Phone Upgrade Contract Scams via Email
How phishing emails impersonating mobile carriers offer irresistible upgrade deals that harvest personal and payment details or enrol victims in fraudulent contracts.
Part of: Phone Upgrade and Contract Renewal Scam
Last reviewed: 9 June 2026
Mobile contract upgrade emails are a natural target for phishing because every phone user expects to receive upgrade offers from their carrier as their contract approaches renewal. Fraudulent emails that appear to come from carriers arrive at exactly the right psychological moment — when the recipient is genuinely considering a new device. The email's timing, tone, and branding can make it indistinguishable from a legitimate offer.
Unlike phone-based upgrade scams that require a live call, email-based versions can scale to millions of recipients simultaneously, with high-conversion phishing pages that capture all the personal and financial data needed to open fraudulent contracts in the victim's name.
How this scam works on email
The email mimics the carrier's brand design and offers an upgrade deal — a flagship device at a dramatically reduced monthly cost or with an unusually generous trade-in value. A 'Claim your upgrade' link leads to a phishing page that replicates the carrier's website. The victim enters their account credentials, personal details, and card information to confirm the upgrade order.
The captured credentials are used to access the victim's genuine account and request device upgrades shipped to a different address. Alternatively, the data is used to open new contracts under the victim's identity. In both cases, the victim receives bills for contracts they did not knowingly authorise.
Common red flags
- Upgrade offer email with a price significantly better than any published carrier deal
- Email sender domain differs by a character or uses a sub-domain not consistent with the carrier's main domain
- Upgrade link leads to a page with a different URL from the carrier's official website
- Page asks for full card details as well as account credentials on a single form
- No option to log in to an existing carrier account — all fields require re-entry of data
- Upgrade confirmation arrives much faster than a normal carrier process would allow
How to protect yourself
- Navigate to your carrier's official website by typing the URL directly — never use email links for upgrades
- Compare any email deal against published rates on the carrier's own website
- Enable account login notifications with your carrier so you are alerted to any access
- Report suspicious carrier emails to your carrier's phishing team
- If you entered details on a suspect page, contact your carrier's fraud team immediately
How to report it
- Report to your mobile carrier's fraud team using the contact number on the back of your SIM card documentation
- Report phishing email to your email provider
- Report to Action Fraud (UK) or FTC (US)
Frequently asked questions
How can I tell if a carrier upgrade email is real?
Check the sender's full email domain and hover over the upgrade link to see the destination URL before clicking. Log into your account directly through the carrier's website to see if the offer appears there.
What if I already submitted my details on what I think was a phishing page?
Contact your carrier immediately to freeze your account and prevent unauthorised upgrade orders. Also contact your bank if card details were entered. Request a fraud marker on your credit file to prevent new contracts being opened.