Unfortunately, from time to time a number of counterfeit (phishing) emails claiming to be from Sage are sent to our customers. We want you to know that these emails aren't generated by or on behalf of Sage, and we believe they are sent in an attempt to commit fraudulent activity.
A phishing email is usually defined as "an attempt to acquire sensitive information such as usernames, passwords, and credit card details by masquerading as a trustworthy entity via electronic communication."
In other words, phishing is the modern version of the age-old problem of fraudsters trying to scam unsuspecting people. Those behind the attempted scam send malicious fake emails to try to get you to reveal sensitive information, usually in order to steal money.
Fraudsters will often use your emotions to try to get you to respond to a message and reveal the information they want to gain.
Common themes used in scams can include:
We recommend you always take a moment to think, "Am I expecting this type of request?"
It's important for you to know how to identify possible phishing emails, how to report them, and what to do if you think you've been a victim.
If you're unsure whether you've received a phishing email, there are some additional checks you can perform.
Note: To check the link in the email, hover over it and see if what pops up matches the text in the email. If it doesn't, don't click the link.
If you suspect that you've responded to a phishing scam with personal or financial information, take these steps to minimize any damage:
Note: don't follow the link in the fraudulent email message.
To safely report the email you suspect is counterfeit, without opening any attachments or replying to the email, please do the following:
Note: sending the counterfeit email as an attachment is the best way to preserve information that makes it easier for us to trace its origins.
Counterfeit emails sometimes look like they’ve come from a Sage.com email address. Fraudsters use an email system that doesn’t check the sender’s authenticity against the sender's address. The result is a bogus or counterfeit email.