Email Impersonation Scam: How to Spot Fake Emails and Protect Your Business

What To Look For In Suspicious Emails

The reality is, most scam emails don’t look like scams anymore. They’re well written, friendly, and often personalised.

Here are a few things to always check:

1. The Email Address (Not Just the Name)

This is the big one.

Scammers will often use a display name that looks familiar, but the actual email address tells a different story.

For example:
A legitimate email might come from:
hello@yourdesigner.co.uk

A scam might come from:
yourdesigner@gmail.com

Always click or tap to reveal the full email address before replying.

2. The Tone Feels Right… But Something’s Slightly Off

They may mimic tone well, but look closely:

• Are there small spelling mistakes?
• Does it feel slightly rushed or urgent?
• Are they pushing you to act quickly?

Scammers rely on you not slowing down to question it.

3. Unexpected Requests

If you receive an email asking for:

• Login details
• Passwords
• Payment changes
• Urgent action you weren’t expecting

Pause.

Even if it looks like it’s from someone you trust, double check via another method.

4. Generic or Fear-Based Messaging

Phrases like:

• “Your website is not compliant”
• “Immediate action required”
• “Your account will be suspended”

These are designed to create panic so you act without thinking.

5. The Email Domain Doesn’t Match the Business

If a business is contacting you, their email should match their website domain.

If it doesn’t… that’s a red flag.

Why This Matters More Than Ever

The scary part is not just that these emails exist, it’s how convincing they’ve become.

People aren’t falling for obvious scams anymore. They’re falling for well-crafted impersonation.

And honestly, it’s not about being “careful enough”… it’s about knowing what to look for.

If You’re a Business… This Is Your Wake-Up Call

Let’s flip this for a second.

If you’re running a business and still using a Gmail, Hotmail or Outlook email address, this is something you really need to think about.

Not just for branding… but for trust.

1. It Instantly Reduces Credibility

If your email doesn’t match your domain, it raises questions.

Clients are becoming more aware of scams, and rightly so. If your email looks like a free account, it can make people hesitant to engage.

Clients are becoming more aware of scams, and rightly so. If your email looks like a free account, it can make people hesitant to engage.

2. It Makes Impersonation Easier

If you’re already using a Gmail address, it’s incredibly easy for someone to create a similar one and pretend to be you.

A domain email (like hello@yourbusiness.co.uk) is much harder to replicate convincingly.

3. It Impacts Your Brand Perception

Your email is part of your brand.

A domain-based email shows professionalism, consistency, and that you take your business seriously.

4. It Builds Trust With Your Clients

When your website, branding, and email all align, it reassures your clients that they’re dealing with the real you.

And in a world where scams are increasing, that trust is everything.

One final thought…

I will never contact my clients from a Gmail or any other free email service.

I will never ask for login details.

And if anything ever doesn’t feel quite right, I would always rather you message me directly to double check.

Because at the end of the day, your website and your security matter.

And unfortunately, this is the world we’re working in now… but with a little awareness, you can stay one step ahead.

If you ever want help setting up a domain email or tightening your website security, just drop me a message or complete the contact form

Yvette