The scams you need to know about

Real examples. Real red flags. Updated for 2026.

1

Phishing emails

What it is: Fake emails pretending to be companies you trust — your bank, Amazon, Netflix. They want you to click a link and hand over your login details or card number.

Real example

We received an email claiming to be from Lloyds Bank: "Dear Customer, unusual activity detected on your account. Click here to verify within 24 hours." The link went to lloyds-banking-verify.com — not the real lloydssbank.com.

Red flags
  • Generic greeting ("Dear Customer" instead of your name)
  • Urgency and threats ("within 24 hours")
  • Sender domain doesn't match the real company
  • Links go to unfamiliar URLs
What to do: Don't click. Go to the real website directly by typing the address yourself. Report to report@phishing.gov.uk.
2

SMS scams (smishing)

What it is: Texts pretending to be Royal Mail, HMRC, or your bank. They usually contain a link and want you to pay a small fee or "verify" something.

Real example

"ROYAL MAIL: Your parcel has a delivery fee of £1.45. Pay here: rm-delivery-fee.com" — Royal Mail never texts links for payments.

Red flags
  • Unexpected text from a "delivery" company
  • Links to pay small fees (the small amount makes you less suspicious)
  • Rushed, urgent language
  • Link domain doesn't match the real company
What to do: Don't tap the link. Check the tracking number on the real company website. If you weren't expecting a parcel, ignore it entirely.
3

Voice cloning ("Hi Mum" scams)

What it is: Someone calls or texts pretending to be a family member, sometimes using AI-cloned voices generated from social media clips. They claim to have lost their phone and need money urgently.

Real example

A WhatsApp message from an unknown number: "Hi Mum, I've lost my phone, this is my temp number. Can you transfer £200 for my new phone?" — This works because it exploits parental instinct. The scammer doesn't need to know your child's name. "Hi Mum" is enough.

Red flags
  • New number you don't recognise
  • Urgent money request
  • Asks you not to call the old number
  • Avoids voice or video calls
What to do: Call your family member on their real number. Set a family code word that only you know — something a scammer could never guess.
4

Business email compromise (BEC)

What it is: Scammers hack or impersonate a company executive's email to request payments. These are targeted, researched attacks — not mass spam. They know your company structure and use real names.

Real example

"Hi Sarah, I need you to wire £15,000 to a new supplier urgently. Don't discuss with anyone yet — it's confidential." — Sent from ceo@company-accounts.com, not the real company domain. The CEO's real email was ceo@company.com.

Red flags
  • Unusual payment request, especially to a new account
  • Urgency and secrecy ("don't discuss with anyone")
  • Slight email domain change (extra word, different TLD)
  • Request bypasses normal approval process
What to do: Always verify payment requests by phone using a number you already have — not one from the email. Never trust email alone for financial transfers.
5

Romance scams

What it is: Fake online relationships designed to extract money over weeks or months. The scammer builds genuine emotional connection before asking for anything. These are patient, sophisticated operations.

Real example

After 3 weeks of daily messages, "James" mentioned a business emergency in Dubai. He needed £3,000 temporarily and would pay it back. He sent a fake passport photo. There was no business. There was no James.

Red flags
  • Never agrees to video calls — always has an excuse
  • Moves to WhatsApp or private messaging quickly
  • Money requests start small and escalate
  • Story involves being abroad (military, oil rig, business trip)
What to do: Reverse image search their photos (Google Images or TinEye). Never send money to someone you haven't met in person. Talk to a friend — they'll see what you can't when emotions are involved.
6

Investment scams

What it is: Fake crypto, forex, or stock opportunities promising unrealistic returns. Often promoted through social media ads, WhatsApp groups, or fake celebrity endorsements. Some let you "withdraw" small amounts at first to build trust before taking a larger deposit.

Real example

"Join our exclusive crypto trading group. Our AI system generates 40% monthly returns." — No legitimate investment guarantees returns. This was a Ponzi scheme that collapsed after 3 months, losing investors over £2 million collectively.

Red flags
  • Guaranteed returns (no investment can guarantee this)
  • Pressure to invest quickly ("limited spots")
  • Unregulated platform with no FCA registration
  • Testimonials from "normal people" with stock photos
What to do: Check the FCA register. If the firm isn't listed, don't invest. Report suspicious investment firms to the FCA directly.
7

Job offer scams

What it is: Fake job adverts designed to steal personal information or charge advance fees. They appear on real job boards and often promise remote work with above-market salaries.

Real example

"Congratulations! You've been selected for a remote data entry position. Salary: £45,000. Please provide your bank details for payroll setup." — No interview, no verification, just a demand for bank details from a company that barely has a website.

Red flags
  • No interview or assessment process
  • Salary too good for the role described
  • Asks for bank details or ID upfront
  • Vague company name with no verifiable online presence
What to do: Research the company on Companies House. Real jobs have interviews. Never pay for a job, and never send bank details before signing a contract.
8

QR code phishing (quishing)

What it is: Fake QR codes placed on parking meters, restaurant tables, or sent via email. They look official but link to phishing sites that capture your payment details.

Real example

A QR code stuck on a parking meter labelled "Pay here" linked to a fake payment site that captured card details. The real parking app was completely different. The sticker was placed over the genuine QR code.

Red flags
  • QR code stickers placed over existing ones
  • QR codes in unexpected places (on a lamppost, random flyer)
  • The landing page asks for more information than you'd expect
  • URL looks wrong when you preview before opening
What to do: Type the URL manually instead of scanning. Use your parking app directly. If a QR code looks stuck on top of another, don't scan it.
9

Fake delivery notifications

What it is: Texts or emails claiming a parcel needs a small redelivery fee. They exploit the fact that most people order online regularly and might actually be expecting something.

Real example

"DPD: We attempted delivery. Rescheduling fee: £1.99. Pay here: dpd-redeliver.co.uk" — DPD doesn't charge redelivery fees via text. The £1.99 is designed to seem too small to worry about, but the payment page captures your full card details.

Red flags
  • Small fee request (£1-3 range to lower your guard)
  • Link goes to an unofficial domain
  • You weren't expecting a parcel
  • No specific tracking number or order reference
What to do: Check the delivery company's official tracking page directly. If you're expecting a parcel, use the tracking link from your order confirmation — not from a random text.
10

HMRC / IRS impersonation

What it is: Calls, texts, or emails claiming you owe tax or are due a refund. These exploit fear of the taxman and the appeal of free money. They're particularly common around January and April.

Real example

"HMRC: You are entitled to a tax refund of £438.20. Claim here: hmrc-refund-portal.co.uk." — HMRC never sends refund links by text. They process refunds through your Government Gateway account or by cheque.

Red flags
  • Refund promises via text or email
  • Threats of arrest or legal action
  • Asks for bank details to "process your refund"
  • Automated voicemail claiming to be HMRC
What to do: Log into your Government Gateway directly. HMRC communicates through official channels. Report suspicious HMRC contact to phishing@hmrc.gov.uk.

Think you've received a scam?

Paste the message into ScamSignal. You'll know in seconds whether it's safe.

Check it now with ScamSignal