Fake Utility Rebate Scams

Fake utility rebate scams contact you — usually by email, text, or phone — claiming that your energy, water, or telecoms provider has calculated that you have overpaid and are owed a refund. To claim the rebate, you are directed to enter your bank details on a webpage, call a premium-rate or fraudulent number, or pay a small 'administration fee' to release the funds.

The premise is not implausible: utility companies do sometimes issue rebates, particularly after price reviews, billing corrections, or the conclusion of regulatory disputes. Scammers exploit this familiarity, targeting periods when consumer awareness of energy prices and billing is high — energy price spikes, government rebate announcements, or publicised billing investigations all create fertile conditions for this scam.

What makes this variant particularly disarming is its structure: the victim is told they are receiving something, not being asked to give anything. The request for bank details is framed as a necessary step to process the payment rather than a request for financial information. This reframes a significant security risk as an administrative formality.

The link in the message typically leads to a website that closely imitates the utility company's branding, including logos, colour schemes, and standard footer text. The form on the page collects your name, account number, sort code, and bank account number. These are then used for fraudulent direct debit claims or sold as part of a data set for further fraud.

The contact arrives via email, SMS, or automated call. Email-based variants closely mimic legitimate utility company communications, with the company's logo, standard privacy notice footer, and a 'Claim your rebate' button linking to the fake site.

SMS variants are briefer: a short message stating the rebate amount and a link to claim. The link often uses a domain that includes the company name alongside an extra word or uses a similar-looking character substitution.

The fee-for-release variant adds a step: before receiving the rebate, you must pay a small processing or verification fee — typically a modest amount designed to feel trivial relative to the claimed rebate. This is a classic advance-fee structure: once the small fee is paid, the rebate never arrives and further fees may be demanded.

Some variants operate via phone: a caller tells you about the rebate and directs you to your online banking to 'confirm your account details' are correct, then talks you through the process of logging in while listening for your credentials.

In all cases, no rebate exists. If bank details are provided, the account will typically be used for fraudulent direct debit withdrawals, sometimes not immediately but weeks later to avoid a direct connection to the original contact.

The scam is effective because the narrative frame is positive — you are gaining something. Most fraud involves a loss, and the habitual defences against fraud (scepticism about requests for money) are not engaged in the same way when you believe you are receiving a payment.

Utility rebates are a real phenomenon, so the scenario is within the range of things that could genuinely happen. When a rebate is plausible and the email looks correct, the default is to proceed.

The request for bank account details feels like a standard process. Most people have legitimately provided their sort code and account number to set up a direct payment — this request feels like the same thing. The significant difference — that giving these details to a scammer enables fraudulent withdrawals, not just payments into your account — is not obvious without prior awareness.

A customer receives an email with their energy provider's branding, informing them that an energy price review has resulted in a credit of a moderate amount on their account and that they must claim the payment within 14 days by confirming their bank details. They click the link, which opens a convincing copy of the provider's website, and enter their account number and sort code. Several weeks later, an unfamiliar direct debit appears on their account for a larger amount. They contact their bank to dispute it and discover the account details were used to set up the debit without their knowledge.

Good news — [utility company] has calculated a rebate of [amount] on your account. Claim it at [fake link] within 14 days.

Your energy account review shows a credit of [amount] due. Enter your bank details at [fake link] to receive your payment.

You qualify for a water billing rebate under a recent price review. Process your claim: [fake link].

Important: an unclaimed refund of [amount] is registered to your account. Confirm your details to release it: [fake link].

To receive your [utility company] rebate, a small processing fee of [amount] applies. Pay at [fake link] and your refund will follow within 3 days.

HMRC has approved an energy rebate scheme — claim [amount] for your household: [fake link].

Log into your utility account through the official app or by typing the provider's web address yourself. If a rebate is genuine, it will be visible in your account billing history or in a notification within the official platform.

Call your provider on the number printed on your bill to ask whether any rebate has been issued to your account. A real rebate will be reflected in their system; a scammer's claim will not.

Check the sender's email address in full. A legitimate communication from your utility provider will come from their official domain. Any slight variation — extra words, different top-level domain, number substitutions — indicates fraud.

Hover over or long-press any link in a message before clicking to preview the destination URL. Verify that the domain matches the utility's official website exactly.

Remember that legitimate rebates issued to a bank account you have previously registered with your provider do not require you to re-enter your bank details. Your provider already has them.