Resources / Email Scam Checker

Is this email a scam?

Paste the email below. The checker looks for the red flags phishing and fraud emails rely on — and reads the sender's address for spoofing tells — then explains the persuasion tactic behind each one.

🔒 Checked entirely in your browser — the email is never uploaded
Tip: paste the full sender — display name and the address in angle brackets. The mismatch between the two is often the clearest tell. Leave blank if you only have the body.
Try an example:
Paste the email first — the subject line and a few sentences is enough.

This is a pattern-based checker, not a verdict from your email provider or IT team. A clean result does not guarantee an email is safe — new phishing appears daily, and the most targeted attacks avoid common tells. When in doubt, contact the company or person directly using a website or number you already have, never one from the email. Already clicked, entered a password, or paid? Use our what-to-do-now tool.

Want deeper checks? This free tool runs entirely in your browser, so it only sees what you paste. The email checks included with paid Family plans go further: forward any suspicious email to your ScamDrill address and our servers also expand shortened and redirected links to reveal the real destination, flag links to newly registered domains, and check the sender's SPF, DKIM, and DMARC authentication to catch a forged From line the text alone can't.

Next time, spot it without a checker.

ScamDrill sends safe practice emails and texts to your family so the instincts are there before the real phishing arrives. Paid plans also include forward-an-email verdicts with link expansion, new-domain detection, and sender-authentication checks built in. Free plan available — and you've just seen exactly which tactics need practice.

Start practicing free →
Protecting a team instead? ScamDrill for organizations runs phishing drills company-wide.

Get a heads-up before the next scam reaches you

Join our free newsletter — monthly scam-trend updates and practical tips to protect yourself and the people you care about. No spam, unsubscribe anytime.

We'll only use your email to send scam alerts. See our privacy policy.

Email scam questions, answered

How can I tell if an email is a scam?
Read the real sender address, not just the display name — scammers fake the name freely, but the address often gives them away (a free Gmail, a lookalike like chase-secure.info, or a Reply-To that points somewhere else). Watch for urgency, threats, account-problem pretexts, requests for passwords or codes, unexpected attachments, and links that don't go to the company's real website. The checker above scores an email against these patterns instantly. For a deeper walkthrough, see how to spot common scams.
Is it safe to paste my email into this checker?
Yes. The analysis runs entirely in your browser — nothing you paste is uploaded to a server. We still suggest removing personal information before pasting, but the email never leaves your device.
What's the difference between phishing and a scam email?
Phishing is a scam email built to steal your login or personal details, usually by sending you to a fake login page. Other scam emails want you to pay (fake invoices, subscription-renewal scams), buy gift cards (business email compromise), or hand over money (lottery, romance, inheritance). The checker flags all of these and names the likely type. The scam glossary defines the terms.
I clicked a link or entered my password — what now?
Change that password immediately from a device you trust and turn on two-factor authentication. If you entered banking or card details, call your bank. If you paid, report it. Our what-to-do-now tool gives you the exact steps for your situation.
Does a clean result mean the email is safe?
No. A clean result means none of the common scam patterns matched — but targeted attacks are written to look legitimate. Always verify any request to click, pay, open an attachment, or share information through a channel you already trust.