How to Spot a Phishing Email in 2026: 10 Red Flags
Learn the 10 most common signs of a phishing email. From suspicious sender addresses to urgency tactics, protect yourself from the latest email scams.
Phishing emails are becoming increasingly sophisticated, with AI-generated content that can fool even experienced users. Here are 10 red flags to watch for in 2026.
1. Suspicious sender address
Always check the full email address, not just the display name. Phishers often use domains that look similar to legitimate ones: support@amaz0n-security.com instead of support@amazon.com. Look for subtle misspellings, extra characters, or unusual domain extensions.
2. Urgency and fear tactics
"Your account will be suspended in 24 hours!" — Legitimate companies rarely create this level of urgency. If an email pressures you to act immediately, it's likely a scam. Real security alerts give you time to verify through official channels.
3. Generic greetings
"Dear Customer" or "Dear User" instead of your actual name. While some legitimate mass emails use generic greetings, your bank, employer, and subscription services know your name.
4. Suspicious links
Hover over links before clicking. The displayed text might say "www.yourbank.com" but the actual URL leads to a completely different domain. On mobile, long-press links to preview the URL.
5. Unexpected attachments
Be wary of unexpected attachments, especially .zip, .exe, .docm, or .pdf files. Even if the email appears to come from a colleague, verify before opening — their account may have been compromised.
6. Grammar and spelling errors
While AI-generated phishing has improved grammar significantly, many scam emails still contain subtle errors. Watch for awkward phrasing, inconsistent formatting, or mixed languages.
7. Requests for sensitive information
No legitimate organization will ask for your password, PIN, social security number, or full credit card details via email. Banks, government agencies, and tech companies have secure portals for this.
8. Too-good-to-be-true offers
"You've won a €500 gift card!" or "Tax refund of €2,847 awaiting your claim!" — If you didn't enter a contest or aren't expecting a refund, it's almost certainly a scam.
9. Mismatched branding
Check logos, colors, and formatting. Phishing emails often use outdated logos, wrong brand colors, or inconsistent design. Compare with previous legitimate emails from the same company.
10. Missing DMARC authentication
Technical users can check email headers for DMARC, SPF, and DKIM authentication. Failed authentication is a strong indicator of email spoofing. Tools like Luminir check this automatically.
What to do if you receive a suspicious email
Forward the email to verify@luminir.io and get an instant AI-powered analysis. Luminir checks sender authentication, malicious links, known scam patterns, and more — all in under 15 seconds.