Warning: The 'Cloud Data Deletion' Scam Hitting UK Inboxes

Have you recently received an urgent email claiming your "Cloud+" membership has ended and your photos are at "immediate risk of deletion"? Before you rush to update your payment details, take a deep breath.

It is a total scam.

Cybercriminals are currently sending out highly polished emails designed to look like official correspondence from Apple or other cloud providers. Their goal? To steal your banking information.

How to Spot This Scam

Even though the email looks professional at first glance, there are several "red flags" that give it away:

• The 'From' Address is Wrong: In the screenshots above, the sender's email is a random address (.emudas@bestquotedirect.com). Official emails from Apple or Google will always come from their verified domains (e.g., @apple.com or @google.com).

• Artificial Urgency: Scammers want you to panic. They use phrases like "immediate risk" and give you a deadline of "tonight at 11:59 PM." Real companies give you a grace period of weeks, not hours, if a payment fails.

• Vague Greeting: Notice the email says "Dear user" instead of your actual name. Most legitimate services you pay for will address you by the name on your account.

• Dodgy Footer Information: If you look at the bottom of the email, it lists a random company address ("Design Studio Fabrics" in the US). This has nothing to do with cloud storage!

What Should You Do?

1. Do NOT click the link: The "Update Payment" button will lead to a fake website designed to harvest your card details.

2. Check the official app: If you are worried, go directly to your phone's Settings or the official website of your provider. Check your subscription status there.

3. Report it: In the UK, you can forward suspicious emails to the National Cyber Security Centre (NCSC) at report@phishing.gov.uk.

4. Delete and Block: Once you’ve reported it, delete the email and block the sender.

"I've already clicked and entered my details—now what?"

If you have already entered your details into the link, you must act fast:

• Contact your bank immediately. Tell them you have been the victim of a phishing scam. They can freeze your card and protect your account.

• Change your passwords. If the scam site asked for your login details, change your password for that service (and any other accounts that use the same password) right away.

Stay safe online—if an email feels like it's trying to scare you into acting, it's usually because it's a scam.

Amazon product recall scam

A sneaky text message scam claims to be from Amazon and provides a refund link for a product that has been recalled.

We examined a version of this message and found that the link directs you to a live website that's a convincing copy of Amazon's official page. Discover what this scam looks like and how you can avoid it.

Source: Which? (04 Feb 2026) 

Beware new voice cloning phone scams

National Trading Standards has identified a worrying new scam. It starts with a cold call, where a fraudster asks you to participate in a non-existent 'lifestyle survey', created to gather your personal details.

While you answer the questions, this information is used to create an AI-generated replica of your voice (voice cloning), which can be used to set up direct debits without you knowing. Find out more about this new scam and how you can protect yourself.

Source: Which? (05 Feb 2026) 

4 energy scams to know about

Whether it's impersonating energy suppliers or flogging fake devices that claim to save you money on your energy bills, scammers bank on rushing you into handing over information by sounding official.

Energy scams are prevalent throughout the year, but in the winter months they can be just convincing enough to catch people out. Take a look at some of the most common examples we've seen recently.

Source: Which? (05 Feb 2026) 

Scam Alert: New NHS Prescription Phishing Scam Sweeping Inboxes

 

It’s the start of the week, and scammers are already hard at work trying to exploit our trust in the NHS. We’ve seen a surge in a particular phishing email today that claims to offer a "simple" way to order NHS prescriptions online.

While the NHS does offer legitimate digital services, this specific email is a malicious scam designed to steal your personal information or financial details. Here is what you need to look out for.

---

The Anatomy of the Scam

The email, which often carries the subject line "TR: Save Time on NHS Medications IT," looks professional at a quick glance, but several red flags reveal its true nature:

• Suspicious Sender Address: The email claims to be from "UK Pharmacy Subscription Notice IT," but the actual email address is a random string of characters from a Hotmail account (avrom-158jerrold_145.carter@hotmail.com). Official NHS communications will always come from an @nhs.net or @nhs.uk domain.

• Vague Branding: While it mentions "NHS Prescriptions," the layout is generic. It lacks the official NHS logo, a registered pharmacy name, or a physical address—all of which are legal requirements for UK pharmacies.

• Urgency and Convenience: Phishing scams often use "Save Time" or "Register Now" buttons to rush you into clicking before you’ve had a chance to think.

• The "Unsubscribe" Trap: In many of these emails, even the "Unsubscribe" link is a trap used to verify that your email address is active, leading to even more spam.

---

Why is this dangerous?

If you click the "Register Now" button, you will likely be taken to a spoofed website that looks like an NHS login page. Scammers use these sites to harvest:

1. Your NHS login credentials.

2. Personal details (Name, DOB, Address).

3. Payment information for "delivery fees" or "pre-payment certificates."

---

How to Stay Safe

• Don’t Click: If you receive this email, do not click any links and do not download any attachments.

• Check the Sender: Always tap or click on the sender's name to see the full email address. If it’s a personal account (like Hotmail, Gmail, or Outlook), it is a scam.

• Use Official Channels: To order prescriptions online safely, always use the official NHS App or the website of a well-known, high-street pharmacy you trust.

• Report It: You can forward suspicious emails to the National Cyber Security Centre at report@phishing.gov.uk.

Stay vigilant and share this with friends or family members who might be less tech-savvy. Scammers rely on us being in a hurry—taking thirty seconds to check the sender's address can save a lot of heartache.

 

How to screen calls and avoid scams

You don’t need extra apps or technical know-how to fight scam calls, as your smartphone already has features designed to stop them.

If you own an Android, you can use Google Assistant to screen calls automatically. Similarly, iPhone users can try Apple's Call Screening feature. Our tech expert Tom Morgan talks you through how to do this, step by step – and he has tips for landlines, too.

If you'd benefit from 1-to-1 help with your smartphone or other tech products, you can join Which? Tech Support and chat to our friendly experts on the phone or by email, as often as you need. Find out more about what a membership offers and get a £20 Richer Sounds gift card if you join by 2 February. 

Source: Which? (22 Jan 2026)

Getting rid of a PC? Keep your data safe

If you're getting rid of an old Windows 10 computer, make sure you completely wipe your data. Otherwise, your personal files, passwords and photos could fall into the wrong hands.

We take you through the process of resetting your Windows 10 PC while keeping your files and data safe and secure – it's easier than you might think.

Source: Which? (21 Jan 2026)