Victims lose a lot of cash on average, but there are red flags to spot beforehand
Brits could be put out of pocket by an average of £300 if they miss spotting one crucial warning sign when checking their emails. There are multiple tell-tale signs people need to watch out for to safeguard their money.
Email scams, often referred to as ‘phishing’ attacks, are becoming more widespread as criminals come up with fresh tactics every day to steal your personal details and banking information. In today’s digital age, constant vigilance is needed, as these dangers can appear in your inbox without warning.
These crimes typically involve fraudsters sending messages whilst impersonating well-known brands or high street names, hoping to fool you into believing they’re legitimate. Frequently, those who are duped find themselves on fake websites where they unknowingly surrender personal information.
In certain instances, victims don’t need to input any information at all, as the email itself may unleash harmful software that can infect your device – whether that’s a computer, tablet or smartphone – with a virus. According to a recent BBC Morning Live report, email fraud victims typically lose approximately £300 per incident.
The figures reveal fraud continues to be among Britain’s most significant financial dangers, with more than two million cases recorded between January and June 2025. Yet this represents only reported incidents, with potentially countless others remaining silent due to feelings of shame or embarrassment, reports the Express.
If you have suspicions about an email being from a fraudster, avoid clicking any links or downloading attachments. Consumer watchdog Which? has recently outlined warning signs that Britons can use to protect themselves from falling victim to scammers who target them through suspicious email links.
‘One word’ generic greetings
Which? suggests that certain email frauds incorporate your name at the beginning of the message. But this isn’t always the case.
A representative explained: “Sometimes scam emails will just say ‘Hi’ and not include a name, or your email address will be used after ‘Hi’. This impersonal approach is a sign that it’s likely to be a scammer behind the email.”
Examine the sender’s details
Which? experts claim that fraudulent emails may come from “an unrecognisable email address” made up of random numbers, letters or words. Yet some fraudsters are becoming increasingly cunning, relying on Brits to give the address a quick glance whilst overlooking glaring red flags.
Occasionally, criminals attempt to mimic brands or organisations as closely as possible whilst incorporating subtle spelling errors, including additional or absent letters. Scammers might also attempt to deceive people by replacing the letter ‘O’ with a zero, creating an almost identical appearance.
Fraudulent schemes are becoming increasingly sophisticated in 2026, yet there are certain to be errors somewhere as criminals attempt to hide their activities.
Which? maintains that there are measures that people can take to pick emails apart that they believe are from scammers.
Hover your cursor over anywhere you’d usually expect there to be a link in the email. For example, check the bottom of the email for ‘contact us’ buttons or links to terms and conditions. It’s also worth checking whether any dates in the email are correct. Often scammers will forget this detail.
Take a look at the quality of any logos in the email. For example, if the images are pixelated, this can strongly indicate that the email is a scam. If an email asks you to update or re-enter your personal information or bank details out of the blue, it is likely to be a scam. Most companies will never ask for personal information via email.
Fraudsters will try to pressure you with time-sensitive offers, encouraging you to act now or miss out on ‘exclusive’ deals. It’s better to miss out on a genuine deal than risk compromising your personal details.
If you’re unsure whether a fraudster is responsible for the email you’ve received, contact the brand or organisation directly. You can reach out through email, social media platforms, or their ‘contact us’ section (by visiting their website yourself through a search engine, never a link provided in the suspicious email).
How to report an email scam.
Despite some alarming statistics, financial institutions successfully prevented £870 million of attempted fraud using security measures, stopping approximately 70% of all incidents. People can report these suspicious emails by forwarding the message to report@phishing.gov. uk.
This tip line enables the National Cyber Security Centre (NCSC) to examine and shut down harmful websites. Reporting a scam costs nothing and takes less than a minute to do.
By flagging phishing attempts, you can decrease the volume of fraudulent emails you encounter, make yourself a more difficult target for criminals and protect others from online cybercrime.
