NewSecurity Audit Kit — audit your business in 15 minutes.Launch $49· limited time offer
All scam checks
Very likely a scam

Is This Email a Scam? How to Check in 30 Seconds

Seven 30-second tests to tell if any email is a scam: sender domain, link destination, urgency, attachments, and brand-impersonation cues. Real examples + what to do.

Got a message like this right now?

Paste it into Cautellus and get a risk score before you reply.

Scan it free →

What the scam looks like

Examples of common scam message patterns. These are composites based on real reported scams, not quotes from specific individuals.

PayPal account verification phish — example of a common scam pattern

Your PayPal account has been limited due to unusual activity. Please verify your information within 24 hours or your account will be permanently suspended: paypal-secure-verify.com/login

Microsoft password expiration — example of a common scam pattern

Your Microsoft 365 password expires today. Click here to keep your current password or it will be reset automatically: ms365-auth.support/keep-password

IRS refund pending — example of a common scam pattern

IRS: Your 2025 tax refund of $1,247.32 is on hold pending identity verification. Confirm now to release funds: irs-refund-portal.com/verify

Why this is suspicious

  • Sender domain doesn't match the brand (paypal-secure-verify.com is not paypal.com)
  • Generic greeting like 'Dear Customer' instead of your real name
  • Urgency language: 'within 24 hours', 'expires today', 'final notice'
  • Asks you to click a link to 'verify' or 'confirm' account info
  • Threatens account suspension, legal action, or lost money if you don't act
  • Small typos, awkward grammar, or inconsistent formatting that a real corporate email wouldn't have
  • Attaches a file (.pdf, .doc, .zip) you weren't expecting

Not sure if yours is fake?

Drop your message, link, or screenshot into the scanner — it takes 5 seconds.

Check it now →

What to do

  1. Don't click any links. Don't reply. Don't download any attachments.
  2. Hover over the sender's name to see the real email address — does it match the brand's real domain?
  3. Open a new tab and go to the brand's official website directly. Log in there to check if anything's actually wrong.
  4. If the email impersonates a company you do business with, forward it to their abuse team (e.g., spoof@paypal.com)
  5. Mark as spam in your inbox so future similar emails are filtered automatically.
  6. Run the suspicious email text through the Cautellus scanner for an instant verdict and explanation.

Frequently asked questions

How can I tell if an email is fake or real?+
Check the sender's full email address (not just the display name) — it must match the brand's real domain. Hover over any link before clicking; the destination URL should also match. Real organizations never ask you to 'verify' your account by clicking a link, never threaten suspension within hours, and never request your password, SSN, or full card number by email.
What if the email looks identical to one I've received from this company before?+
Scammers copy real emails almost perfectly, including logos, layout, and footer. The giveaway is always in the sender domain and the link destinations. If it looks identical, log into the company's site directly (don't use the email link) — if there's a real issue, it'll be in your account notifications.
I already clicked the link in a suspicious email. What now?+
If you only loaded the page, close the tab and clear your browser history — your risk is low. If you entered your password, change it everywhere you've used it and enable two-factor authentication. If you entered credit card info or SSN, contact your bank to freeze the card and place a credit freeze with Equifax, Experian, and TransUnion.
How does Cautellus check if an email is a scam?+
Paste the full email text — including the sender address and any links — into the scanner. The AI checks for known phishing patterns, lookalike domains, urgency language, brand-impersonation tells, and known scam URLs. You get a risk score and a plain-English explanation in seconds. Your first scan is free.

Related reading

Fake PayPal Invoice Email5 Signs of a Phishing EmailHow to Spot AI-Generated Phishing

Think you've been targeted?

Paste any suspicious text, email, link, or screenshot for instant AI analysis.

Scan something free →

More scam checks

Is This Facebook Marketplace Cashier's Check a Scam?Is This USPS Text Message a Scam?Is This PayPal Invoice a Scam?Is This Venmo Buyer a Scam?Is This Google Voice Verification Code Request a Scam?Is This Remote Job Text Message a Scam?
View all scam checks →