Real Credit Bureau Alert vs Identity-Theft Phishing
How to tell a genuine fraud alert from your credit bureau apart from a phishing message designed to steal your identity.
Last reviewed: 1 June 2026
Credit bureaux send genuine alerts when unusual activity appears on your file. Scammers mimic these alerts to panic you into handing over personal details. The differences below let you respond safely without ignoring a real warning.
Side-by-side comparison
| Real credit bureau alert | Identity-theft phishing | |
|---|---|---|
| Sender | Sent from the bureau's verified domain; visible in your registered online account | Spoofed sender address; not visible inside your bureau account |
| Link or action | Directs you to log in at the bureau's main URL you type yourself | Provides a link to a lookalike site or asks you to 'confirm' details by reply |
| Information requested | Never asks for your full SSN, passwords, or card numbers via email | Requests SSN, date of birth, card details, or password to 'verify' you |
| Urgency | Gives a normal timeframe; you can log in at your convenience | Threatens credit damage or account closure within hours if you don't act |
| Personalisation | Uses your full registered name; refers to your account number (partial) | Generic greeting or wrong name; vague reference to 'your account' |
Common red flags
- Email asks for full SSN or passwords to 'confirm your identity'
- Link leads to a domain that is not the bureau's official site
- Extreme urgency threatening immediate credit damage
- Generic salutation such as 'Dear Customer'
- Alert not visible when you log in directly to your bureau account
Verification steps
- Go directly to the bureau's website by typing the URL — do not click the email link
- Log into your account and check the alerts or notifications section
- Call the bureau on the number printed on a previous statement or its official site
- Place a free fraud alert or credit freeze if you suspect identity theft
What not to do
- Don't click links in an alert email before verifying the sender
- Don't provide your SSN, password, or card details in response to an alert message
- Don't assume the alert is fake — check directly with the bureau, then act
A safe response
Close the email, open your bureau's official site directly, and log in to see whether the alert is genuine. If you find nothing, forward the email to the bureau's phishing-report address and delete it.
Frequently asked questions
Can a real credit bureau alert ask me to click a link?
Real bureaux do include links in alerts, but you are never required to click them — you can always go directly to the site and log in. Never provide sensitive data through a link you didn't initiate yourself.