Before you respond
Is this email a scam?
Learn calm signs that an email may be phishing, what to check before clicking, and how to verify through a trusted source.
Reviewed May 31, 2026
Quick answer
An email may be a scam if it asks you to click a link, open an attachment, sign in, pay, or share information after an unexpected warning or fake invite.
Do not use the email link. Open the official app or type the official website yourself before taking action.
What it may look like
"You are invited. Enter your email password or passcode to open the event details and RSVP."
Signs to slow down
- The sender address, link, or website does not match the real organization.
- The email asks for passwords, passcodes, two-factor codes, card numbers, identity information, or remote access.
- It includes an unexpected attachment, invoice, security alert, refund, delivery problem, or invitation from a platform you recognize.
- It creates urgency so you click before checking.
- It says a host or contact invited you, but you must enter login details to see the event, creating an account takeover risk.
What to do next
- Do not click links or open attachments until you verify.
- Go to the official app or website yourself.
- For a fake invite, contact the host through a separate channel before entering any email login or passcode.
- Check the sender address and link destination carefully.
- Use two-factor authentication and change your password quickly if you entered credentials.
- Forward phishing emails to reportphishing@apwg.org and phishing texts to 7726, then report to the FTC when appropriate.
How Olevo can help
Olevo can give you a calm second opinion before you respond.
Paste the email text for a Private Check, or upload a screenshot if the sender, link, or layout is easier to show; screenshots use Detailed Review.
Trusted sources
How To Recognize and Avoid Phishing Scams
Federal Trade Commission
FTC guidance explains common phishing signs and recommends reporting attempts to ReportFraud.ftc.gov.
Asked to enter your email address and password to open a party invite? That's a scam
Federal Trade Commission
FTC guidance describes a current phishing example that asks for email credentials or special codes through fake invitations.
Spoofing and Phishing
Federal Bureau of Investigation
FBI guidance explains that spoofing can disguise phone numbers, sender names, emails, and websites.
Common questions
Can a phishing email look professional?
Yes. A polished logo or layout does not prove an email is real. Check through the official account instead.
What should I do if I clicked a link?
Do not enter more information. If you shared a password, passcode, or payment details, change the password and contact the affected company or bank.
Is an attachment safer than a link?
No. Unexpected attachments can be risky too, especially invoices, forms, security notices, or files from unknown senders.