Fyxer logo
  • Pricing
  • Security
  • Blog
Start with:
Log inSpeak to sales
Start with:
  • Pricing
  • Security
    • Your Team
    • Small & Medium Businesses
    • Security
    • Admin Burden Calculator
    • Customer Stories
    • Help Center
    • Fyxer Learning Hub
    • Admin Burden Index
    • Changelog
  • Blog
    • Log in

    Start with:

    GmailOutlook
    Speak to sales
Back to Blog

How-to

Inbox essentials

How to report a scam email

Scam emails are everywhere. Here's how to spot them, report them and protect yourself from phishing attempts that could compromise your personal information.

Heidi Dudas
Heidi Dudas

October 17, 2025

Person reading phone outfdoors

Scam emails have become a daily reality for most of us. From fake shipping notifications to an “urgent” message from your bank, these phishing attempts are designed to steal your personal information or install malicious software on your device. The good news? You have more power than you think. Recognizing and reporting scam emails doesn't just protect you, it helps safeguard others from being subject to the same schemes.

Why reporting scam emails matters

Hitting "delete" on a suspicious email might feel like enough, but reporting takes it a step further. Here's why it's worth the extra minute:

Protects you and others

When you report a scam email, you help prevent the same message from reaching others. Email providers use these reports to improve their filters and block similar threats in the future.

Helps law enforcement track cybercriminals

Your report contributes to a larger pool of data that authorities use to investigate and prosecute cybercriminal networks. Every report adds to the picture of who's behind these scams and how they operate.

Strengthens cybersecurity defenses

Collective reporting helps security experts identify emerging threats and develop better protections. Your action has a ripple effect that benefits the entire digital community.

Step 1: Recognize a scam email

Before you can report a scam email, you need to know what you're looking for. Cybercriminals have become increasingly sophisticated, but there are still telltale signs that something isn't right.

You might also like

How to attach a Google Doc to an email (Gmail, Outlook, and more)

How to attach a Google Doc to an email (Gmail, Outlook, and more)

There are a few ways to attach or share a Google Doc via email, and the right method depends on what you need the recipient to do with it.

How to search emails in Outlook

How to search Outlook emails with filters and operators

Learn how to use Outlook's search tools properly, from basic keyword searches to advanced filters and operators, so that you can find any email quickly.

How to whitelist email in Gmail (and why important messages keep going to spam)

How to whitelist email in Gmail (and why important messages keep going to spam)

Important emails keep ending up in your spam folder? Here’s exactly how to whitelist a sender in Gmail, step by step, on desktop and mobile.

Ready to get started?

Transform your team's productivity with Fyxer's AI-powered email management.

Book a demoGet started for free

Free 7-day trial • Cancel anytime

Get started

Start free trialPricingLogin

How it works

AI email assistantInbox organizationEmail draft writerMeeting notetaker

For teams

EnterpriseSMBSecurity

Industries

Real estateConsultingSales

Customer stories

eXp RealtyKnight FrankThe Barcode Group

Research

Admin Burden Index

Company

BlogChangelogCareers

Support

Help centerLearning hubSpeak to sales

Comparisons

Fyxer vs SuperhumanFyxer vs CopilotFyxer vs JaceFyxer vs PerplexityFyxer vs Saner AIFyxer vs GeminiFyxer vs Shortwave

Free Tools

AI Email GeneratorAI Email Response GeneratorAI Sales Email GeneratorRewrite Email

Ask AI about Fyxer

ChatGPTClaudeGeminiPerplexity

Follow us

Fyxer.ai

In the 47 seconds it took you to get here, Fyxer could've saved you an hour.

© Fyxer AI Limited. Company number 15189973. All rights reserved.

TermsPrivacyVulnerability

Suspicious sender address

The email address may look legitimate at first glance, but take a closer look. Scammers often use addresses that are almost correct but contain subtle misspellings, extra characters, or unusual domains. For example, an email claiming to be from PayPal might come from "paypa1@support-center.com" instead of an official PayPal domain.

Urgent or threatening language

Phrases like "Immediate action required," "Your account will be suspended," or "Verify your information now" are red flags. Scammers use urgency to pressure you into acting without thinking. Legitimate companies rarely demand immediate action through email.

Unexpected attachments or links

Be cautious of attachments, especially those with file extensions like .exe, .zip, or .scr. Links in phishing emails often lead to fake websites designed to steal your login credentials. Hover over links (without clicking) to see where they actually lead.

Generic greetings

Emails that start with "Dear Customer" or "Dear User" instead of your name are often scams. Legitimate companies typically personalize their communications.

For a comprehensive overview of what to watch for, the Federal Trade Commission's guide on recognizing phishing scams offers detailed examples and additional warning signs.

Step 2: Report to your email provider

Most email services have built-in tools that make reporting phishing attempts straightforward. Using these features helps your provider improve spam filters and protect other users.

Gmail

Open the suspicious email, click on the three-dot menu in the top right corner, and select "Report phishing." Gmail will automatically move the message to spam and use it to improve its filters.

Outlook

Open the email, click on "Junk" in the toolbar, then select "Phishing." Outlook will report the message and move it to your junk folder.

Yahoo Mail

Open the email, click on the three-dot menu, and select "Report a phishing scam." Yahoo will use your report to block similar messages.

These actions take seconds but make a real difference in keeping your inbox safer over time.

Step 3: Report to relevant authorities

Reporting to your email provider is important, but taking it a step further by alerting official authorities helps combat cybercrime on a broader scale.

United States

Forward the phishing email to reportphishing@apwg.org, a service managed by the Anti-Phishing Working Group. This organization works with internet service providers, security vendors, financial institutions, and law enforcement to investigate and shut down phishing operations.

You should also report the incident to the Federal Trade Commission (FTC). The FTC uses these reports to identify patterns and pursue legal action against scammers.

United Kingdom

Forward the phishing email to report@phishing.gov.uk, the Suspicious Email Reporting Service run by the National Cyber Security Centre. If you've lost money or believe your personal information has been compromised, report it to Action Fraud, the UK's national reporting center for fraud and cybercrime.

Other countries

Many countries have dedicated cybercrime reporting centers. Check with your local consumer protection agency or law enforcement to find the appropriate reporting channel.

Step 4: Delete the suspicious email

Once you've reported the scam email, delete it from your inbox and empty your trash folder. This eliminates the risk of accidentally clicking on a malicious link or attachment later. If you're worried you might need the email for reference, take a screenshot before deleting it.

Step 5: Protect yourself going forward

Reporting scam emails is reactive, but you can also take proactive steps to reduce your risk of falling victim to phishing attempts.

Enable two-factor authentication

Two-factor authentication (also called 2FA) requires you to verify your identity in two ways before accessing an account, typically your password plus a code sent to your phone or generated by an app. This means that even if a scammer steals your password through a phishing email, they still can't access your account without the second verification step. Adding an extra layer of security to your accounts makes it much harder for scammers to gain access, even if they obtain your password.

Keep software updated

Regular updates patch security vulnerabilities that cybercriminals exploit. Set your devices and applications to update automatically when possible.

Use strong, unique passwords

Avoid reusing passwords across multiple accounts. A password manager can help you generate and store complex passwords securely.

Stay informed

Phishing tactics evolve constantly. Stay current on common scams by following trusted cybersecurity resources and sharing what you learn with friends and family.

Common mistakes to avoid

When you receive a scam email, avoid these common mistakes:

Never click on links or download attachments

Even if you're curious about where a link leads, clicking can trigger malware downloads or send you to a fake website designed to steal your information.

Never reply to the sender

Responding to a scam email confirms that your address is active, which can lead to even more phishing attempts.

Never provide personal information

Legitimate companies will never ask you to verify sensitive information like passwords, Social Security numbers, or credit card details via email.

Reporting makes a difference

Every scam email you report contributes to a safer digital environment. While it might feel like a drop in the ocean, collective action can have a big impact. Cybersecurity experts and law enforcement rely on reports from people like you to identify trends, shut down malicious operations, and develop better protections.

Take the extra minute to report suspicious emails. It's a small action that protects not just you, but countless others who might otherwise fall victim to the same scam.

Frequently Asked Questions

Is it worth reporting scam emails?

Yes. Reporting helps authorities track cybercriminal activities and prevents similar emails from reaching other people. Your report becomes part of a larger effort to combat online fraud.

What happens when I report a scam email?

Your email provider uses the report to improve spam filters and block similar messages. If you also report to authorities, they use the information to investigate and potentially prosecute the scammers behind the operation.

How do I report email fraud safely?

Never click on links or download attachments from suspicious emails. Use your email provider's reporting tool or forward the email to the appropriate authority without interacting with its contents.

Can reporting scam emails prevent me from being targeted again?

Reporting helps reduce the volume of scam emails you receive over time by improving filters, but it won't eliminate all threats. Staying vigilant and following best practices for online security remains essential.

Should I warn others if I receive a scam email?

Absolutely. If you receive a scam email impersonating a specific company or organization, consider alerting others who might be targeted. Sharing information helps people recognize and avoid similar scams.

Do I need to include email headers when reporting?

Email headers provide technical information that can help authorities trace the source of a scam. If you know how to access and include them, it's helpful, but not always required. Focus first on reporting the email itself.


You may also be interested in:

How to Mass Delete Emails in Gmail

How to Block an Email Address on Yahoo