
- Suspicious links: Hover over links (don't click) — does the URL match the company it claims to be from?
- Attachments you weren't expecting: Especially .zip, .exe, or macro-enabled documents
- Poor spelling and grammar
- Requests for credentials: No legitimate company will ask for your password by email
- Mismatched email address: The display name says 'Microsoft Support' but the actual email is from a random domain
What to do
- Do NOT click any links or open any attachments
- Do NOT reply to the email
- Report it — see our 'Reporting a Suspicious Email' article
- Delete the email
If you've already clicked a link or entered your password, contact support immediately on 0203 026 6317.