What to do if you accidentally click a scam link

Don't panic, accidentally clicking a dodgy link doesn't automatically mean your device is compromised. However, some malicious websites may attempt to download malware in the background, so it's worth taking a few precautionary steps to stay safe.

Using a Which?-recommended antivirus and checking for signs of suspicious activity can help keep your personal information hidden from prying eyes. For more information on our antivirus recommendations, you can join Which? Tech Support and chat to our friendly experts on the phone or by email, as often as you need. Find out more about what a membership offers here.

Our tech expert, Tom Morgan, has rounded up the practical steps you should take if you click on a scam link - and the warning signs to look out for. 

Source: Which? (25 Feb 2026) 

Keep your email safe from hackers

Fraudsters often attempt to hack their way into people's email accounts, which can then give them access to other online accounts by requesting password resets and recovery links.

We explain how to recover your email inbox and how to prevent it from happening again. Even if you're not currently dealing with a security threat, it's still worth reading our walkthrough to make sure you're prepared.

Source: Which? (23 Feb 2026) 

What are brushing scams?

A brushing scam is when dodgy online sellers send out parcels to people unexpectedly. Why do they do it? So that they can write fake positive reviews to boost their rankings on online marketplaces, helping them to generate genuine income.

Some mystery deliveries contain QR codes (those black-and-white squares you can scan with a smartphone), which could direct you to a malicious website or cause malware to be downloaded to your device if scanned. Here's what to do if you receive a suspicious parcel.

Source: Which? (25 Feb 2026) 

⚠️ SCAM ALERT: Fake PayPal 'iPhone 16' Invoice

We are seeing reports of a phishing scam circulating via email, designed to trick recipients into calling a fraudulent helpline. If you receive an email similar to the one shown in the attached screenshots, do not engage with it.

How the Scam Works

The email claims that an "unauthorised transaction" for an iPhone 16 Pro ($789.99) has been successfully charged to your PayPal account. It uses several tactics to pressure you:

• Urgency: It claims you will be charged "today" unless you call immediately.

• The "Hook": It invites you to call a "Helpline Number" to cancel the order or get a refund.

• Professional Branding: It uses the PayPal logo and formal language to appear legitimate.

Red Flags to Look Out For

• Sender Address: The email comes from a random, personal account (e.g., "jossiejossie8745") rather than an official @paypal.com domain.

• Generic Greeting: It addresses you as "Dear PayPal Customer" instead of using your full name.

• Poor Grammar: Note the awkward phrasing and punctuation, such as "1 you're Billing Information" and "will be charge today".

• The Phone Number: PayPal does not typically ask you to call a mobile or random number to "cancel" a transaction found in an email.

What You Should Do

1. Do Not Call: Never call the phone number provided in the email. This connects you directly to scammers who will try to gain remote access to your computer or steal your bank details.

2. Check Your Account Separately: If you are worried, log in to the official PayPal app or website directly (never via a link in the email) to check your recent activity.

3. Report It: Forward the suspicious email to the National Cyber Security Centre at report@phishing.gov.uk.

4. Delete: Once reported, delete the email from your inbox.

⚠️ NEW ALERT: The ‘Helpful Stranger’ AI Scam

Bexley Watch has been made aware of a sophisticated new scam circulating on social media that targets our community’s spirit of helpfulness.

While we often pride ourselves on being one of London’s safest boroughs by looking out for one another, fraudsters are now using Artificial Intelligence (AI) to turn a simple act of kindness into a high-tech robbery.

How the Scam Works

The "Helpful Stranger" trap usually happens in busy public areas like Bexleyheath Broadway, local train stations, or supermarkets.

1. The Approach: A stranger (often appearing vulnerable or elderly) approaches you, claiming their phone is "glitching" or they can’t get a video call to work. They ask you to hold the phone or "fix" a setting.

2. The Capture: While you are looking at the device, the camera is secretly recording your face in high definition, and the microphone is capturing your voice as you speak to them.

3. The 'Clone': Using AI software, scammers use these few seconds of footage to create a "Deepfake"—a digital clone of your face and voice.

4. The Sting: They then contact your family members or friends (often via WhatsApp or a video call), appearing and sounding exactly like you, claiming you’ve been in an accident and need money urgently.

Is it Verified?

While some viral videos dramatise the speed of "fingerprint stealing," the Metropolitan Police and Cyber Crime units have confirmed that Voice and Video Cloning is a rapidly growing threat. Scammers only need a few seconds of clear audio and video to impersonate you convincingly enough to trick a worried relative.

How to Protect Yourself and Your Neighbours

• Keep your distance: If a stranger asks for help with their phone, suggest they visit a nearby shop or information desk. You can help without physically handling their device or looking directly into their camera.

• The 'Family Password': We strongly recommend all Bexley residents set up a secret "safe word" with their family. If you ever receive an emergency request for money, ask for the safe word. If they can’t provide it, it’s an AI scam.

• Verify the source: If a "loved one" calls you in distress from an unknown number, hang up and call them back on their regular, saved mobile number.

• Report it: If you encounter this in Bexley, please report it to Action Fraud and notify your local Neighbourhood Watch coordinator so we can alert the rest of the street.

Stay vigilant, Bexley. Let’s keep our community safe from both old-fashioned crime and new-tech scams.

 

​Scam Alert: Don’t Fall for This Fake ‘Cloud Storage Full’ Email

​

A new phishing scam is currently hitting UK inboxes, masquerading as a "Delivery Status Notification" or a storage alert from Google. It’s a clever attempt to trick you into handing over your payment details or login credentials.

We’ve already reported this to report@phishing.gov.uk, but here is what you need to look out for to stay safe.

The Anatomy of the Scam

The email uses several tactics to create a sense of urgency and legitimacy:

• The Fake Warning: The email claims your cloud storage is 100% full and that your "access is at risk," threatening to pause your emails and file syncing.

• The "Bait": To make the offer tempting, it claims an "80% Loyalty Discount" has been applied to an upgrade.

• Official Branding: It uses the familiar Google Cloud/Drive logo and colours to appear authentic at a glance.

Why We Know It’s Fake

If you look closely at the screenshots, the red flags are everywhere:

1. The Sender Address: The email claims to be a "Delivery Status Notification," but the actual sender address is a random string of characters from a Hotmail account (aqhc1dxpetam0410yan@hotmail.com). Google would never send storage alerts from a Hotmail address.

2. Conflicting Info: The subject line says "Delivery Status Notification (Failure)," which has nothing to do with cloud storage limits.

3. Language Errors: Your email provider even flagged that the message appeared to be in French, despite the text being in English—a common sign of "masking" used by scammers.

4. Suspicious Company Name: The footer credits "2026 Cloud Storage Systems Inc." rather than Google or Alphabet.

What You Should Do

• Do Not Click: Clicking "Get More Storage" will likely take you to a fake payment page.

• Report It: Forward any similar emails to the National Cyber Security Centre at report@phishing.gov.uk.

• Check Locally: If you are worried about your storage, go directly to one.google.com or check your settings in the official app. Never follow a link from a suspicious email.

How to spot a WhatsApp scam

Messages promoting a sham service called 'WhatsApp Gold' are recirculating. This scam claims to offer special features to users that can be unlocked by clicking a link – instead the link leads to malware being downloaded onto your device.

To help you stay protected, our experts have rounded up the most common scams you're likely to come across on WhatsApp, plus their tips on how to spot and report them. 

Source: Which? (10 Feb 2026)