A phishing email is an email sent by someone who impersonates another person or organisation to trick you into sharing personal info with them, such as your password or credit card details.
This means some phishing emails look like they’re coming from a reputable organisation like Catawiki, when in fact they are sent by scammers. To protect yourself, here are a few things you can do to identify such emails.
Check the email address the email is sent from. All emails from Catawiki are sent from email addresses ending in:
If a Catawiki email comes from another email address, for instance a public one such as @gmail.com, a misspelled one such as @catqwiki.com or with an incorrect extension such as @catawiki.tw, it’s a phishing email.
Below are 2 examples of phishing emails received on Gmail:
Check if the email includes attachments
We do not send any attachments, such as PDFs or Microsoft Office documents, in our emails. If an email appears to come from us but contains such an attachment, do not open it as this is a phishing email.
Check if the email creates a sense of urgency
Phishing emails often tell a story to trick you into clicking on a link or opening an attachment. Scammers know that creating a sense of urgency in the email, such as needing to pay customs fees quickly or your order will be returned, increases the chances of a person acting without checking the sender.
They might, for instance:
- Claim there’s a problem with your account or your payment info.
- Tell you to confirm some personal info.
- Include a fake invoice.
- Ask you to click on a link to make a payment.
- Say you’re eligible to register for a refund.
- Offer a free coupon.
While we might send you customised promotional offers, if the offer sounds too good to be true, it probably is.
What to do if you received or responded to a phishing email
If you suspect you received a phishing email appearing from Catawiki, please report it to us at firstname.lastname@example.org.
This helps us fight scammers. If you think you clicked on a link or opened an attachment that downloaded harmful software, update your computer’s or phone’s security software and then run a malware scan.