Email Checklist — WasItAScam.com

Did this email arrive unexpectedly? You weren't expecting to hear from this sender about this topic.
Does the sender's email address look off? Check the actual email address (not just the name shown). Look for misspellings or strange addresses like "support@amaz0n-account.com" instead of a real Amazon address.
Is there a link or attachment they want you to click or open? You can hover over a link (without clicking) to see where it actually goes. On a phone, press and hold the link to preview it.
Does the link address look suspicious? Misspellings, extra words, or web addresses that don't match the real company.
Is there urgency or a threat? "Your account will be suspended," "Unauthorized login detected," or "Immediate action required."
Are they asking for sensitive information? Passwords, Social Security numbers, bank details, or login codes. Real companies don't ask for these by email.
Is the greeting generic? "Dear Customer" or "Dear User" instead of your actual name. Companies you have accounts with usually know your name.
Are there spelling or grammar mistakes? Professional companies proofread their emails. Odd phrasing or errors can be a red flag.
Does something feel wrong? Trust your gut. Your instincts brought you here — that counts for a lot.

You answered "yes" to 0 out of 9 questions

Probably legitimate

This email seems okay. But as a general rule, it's still safer to go to websites directly (type the address yourself) rather than clicking links in emails.

Be cautious

This might be okay, but it's worth double-checking. Go directly to the company's website by typing the address yourself, or call them using a number you trust. Don't click links or open attachments in the email.

This is very likely a phishing email

Do not click any links or download any attachments. Delete the email. You were right to be suspicious — well done for checking.

What to do now

If you didn't click anything

Delete the email. You're safe — great instincts!

If you clicked a link but didn't enter information

You're probably okay. Close the page. If you'd like extra peace of mind, you can run a security check. On Windows, search for "Windows Security" in your Start menu and click "Scan now." On a Mac, your computer has built-in protections that work automatically. On an iPhone or iPad, you're well protected — just close the page, clear your browser history (Settings > Safari > Clear History), and make sure your device is up to date (Settings > General > Software Update). If you're still worried, ask a family member or someone you trust to take a look.

If you downloaded an attachment

On Windows, search for "Windows Security" in your Start menu, click "Virus & threat protection," then click "Quick scan." On a Mac, your computer has built-in protections that work automatically. On an iPhone or iPad, delete the attachment from your Files app or email, clear your browser history (Settings > Safari > Clear History), and make sure your device is up to date (Settings > General > Software Update). If you're unsure or worried, ask a family member or someone you trust to help — there's no shame in asking.

If you entered login information

Change your password immediately — on the real website, not through the email. If you use that same password anywhere else, change it there too. See our full guide.

If you entered payment information

Contact your bank or credit card company immediately using the number on the back of your card. Here's what to do.

Phishing emails are designed to fool people. The fact that you stopped to check shows good judgment. You're doing great.

Was that email a scam?