The latest scam alerts from Which?
Find out about the latest scams trending this month. Come across a scam? Let us know by using our scam sharer tool.
For weekly updates on the scams you need to be aware of, sign up to our free scam alerts service.
25 April
Travel insurance scam ads
Adverts are circulating on Instagram and Facebook promising 'free travel insurance for those over 55' under a new government initiative.
The government isn't offering any such promotion, and these ads are a con to get you to part with your personal data and financial information.
You can report scam ads on social media by selecting the three dots in the top right corner and pressing report.
Phishing websites can be reported to the National Cyber Security Centre.
24 April
Housing repair scam call
Reports of a scam call from an unknown number or 03316302208 are circulating.
The scam caller claims to be from a 'property repair organisation' and asks if you have damp or mould in your property.
These calls are used by scammers to obtain as much personal or financial information from you as possible.
If you receive a scam call you can report it to your provider by texting the word ‘call’ followed by the phone number to 7726.
You’ll then receive a message asking you for the scam number.
22 April
Microsoft impersonation email
A fake Microsoft email threatens 'account suspension' after receiving '50 complaints about your email address.'
The email then prompts you to 'review your account information' by following a phishing link.
This will lead to a dodgy website which attempts to obtain your personal data.
To report scam emails, forward them to report@phishing.gov.uk and phishing websites can be reported to the National Cyber Security Centre.
18 April
Tesco scam email
A dodgy email impersonating Tesco claims to offer a £500 gift card.
The email leads to a malicious survey website which asks you to answer a few questions before attempting to obtain your personal and financial information.
Scam emails can be reported by forwarding them to report@phishing.gov.uk and phishing websites can be reported to the National Cyber Security Centre.
17 April
Taylor Swift fans targeted by concert ticket scams
Lloyds Bank estimates that more than £1 million could have been lost in the UK to fraudsters selling fake Taylor Swift tickets.
The warning comes after the bank received over 600 scam reports from its customers.
To avoid ticket scams:
- Stick to official retailers and competitions.
- Be wary of buying tickets from sellers on social media as many ticket scams begin on these platforms.
- Be suspicious of too good to be true prices.
- Don't pay via bank transfer as you'll have a hard time being reimbursed if you do.
Read our story on avoiding concert ticket scams.
15 April
PCG program messages
Facebook users are being targeted by messages asking them about the 'PCG program.'
These messages offer fake grants and are typically sent by your Facebook contacts who've had their accounts hacked.
They will most likely go on to send you a phishing link which invites you to sign up to a this scam offer.
If you receive a message like this from one of your contacts, contact them using a different platform and let them know that they may have been hacked.
10 April
Beware of Facebook funeral scams
The Chartered Trading Standards Institute (CTSI) is warning of scammers using Facebook to target the friends and family members of the recently deceased.
Scammers are looking through funeral notices and then creating accounts to connect with the friends and family members.
Typically, they'll send phishing links to 'live streams' of the funeral which will ask for personal and financial information.
They're also asking for donations in an attempt to con mourners out of their money.
To report a profile on Facebook, select the three dots in the top right-hand corner of the person’s profile page and click ‘Find support or report’. You can then select the reason for reporting the profile.
To block a profile, click on the same three dots and select ‘Block’.
9 April
Celebrity presenter Alison Hammond used in scam ads
A series of scam ads on Facebook and Instagram appear with Alice Hammond's image.
Some of the ads also impersonate the BBC and ITV news in fake news stories.
The ads lead to dodgy retail websites which attempt to steal your personal data.
You can report dodgy ads on Facebook and Instagram by selecting the three dots in the top right corner of the post and pressing ‘report.’
Scam websites can be reported to the National Cyber Security Centre.
3 April
Student Finance impersonation text
A scam text impersonating Student Finance England includes a link to a phishing website imitating the official government website.
The text tells you to follow the link to make sure 'your maintanance (sic) arrives on time' and the website asks for your personal data.
Scam texts can be reported by forwarding them to 7726 and scam websites to the National Cyber Security Centre.
2 April
WhatsApp Gold scam returns
A scam which dates all the way back to 2016 has returned. In it, WhatsApp users are targeted by fraudsters offering 'WhatsApp Gold.'
It starts when a fraudster messages you on WhatsApp promoting 'WhatsApp Gold' which they claim gives you exclusive features.
The message also includes a link, which when clicked on leads to a malicious site which asks for your phone number.
This could sign you up to an expensive subscription service, steal your data or install malware onto your device.
To report WhatsApp senders, click on the sender's number, scroll down and select 'report.'
DVLA impersonation email
A scam email claiming to be from the DVLA tells you that 'you are not up to date with your current vehicle tax' and threatens you with a fine or other penalties if you don't pay.
A malicious link is included to complete a form to 'be up to standard with the DVLA legal requirements.'
This will lead to a dodgy site where your details will be stolen by fraudsters.
Scam emails can be reported by forwarding them to report@phishing.gov.uk and phishing websites can be reported to the National Cyber Security Centre.
Lidl scam ad
A dodgy advert on Instagram and Facebook tells you that 'Lidl is giving away Dell laptops to everyone in the UK over the age of 35.'
It leads to a website where you're asked to complete survey questions before selecting a box with the 'prize' in and asked for your details to 'pay for delivery.'
Scam ads can be reported by selecting the three dots in the top corner and pressing 'reporting.' Malicious websites can be reported to the National Cyber Security Centre.
25 March
Ozempic phishing scam
Scammers are setting up fake phishing websites peddling the new weight loss drug Ozempic, cybersecurity firm Kaspersky has warned.
The websites ask for your personal details including your name, address and banking information.
Malicious websites can be reported to the National Cyber Security Centre.
20 March
Evri scam email
Fraudsters are again impersonating Evri in phishing emails which lead to malicious websites.
This email tells you that you must reschedule a parcel delivery after a failed attempt.
Scam emails can be reported by forwarding them to report@phishing.gov.uk and phishing websites can be reported to the National Cyber Security Centre.
19 March
PayPal invoice scam
Scammers impersonating PayPal are sending recipients a 'receipt' for a high-value order in an attempt to get them to call a dodgy phone number.
The number is provided if you 'didn't authorise this charge' and leads to a phone scam where a fraudster will try to obtain your personal details.
Don't click on the links in these emails and don't respond to them.
To report scam emails, forward them to report@phishing.gov.uk.
15 March
McAfee impersonation email
This 'warning' email purporting to be from McAfee claims 'your internet protection is about to end.'
It includes a phishing link titled 'restore now'. This will lead to a malicious website asking for your personal and financial information.
Scam emails can be reported by forwarding them to report@phishing.gov.uk and phishing websites can be reported to the National Cyber Security Centre.
13 March
Norton auto-renewal
Emails that send you an antivirus auto-renewal receipt are doing the rounds again.
A Norton impersonation email claims to be invoicing you for nearly $500 and tells you to call a number if you did not authorise this.
Even though the email claims that it won't be charging customers for an auto-renewal this year, as a 'gesture of goodwill,' fraudsters are still banking on you calling the number to query the invoice.
The number will put you through to a scammer who will attempt to solicit personal data from you.
To report scam emails, forward them to report@phishing.gov.uk.
11 March
Apple ID scam
Emails which tell you that your 'Apple ID has been compromised' are circulating.
They say that 'your Apple ID has been blocked for security purposes' and will be deleted. You are given you 24 hours to provide the 'necessary information.'
The email also includes a phishing link which leads to a site that tries to steal your personal data.
To report scam emails, forward them to report@phishing.gov.uk and phishing websites can be reported to the National Cyber Security Centre.
8 March
ITV impersonation email
This scam email impersonating ITV offers a subscription to the ITV X streaming service for just £2 a year.
The link in the email leads to a phishing website which asks for your address, phone number, email and bank details.
You can forward scam emails to report@phishing.gov.uk and phishing websites can be reported to the National Cyber Security Centre.
6 March
Post Office phishing text
This scam text impersonating the Post Office claims a parcel delivery was unsuccessful.
It includes a link to 'rebook delivery', which leads to a phishing website.
To report scam texts, forward them to 7726. Phishing websites can be reported to the National Cyber Security Centre.
5 March
DVLA scam email
A scam email impersonating the Driver and Vehicle Licensing Agency (DVLA) tells you that 'your vehicle is no longer up to date with its current road tax.'
It also includes a warning that this is the last reminder it will issue you and a dodgy link to fill out a form to be 'up to standard with the DVLA legal requirements.'
You can forward scam emails to report@phishing.gov.uk and phishing websites can be reported to the National Cyber Security Centre.
1 March
'Mystery Box' scam emails
Action Fraud says it has received more than 7,900 reports of scam emails offering free 'mystery boxes'.
The emails impersonate well-known retailers and claim to offer a box of free items to the recipient.
The links in these emails lead to malicious phishing websites where scammers attempt to steal your personal and financial information.
You can forward scam emails to report@phishing.gov.uk. Phishing websites can be reported to the National Cyber Security Centre.
29 February
HMRC scam email
This dodgy email claims to provide a link to your 'Government Gateway Online Account.'
It claims that your HMRC online business profile is 'not up to date' and includes a link to a phishing website.
You can report HMRC impersonation emails by forwarding them to phishing@hmrc.gov.uk with a subject line describing the email, such as ‘scam HMRC email.'
28 February
Amazon scam ad
A scam Facebook ad impersonating Amazon claims to offer 'electronic kits for every Briton.'
In return for this, it asks you to 'answer 3 questions' and includes a link to a phishing website.
To report scam ads on Facebook, select the three dots before pressing 'report'.
27 February
Harry styles appears in BBC deep fake video
A BBC presenter has warned on social media that a fake news video of them appearing with Harry Styles is circulating.
The short clip, which mimics the BBC, features a presenter who claims that Harry Styles has 'launched a new app in which Britons could become very wealthy.'
This will most likely lead to an investment scam where fraudsters will try to lure you into their 'too good to be true' money-making schemes.
26 February
Sophie Ellis-Bextor and Le Creuset scam ad
A number of ads featuring singer Sophie Ellis-Bextor and her hit song 'Murder on the Dancefloor' are being used to impersonate cookware company Le Creuset.
The ads claim that the singer has teamed up with the company 'to hand out 5,000 complete cookware sets' and includes links to malicious websites.
These 'bait and switch' scam ads lead to random dodgy retailers selling skincare.
To report scam ads on Instagram, press the three dots on the top right hand corner and press 'report'.
On Facebook, also select the three dots before pressing 'report'.
Scam websites can be reported to the National Cyber Security Centre.
23 February
Dodgy train ticket ads on Facebook
These scam adverts on Facebook claim to offer a year of rail travel for just £3.
The ads, impersonating Great Western Railway, lead to a malicious site that will phish for your personal data.
To report ads on Facebook, select the three dots in the top right and then press 'report ad.'
Scam websites can be reported to the National Cyber Security Centre.
22 February
Copycat BBC website
This dodgy article uses BBC branding. It claims the TV presenter Richard Hammond is being sued by the Bank of England.
The fake eye-catching headline is used to draw readers in, before targeting them with adverts for dodgy cryptocurrency firms.
If you click on a link on the page you'll be asked for your personal information. You'll then be contacted by fraudsters attempting to lure you into an investment scam.
Genuine providers of financial services will be listed in the Financial Conduct Authority (FCA) register.
Scam websites can be reported to the National Cyber Security Centre.
21 February
Smeg kettle scam ad
This fraudulent advert offers a Smeg kettle worth around £130 for just £3 from Lidl. It claims that you can receive the product by answering a few questions.
The advert will most likely lead to a dodgy phishing site where fraudsters will try to obtain your personal information.
To report a scam advert on Facebook, select the three dots on the top right corner and press 'report ad.'
20 February
Europol scam email
A dodgy email impersonating Europol, the EU's law enforcement agency, claims the recipient is 'subject to a judicial investigation.'
It includes a downloadable 'court letter'. If you click to download the attachment, malware may be downloaded onto your device.
You can forward scam emails to report@phishing.gov.uk to report them.
19 February
DSB job scams
The Disclosure and Barring Service (DBS), which helps employers make safer recruitment decisions by processing and issuing DBS checks, is warning of job scams.
These scams are an example of advance fee fraud, where fraudsters ask for an upfront fee for a DBS check for a non-existent job.
Some signs of a DBS job scam include:
- An employer asking for a DBS check for jobs outside of roles in education, health and social care, and security.
- Someone asking for more than £18 for a basic check and £38 for an enhanced check. However, some firms will charge an admin fee.
- Anyone who refers to the service as the Criminal Records Bureau (or the CRB). It was changed to the Disclosure and Barring Service in 2012.
- Websites which use the DBS logo as organisations that are registered with DBS are not permitted to use the logo on their websites.
If a potential employer has asked you to complete a DBS check, ask who is processing the check. If it's the employer, contact DBS or Disclosure Scotland to confirm their legitimacy.
If it's a company carrying out the check on behalf of other employers, check to see if the company is registered to use the service on the government's website.
Be wary of life insurance scams
Action Fraud is warning a rise in reports of scam emails which claim to be from companies selling life insurance.
The emails offer a 'free quote' which then leads to phishing websites designed to steal your data.
To report scam emails, forward them to report@phishing.gov.uk.
You can report scam websites to the National Cyber Security Centre.
16 February
Royal Mail delivery texts
This text message impersonating Royal Mail claims that 'a package cannot be delivered due to incomplete address information.'
It includes a link to confirm your address. If you click the link, you'll likely be taken to a phishing website.
Scam texts can be reported by forwarding them to 7726.
14 February
Google impersonation email
This scam email says a 'suspected virus' has been detected on your device and you are at a 'high risk'.
The email includes a dodgy link to complete a 'security check'. This link may be used to steal your personal information or download malware on to your device.
To report scam emails, forward them to report@phishing.gov.uk.
12 February
Norton impersonation email
A scam email, also known as a phishing email, impersonates security software company Norton and tells you that you have set up a scheduled payment for £499.99 for a Norton product.
It gives you a number to call if you didn't authorise this payment.
Calling this number will likely put you through to a scammer who will attempt to obtain further information to scam you.
Don't call the number. To report scam emails, forward them to report@phishing.gov.uk.
9 February
TV Licensing scam email
This scam email spoofs an official TV Licensing email address. The subject line reads 'you're about to lose your licence'.
The message invites you to renew your licence online, but if you click on the link you'll be sent to a phishing website.
If you receive an email that claims to be from TV Licensing, don't click on any links.
Instead, navigate to the genuine TV Licensing website (www.tvlicensing.co.uk) and log in to your account to see if you have any messages.
Scam emails can be forwarded to report@phishing.gov.uk and dodgy websites to the National Cyber Security Centre.
Fake celebrity endorsement ads on YouTube
This dodgy advert uses an image of Richard Hammond appearing on This Morning to lure people into a phoney investment scheme.
The ad leads to a copycat BBC website which contains an 'article' promoting a scam investment company.
To report scam ads on YouTube, select the three dots under the ad and 'report ad.' Malicious websites can be reported to the National Cyber Security Centre.
7 February
Energy grant scams
Trading Standards Scotland has warned of cold callers and doorstep scammers posing as representatives of energy companies.
The cold callers tell you that you're eligible to receive funding or grants for boilers, insulation or heating systems.
You can protect yourself from doorstep scams by following our tips .
If you receive a spam call on your iPhone, you can report it to your provider by texting the word ‘call’ followed by the phone number to 7726.
On Android, text the word ‘call’ to 7726. You’ll then receive a message asking you for the scam number.
Evri impersonation scam text
A phishing scam text impersonates Evri and tells you that due to 'damage to the outer package,' your 'address information is lost' and therefore your parcel 'can not be delivered.'
This is the latest delivery attempt scam created by fraudsters to trick you into entering your details into a dodgy site.
Scam texts can be reported by forwarding them to 7726 and malicious websites to the National Cyber Security Centre.
5 February
DVLA scam email
A dodgy email impersonating the Driver and Vehicle Licensing Agency (DVLA) tells you that you need to make a payment update due to 'an issue with your last transaction' and leads to a phishing website.
Scam emails can be forwarded to report@phishing.gov.uk and dodgy websites to the National Cyber Security Centre.
Etsy scam message
A message from scammers is targeting Etsy sellers saying: 'Due to an update to our payment system, orders on your account are currently on hold.'
It goes on to say that your store needs to be verified in order to be fully operational and it includes a link to complete this.
The dodgy link leads to a copycat website asking for your financial details.
Genuine messages from Etsy will always appear in the 'From Etsy' folder. If you receive a suspicious message, you can mark it as spam on Etsy by selecting the message and choosing 'spam'.
You can report scam websites to the National Cyber Security Centre.
1 February
Disney+ impersonation email
This scam email offers 12 months of free streaming on Disney+.
The link leads to a phishing website, which informs you that your membership has expired and encourages you to extend it for free.
You'll then be asked to provide your name, phone number, email address, and card details.
Scam emails can be forwarded to report@phishing.gov.uk and dodgy websites to the National Cyber Security Centre.
29 January
Cadbury WhatsApp scam
Fraudsters impersonating Cadbury are sending WhatsApp messages which claim to give away giant Easter eggs.
We reported on this scam in 2022 and it led to a dodgy website where you were asked survey questions before being asked for your personal information to have the 'prize' delivered.
These scams typically also ask you to share a WhatsApp link with others to spread the scam further, so you might receive this scam message from a contact whose been lured in by the scam.
If you do receive this message from a friend, let them know it's a scam and delete the message.
If it's from an unknown number, you can report the sender on WhatsApp by opening up the chat, tapping on the sender's contact details and selecting 'Block and Report'.
Dodgy websites can be reported to the National Cyber Security Centre.
26 January
Scam calls impersonating mobile networks
Scammers are impersonating the mobile networks EE, Vodafone and O2 in phishing calls.
These calls inform you that you're eligible for a discount on your phone bill, before asking for your personal and financial information.
You can report scam calls received on your mobile phone to your provider.
If you have an iPhone, text the word ‘call’ followed by the phone number to 7726.
If you have an Android phone, text the word ‘call’ to 7726. You’ll then receive a message asking you for the dodgy number.
24 January
Argos impersonation email
A scam email claiming to be from Argos offers an 'exclusive reward' in exchange for completing a '30 second marketing survey.'
This survey leads to a malicious website which asks for your financial information.
Scam emails can be forwarded to report@phishing.gov.uk and dodgy websites to the National Cyber Security Centre.
22 January
Action Fraud warns of TV Licensing scam emails
Action Fraud has received 6,307 reports in a two-week period relating to fraudulent emails impersonating TV Licensing.
These reports led to the removal of 268,000 scam sites.
The dodgy emails typically tell you that your TV Licence is about to expire or that there was an issue with your latest payment. They include links to copycat websites which attempt to steal your personal data.
Which? has previously warned about fraudsters sending fake TV Licence emails. TV Licensing sends its emails from donotreply@tvlicensing.co.uk or donotreply@spp.tvlicensing.co.uk.
Scam emails should be forwarded to report@phishing.gov.uk and websites to the National Cyber Security Centre.
Bank impersonation texts
Scam texts sent from random mobile numbers attempt to hurry you into following malicious links.
The messages, which tell you a transaction has been attempted on your account or a new card has been set up, include dodgy links to follow if 'this wasn't you'.
You can forward suspicious text messages to 7726 to report them and websites to the National Cyber Security Centre.
17 January
Royal Mail scam text
A text claiming to be from Royal Mail tells you that your package has 'arrived at the warehouse and cannot be delivered due to incomplete address information'.
The message prompts you to click a malicious link 'within 24 hours'. It also asks you to reply to the text message.
Don't click on the suspicious link or reply to this message.
To report scam texts, forward the message to 7726 and scam websites can be reported to the National Cyber Security Centre.
15 January
Energy Bill scam email
A dodgy email claiming to be from 'Gov.uk' tells you that you've been approved for 'the Energy Bill Support Scheme'.
Upon inspection of the email, it is sent from a random email address and leads to a dodgy website phishing for details.
You can report scam emails by forwarding them to report@phishing.gov.uk.
Page deletion Facebook scam
Fraudsters are sending messages on Facebook telling you that 'Your Facebook page will be permanently deleted'.
Scammers previously targeted small business owners on Facebook with messages threatening page deletion.
The message goes on to say that this is due to 'a post that infringes our trademark rights' and contains a link to complain about the deletion.
The link leads to a phishing website which you can report to the National Cyber Security Centre.
To report a scam group, page or profile on Facebook, select the three dots on the right-hand side of the page and click ‘report’.
Email impersonating Asda
Scammers are sending an email promoting the opportunity to win a '36-piece Tupperware set' from Asda which leads to a scam survey website.
The site asks you to complete 10 survey questions about shopping at Asda before you're asked to enter your personal and financial information to pay for 'shipping costs'.
You can report scam emails by forwarding them to report@phishing.gov.uk and dodgy websites to the National Cyber Security Centre.
10 January
John Lewis scam site
A scam website is impersonating retailer John Lewis using the URL: furniturehome.shop.
The website promotes non-existent John Lewis items at low prices and aims to phish for your personal and financial information.
You can report scam websites to the National Cyber Security Centre.
9 January
Scammers imitate the National Crime Agency (NCA)
Action Fraud and the Suspicious Email Reporting System (SERS) have received over 180 reports of emails impersonating the NCA since the start of December 2023.
The email tells you that the NCA has evidence of you viewing 'child pornography' or 'illegal pornographic content' and that you must contact the NCA within a given deadline or a warrant for your arrest will be issued.
It also says that your details will be added to the sex offenders register.
While money isn't asked for in the email, scammers rely on you replying to the email in a panic to groom you into their scam and eventually ask you for cash.
If you receive a message from the NCA that you're unsure of, you can call them on 0370 496 7622 and you can report the email to the SERS by forwarding it to report@phishing.gov.uk.
'Storage full' scam email
An email impersonating Microsoft advises you to 'purchase additional cloud storage' to 'protect your images and data'.
The email also claims to offer a 'generous discount' on this additional storage as part of its loyalty program and includes a link to a phishing site.
You can report scam emails by forwarding them to report@phishing.gov.uk and dodgy websites to the National Cyber Security Centre.
Amazon impersonation email
Scammers are sending emails from bogus addresses impersonating Amazon which tell you there's been a problem with your account.
It says: 'There is a problem with your Amazon account. We have temporarily suspended your Amazon account and cancelled all pending orders' and includes a dodgy link to verify your identity.
Forward scam emails to report@phishing.gov.uk to report them and malicious sites to the National Cyber Security Centre.
27 December
TV Licence scam email
An email scam attempts to worry you into following a malicious link by telling you that your TV Licence is 'due for renewal'.
The email is sent from a dodgy address which contains random letters - a clear giveaway that it's a scam message.
TV Licensing sends its emails from donotreply@tvlicensing.co.uk or donotreply@spp.tvlicensing.co.uk.
You can report scam emails by forwarding them to report@phishing.gov.uk.
Le Creuset giveaway scam
Scammers are impersonating cookware company Le Creuset across social media and via dodgy emails.
An email which also imitates Argos tells you that you can receive a brand new Le Creuset cooking pot by answering a few survey questions.
After answering the questions on a scam website, you're asked for your financial and personal information to pay a small fee to have your 'prize' delivered.
You can report scam emails by forwarding them to report@phishing.gov.uk and dodgy websites to the National Cyber Security Centre.
Amazon vishing calls
Fraudsters claiming to be from Amazon are calling people saying that there has been unauthorised purchases on their Amazon accounts.
The person being called is then sent a text from Amazon with a verification code which the scammer asks to be read out.
If you do read out this code, the scammer will gain access to your Amazon account.
Scammers carried out a similar scam recently where they impersonated O2.
You can report scam calls received on your mobile phone to your provider by texting the word ‘call’ followed by the phone number to 7726 on an iPhone. If you have an Android, text the word ‘call’ to 7726. You’ll then receive a message asking you for the scam number.
20 December
'Wonka' phishing site
The cybersecurity firm Kaspersky has uncovered scam websites which claim to stream the Wonka film, which is currently only available to watch in cinemas.
These sites ask you to register to view the film. This includes filling out your bank details, name, address and phone number.
Malicious websites can be reported to the National Cyber Security Centre.
18 December
The NCSC warns of malware delivery scam
The National Cyber Security Centre (NCSC) has warned about new 'missed delivery' text messages that install malware onto your device through malicious apps.
The texts link to apps to 'rearrange deliveries'. If you think you've downloaded a malicious app, don't log into any accounts and perform a factory reset on your device.
To report scam texts, forward the message to 7726.
15 December
Dodgy M&S WhatsApp messages
Fraudsters are sending WhatsApp messages advertising 400 free dine-in meals at M&S. These messages lead to a dodgy website.
We've previously seen scammers offering fake gift cards for ASOS and Next in WhatsApp messages containing links to malicious survey sites.
To report scam WhatsApp messages, press and hold the message and select 'report'.
You can report senders on WhatsApp by clicking on the phone number, scrolling to the bottom of the page and selecting 'report'.
Malicious websites can be reported to the National Cyber Security Centre.
14 December
Copycat government websites
The cybersecurity firm Kaspersky has warned of a number of phishing sites impersonating the government.
These sites contain pages inviting people to complete tax returns and apply for export licences and cost of living payments.
The malicious sites ask for data including your name, email address, mobile number, home address, date of birth, and financial information including credit card numbers, expiry dates and CVV numbers.
The official government websites is www.gov.uk.
13 December
Charlotte Tilbury ad scams
Fraudsters impersonating the beauty brand Charlotte Tilbury have set up a number of scam ads across social media.
The ads posted on Facebook and Instagram claim to sell boxes of makeup products for around £20.
These boxes usually sell for £91 to £189 on the brand's official website: www.charlottetilbury.com.
These ads lead to malicious phishing websites.
You can report scam ads on Facebook and Instagram by selecting the three dots in the top right corner and pressing 'report.' Scam websites can be reported to the National Cyber Security Centre.
UK vulnerable to ransomware attacks
A report published by the Parliamentary joint committee on national security strategy has warned that the UK is vulnerable to a 'catastrophic ransomware attack' which could cause 'severe disruption'.
Ransomware is a cyber attack that hijacks your computer and demands a payment from you to regain access.
The British Library is currently experiencing major technical difficulties due to a cyber-attack affecting its website, online systems and services.
- Read more: what is ransomware and how can you stop it?
11 December
Netflix impersonation email
An email telling you that your Netflix 'membership has expired' uses the streaming platform's branding to get you to follow a phishing link.
The email tells you that although your membership has expired, you can extend it for 90 days for free due to being part of Netflix's 'loyalty program'.
Clicking the link leads you to a dodgy site where you'll be asked for your personal data.
Asda giveaway scam email
An email offering a brand new Philips Air fryer leads to a malicious website which aims to steal your money and personal data.
The emails says that to claim the product you need to 'simply add your shipping information'. However, your personal and financial information will be asked for.
You can report scam websites to the National Cyber Security Centre and dodgy emails to report@phishing.gov.uk.
7 December
Delivery scam email
A dodgy email telling you that your 'suspended' package is waiting for delivery leads to a malicious website.
The site asks for your personal and financial data to pay a fee of £1 for the delivery.
You can report scam websites to the National Cyber Security Centre and dodgy emails to report@phishing.gov.uk.
5 December
Evri scam text
Scammers are sending text messages claiming to be from Evri.
The messages tell you that your parcel was unable to be delivered and includes a malicious link to 'reschedule a delivery'.
To report scam texts, forward the message to 7726 and report malicious websites to the National Cyber Security Centre.
4 December
Harrods scam giveaway
An email inviting you to share feedback in order to receive a Harrods advent calendar leads to a malicious website.
The site asks you a few questions about Harrods before asking for your personal and financial information to pay the shipping costs.
You can report scam websites to the National Cyber Security Centre and dodgy emails to report@phishing.gov.uk.
Charles Tyrwhitt impersonation website
A website using Charles Tyrwhitt branding advertises fake discounts to lure you into buying non-existent products.
The dodgy website is [tyrshirt.com] and the official Charles Tyrwhitt website is www.charlestyrwhitt.com.
You can report malicious websites to the National Cyber Security Centre.
Booking.com hotel impersonation scam
Scammers are impersonating hotels on Booking.com via emails and in-app messages.
These messages include links to malicious websites which ask for your personal and financial data.
Earlier this year, a holidaymaker reported a similar issue to us when she received an email pretending to be from a hotel she had booked via Booking.com.
If you receive a suspicious message involving Booking.com, go to booking.com/help on the website or access the Help Centre via the main menu in the app to contact customer service.
You can report scam websites to the National Cyber Security Centre and dodgy emails to report@phishing.gov.uk.