Protect Your Inbox: A Quick Guide to Spotting Phishing Scams

Cybersecurity is a team effort. If you’ve recently spotted a suspicious email in your inbox, you aren’t alone. Scammers are becoming increasingly sophisticated, using convincing branding and urgent language to trick people into handing over personal details or financial information.

Here is what you need to know to stay safe and how to help the authorities fight back.

---

How to Spot a Phishing Attempt

Phishing emails often masquerade as legitimate organisations like HMRC, Royal Mail, your bank, or even popular streaming services. Look out for these common red flags:

• The "Urgent" Tone: Emails that threaten to close your account or fine you if you do not act immediately.

• Suspicious Sender Addresses: Check the actual email address, not just the "Friendly Name". If it’s a string of random characters or a personal account (like @hotmail.com or @gmail.com) claiming to be an official service, it’s a scam.

• Generic Greetings: Phrases like "Dear Customer" instead of your actual name.

• Dodgy Links: Hover your mouse over any links (without clicking!) to see the actual web address they lead to.

What to Do if You Receive One

1. Do Not Click: Avoid clicking links or downloading attachments, as these can install malware or lead to fraudulent websites.

2. Report It: Forward any suspicious emails to report@phishing.gov.uk. This goes to the National Cyber Security Centre (NCSC), which can take down malicious sites.

3. Delete and Block: Once reported, delete the email from your inbox and your "Deleted Items" folder.

Better Safe Than Sorry

If you are ever unsure, the safest route is to log in directly through an official app or website by typing the address into your browser yourself. Never use the links provided in a suspicious message.

---

Received a suspicious text? You can also report "smishing" by forwarding the message to 7726 (which spells 'SPAM' on most keypads). It is free of charge and alerts your mobile provider.

Phishing Email Scam

Phishing Email Scam

Phishing Email Scam

Phishing scam guide

[click the images above to view enlarged]

The AnyDesk Trap: Lessons from BBC’s Scam Interceptors

If you’ve been watching the latest series of Scam Interceptors on BBC One, you’ll know the feeling of shouting at the telly. Watching the team, led by Rav Wilding and ethical hacker Jim Browning, race to stop a remote-access theft in progress is gripping, but it’s also a sobering reminder of how easily "standard" tech is being weaponised.

The most common tool in the scammer's arsenal? AnyDesk.

What is the "AnyDesk Scam"?

AnyDesk is a legitimate piece of software used by IT professionals to help people with computer problems remotely. However, scammers use it as a digital skeleton key.

In Series 4 and 5 of Scam Interceptors, we see this play out repeatedly. A victim receives a call—often claiming to be from "Sky Technical Support," "Amazon," or "BT"—warning of a security breach. They are told to download AnyDesk to "fix" the issue. The moment the victim hands over their unique ID code and clicks "Accept," the scammer has total control of their device.

Why it’s so Effective (and Dangerous)

It’s easy to think we’d never fall for it, but these episodes show just how sophisticated the manipulation is. In Series 4, Episode 9, we watched in horror as a scammer used a remote connection to take photos of a man’s credit cards. In Series 5, Episode 1, the interceptors showed how scammers black out the victim's screen so they can’t see the money being moved out of their bank account in real-time.

The "AnyDesk" red flags include:

• The "Black Screen": If your screen goes dark and they claim "it's just an update," they are actually hiding their movements.

• Banking "Verification": They will ask you to log into your bank while they are connected. Never do this.

• The Sense of Urgency: They will tell you your money is at immediate risk to stop you from thinking clearly.

How to Stay Safe

The best way to fight back is to spread the word. If you have friends or family who aren't tech-savvy, share these three golden rules:

1. Zero Remote Access: No legitimate bank or utility company will ever cold-call you and ask to "remote in" to your computer.

2. The "Ten-Minute" Rule: If a caller pressures you, hang up. Wait ten minutes for the line to clear, then call the company back using a trusted number from an official statement or the back of your bank card.

3. The AnyDesk ID is a Key: Treat your AnyDesk ID like your house keys. You wouldn't give them to a stranger on the street; don't give them to a voice on the phone.

Take Action

If you want to help "highlight" this beyond just talking about it:

• Report IDs: If you receive a scam call, report the AnyDesk ID directly to AnyDesk’s Abuse Channel to get their access revoked.

• Community Groups: Post warnings on Nextdoor or local Facebook groups. Scammers often target specific UK regions in "waves," so a local heads-up can save a neighbour’s life savings.

• Watch and Learn: Encourage others to watch Scam Interceptors (specifically Series 4, Episode 3). Seeing the scam in action is often the best deterrent.

Scam Interceptors does a brilliant job of showing the reality of these crimes, but the best "interception" starts at home. By staying informed, we can make sure these scammers find a dial tone instead of a victim.

• https://www.bbc.co.uk/programmes/m00164f1/episodes/guide
• https://anydesk.com/en/abuse-prevention

Beware the "AnyDesk" scam

[click The AnyDesk Trap image to view enlarged]

Grass fire - Sidcup 🔥

Four fire engines and around 25 firefighters tackled a grass fire near Riverside Road in Sidcup.

An acre of shrub and grassland was destroyed by the fire. There are no reports of any injuries.

Control Officers took the first of four calls at 1659 and mobilised crews from Eltham, Bexley, Lee Green and surrounding fire stations to the scene. The fire was extinguished by 1859.

Source: LFB (22/04.2026)

Unexpected password reset emails: have you been hacked?

If you receive a password reset email for your social media, online banking, email or shopping account that you didn’t request, it could be a sign that someone is trying to access your account without your permission.

These emails aren't always a sign that you've been hacked, but it's important to know how to respond. Our tech expert, Tom Morgan, explains how to tell if the email is genuine, and what steps you should take next if you didn’t make the password reset request yourself. 

Source: Which? ( 22 Apr 2026)

How to get rid of a computer virus

Viruses are a persistent problem. A single mistake, such as clicking on a dodgy link or opening an unknown file, is all it takes for your computer to become infected.

Once a virus is on your system, it can steal personal data or even lock your files entirely. Fortunately, there are some simple steps to remove it. Plus, we've got some top-notch antivirus recommendations to prevent it from happening again.

To see our Best Buy antivirus software and to get 1-to-1 help with your tech, you can join Which? Tech Support and chat to our friendly experts on the phone or by email, as often as you need. Find out more about the support on offer

Source: Which? (22 Apr 2026)

A convincing recovery scam

'Recovery fraud' is when you've lost money in a previous scam and then scammers contact you claiming they can help get the money back. This is almost always not true – it's just another attempt to steal from you again.

We've recently seen an example of this where fraudsters are impersonating Coinbase, a cryptocurrency company, and sending out dodgy emails claiming to recover funds lost to an 'unauthorised transaction'. See how this scam works and what to do if you're targeted.

Source: Which? (22 Apr 2026) 

Stephen Lawrence Day - MetEngage Longlands

Today, 22 April, marks Stephen Lawrence Day. This year’s theme, ‘Every Future Needs a Foundation’, highlights the importance of giving young people the skills and support they need to reach their full potential.

Since Stephen’s tragic murder in 1993, far too many more lives have been lost to violence, leaving lasting impacts on families and communities. On the anniversary of Stephen’s death, we pause to reflect and honour all those lives lost to violence and consider how we, as a partnership and as individuals, can stand up to racism and hate, and work towards a safer, more inclusive future for all. 💚

Hate and knife crime don’t just affect the victim — they impact families, friends, and entire communities. We are committed to working together to keep Bexley safe. We will not tolerate hate crime or knife crime. 

Report incidents:
👉www.met.police.uk or call 101
👤 Anonymous reporting: www.crimestoppers-uk.org or 0800 555 111
🚨 In an emergency, always call 999

Support is available for victims, witnesses, and families:
🤝 London Victim and Witness Service: 0808 168 9291
🌐 Services via www.bexley.gov.uk/hate-crime

 

Find out more: www.stephenlawrenceday.org

#StephenLawrenceDay #KeepingBexleySafe #EveryFutureNeedsAFoundation

Source: https://www.metengage.co.uk/Alerts/A/429652/Stephen-Lawrence-Day