Practical ways to spot phishing emails before you click

Posted by Daniel Reed on May 28, 2026, 09:39

Laptop screen phishing email warning. Photo by Joshua Hoehne on Unsplash.

Most of us receive dozens of emails every day, which makes it easy to miss a dangerous one hiding in the pile. Phishing emails try to trick you into clicking a link, entering your password or downloading a file that installs malware.

Learning to spot phishing attempts is one of the most useful digital skills you can build. You do not need to be technical. With a few habits and a calmer way of checking messages, you can avoid most of the traps that catch people off guard.

Understand what phishing actually looks like

Phishing is any message that pretends to be from someone you trust in order to steal information or money. Email is the most common channel, but the same tricks appear in text messages and messaging apps.

Many phishing emails copy the style of banks, delivery companies, social networks or online shops. They might use the correct logo and colors, but there are usually small clues that something is off if you know where to look.

Slow down and check the sender carefully

The fastest way to get caught by a phishing email is to rush. Before you click anything, look closely at who sent the message. Do not just read the display name like “PayPal Support,” hover or tap to see the full email address.

Scammers often use addresses that are close but not exact, for example “[email protected]” with a number instead of a letter, or a free email service instead of a company domain. If the address looks strange, treat the email as suspicious until you are sure.

Look for pressure, panic or unusual urgency

Phishing emails often try to make you act before you think. Common phrases include “Your account will be closed in 24 hours” or “Unusual login attempt, confirm now.” The goal is to push you into clicking without checking.

Legitimate companies can send urgent alerts, but they usually do not threaten you or demand immediate action inside the email. If a message makes you feel panicked or rushed, pause and verify it using a separate route.

Check links without opening them

The most dangerous part of a phishing email is usually the link. Instead of clicking, hover your mouse over the link on a computer, or long press on a phone, to see the full web address. On many apps, the address will appear in a small preview window.

Ask yourself where this address really goes. Does it use the genuine site domain, like “example.com,” or a strange one with extra words or random characters? If you are at all unsure, do not open it. Type the official website address directly into your browser instead.

Be cautious with attachments you did not expect

Person checking email inbox laptop. Photo by Kaitlyn Baker on Unsplash.

Attachments are another favorite tool for attackers. Files that end in .zip, .exe, .js, or even unexpected Office documents can contain malicious code. If you are not expecting a file, do not open it, even if the email appears to be from someone you know.

If a colleague, friend or supplier sends a surprising attachment, contact them through another channel to confirm it is real. A short message that says “Did you mean to send this?” is much safer than guessing.

Compare with your real account activity

Phishing emails often mention suspicious purchases, login attempts or package deliveries that you do not remember. Before reacting, think about whether the story makes sense. Did you actually place an order with this shop, or recently reset your password?

If something feels off, do not use the links in the email. Instead, open the real website or app yourself. Check your order history, notifications or security alerts there. If the message is genuine, you should usually see the same information in your account.

Notice generic greetings and awkward language

Many phishing messages use generic phrases like “Dear customer” instead of your name. The language may be slightly wrong: odd grammar, strange spacing, or capital letters in unusual places. Scammers often copy text from other sources or use rushed translations.

Large companies can make mistakes too, so one typo does not prove a message is fake. But if the email feels poorly written, combines several different styles, or uses awkward phrasing, treat that as another warning sign.

Develop a safe routine for suspicious emails

It helps to have a clear routine so you are not forced to decide from scratch each time. When something looks suspicious, follow these steps in order and stop at the first red flag you find.

Check the sender address in full, not only the display name
Hover or long press on links to see the real address before clicking
Think about whether you were expecting this message or attachment
Verify directly in your account or app instead of using email links
Delete the email or mark it as spam if you still feel unsure

If the message appears to come from your bank, employer or another important service, contact them using a trusted phone number or website address. Ask whether the email is legitimate. Front line support teams handle these questions all the time.

Teach others and protect your whole household

Phishing protection becomes more effective when everyone around you has the same habits. Talk about these signs with family members, especially teenagers and older relatives who may feel less confident with technology.

Encourage them to ask for a second opinion whenever they are unsure about a message. A quick conversation at the right moment can prevent real damage, from stolen accounts to drained bank cards.

You cannot stop phishing emails from arriving, but you can make them much less dangerous. With a little practice, scanning for these clues will become automatic and your inbox will feel like a safer place again.