Home » Blog » What to Do If You Clicked a Scam Link in the UK: Step-by-Step Guide

Clicked a scam link

Clicked a scam link? What to do next in the UK

If you clicked a suspicious link in a text, email, advert or message, do not panic. The next step depends on whether you only opened the page, entered details, downloaded something or sent money.

UK-focused guidance Plain English No panic Official reporting routes

Quick answer

If you clicked a scam link, close the page and do not enter any more information. If you typed in a password, payment details, bank details or security code, take action quickly. Change affected passwords, contact your bank if payment details were shared, and report suspicious texts to 7726 or suspicious emails to report@phishing.gov.uk.

  • Close the page or browser tab.
  • Do not enter more details.
  • Do not download or install anything from the page.
  • If you entered payment details, contact your bank using a trusted route.
  • If you entered a password, change it from the real website or app.

What happened after you clicked?

Choose the closest situation. A click alone is different from entering information or installing something.

I only opened the link

Close the page. If you did not type anything in, the risk is usually lower, but stay alert for follow-up messages.

Check next steps

I entered personal details

If you entered login details, card details, security codes or personal information, act promptly.

What to do

I downloaded something

If you installed an app, file or remote access software, disconnect and scan the device before using sensitive accounts.

Device steps

If you entered details

The right action depends on what you shared. Work through the relevant points below.

Password or login details

Change the password from the real website or app. If you use the same password anywhere else, change it there too.

Card or bank details

Contact your bank using your banking app, card number or official website. Tell them you entered details on a suspicious page.

One-time passcode or security code

Contact the account provider quickly. Codes can approve payments, account changes or logins.

Personal documents or ID

Keep evidence of what was shared and watch for identity misuse. Consider extra protection if sensitive identity details were exposed.

Step-by-step guidance

Take the steps that match what happened. You do not need to do everything if it is not relevant.

1

Close the suspicious page

Close the tab or browser. Do not continue clicking around the page and do not enter more information.

2

Work out what you shared

Think calmly: did you enter a password, card details, bank details, personal information, a one-time code or download a file?

3

Change affected passwords

Use the real website or app. Start with email, banking, shopping, social media and any account linked to the suspicious message.

4

Contact your bank if payment details were shared

Use your banking app, the number on your card or the official bank website. Tell them what happened and ask what action is needed.

5

Run a device check if you downloaded something

If you opened a file or installed software, run your device security scan. Avoid using banking or email on that device until you are comfortable it is safe.

6

Report the message or website

Forward suspicious emails to report@phishing.gov.uk and scam texts to 7726. If money was lost or an account was hacked, use the UK fraud reporting route.

Important: Cleverways is educational guidance, not legal, financial or official reporting advice. If money has left your account or your bank details may be at risk, contact your bank promptly using a trusted route.

If something else happened

These guides may help if the link led to a payment, account issue or suspicious bank contact.

I sent money

Contact your bank or payment provider quickly and keep evidence of the transfer.

Read the money guidance

My account may be hacked

Secure your email, social accounts and passwords if details may have been shared.

Read the account guidance

A bank called me

If someone calls after you clicked a link, pause and contact your bank through a trusted route.

Read the bank call guidance

Clicked scam link FAQs

Is clicking a scam link always dangerous?

A click alone is not the same as entering details or installing something. Close the page, avoid entering information and check whether anything else happened.

What if I entered my password?

Change the password from the real website or app. If you use that password elsewhere, change it there too. Secure your email account first if it may be affected.

What if I entered card details?

Contact your bank promptly using a trusted route, such as your banking app, the number on your card or the official bank website.

Where do I report a scam link in the UK?

Suspicious emails can be forwarded to report@phishing.gov.uk and suspicious texts to 7726. If fraud happened or an account was hacked, use the UK fraud reporting route.

Want printable scam-safety checklists at home?

The UK Scam Safety Toolkit gives you practical checklists and action sheets to keep at home, including steps for suspicious messages, bank calls, online shopping scams and family conversations.

Keep the 10-second scam check nearby

The safest step is often a pause. Download the free Cleverways guide and keep a simple check nearby for suspicious messages, calls, emails and payment requests.

Last reviewed: May 2026. Cleverways provides practical educational guidance and signposts trusted UK routes.

Scroll to Top