Scammed online? Act fast. A step-by-step 2026 recovery guide – freeze the loss, report to the right authority by country, and protect your accounts.
Online fraud keeps getting more convincing, and the what to do if scammed is one of the most common ways people lose money today. Reported fraud losses now run into the tens of billions of dollars a year – the US Federal Trade Commission alone logged over $10 billion in 2023 – and a large share of it starts with a single message, link, or screenshot that looked harmless. This guide explains exactly how it works, the warning signs, real examples, and – most importantly – how to check anything suspicious for free using ScamCheck before you click, pay, or share details.
By the end you’ll be able to recognise the what to do if scammed in seconds, know precisely what to do if you’ve already engaged, and understand how to verify anything suspicious with a free, explainable second opinion. Bookmark this guide and share it with the people in your life who are most likely to be targeted – awareness is the single most effective defence.
Key takeaways
- The what to do if scammed relies on urgency, fake authority, and a trusted-looking channel – so any pressure to act immediately is itself a warning sign.
- Never share an OTP, PIN, CVV, or password, and never click “verify” links from unexpected messages.
- Verify independently: open the official app or type the website yourself instead of using the link you were sent.
- When in doubt, paste the message, link, email, or screenshot into report a scam page for a free, instant, explainable risk score.
- If you’ve already paid or shared details, contact your bank immediately and report to your national fraud authority.
What is a what to do if scammed?
If you’ve been scammed, the first hours matter most. Acting quickly can stop further loss, sometimes reverse a transaction, and protect your other accounts. This guide walks through exactly what to do, in order, and where to report fraud depending on your country.
The good news: once you understand the pattern, these scams become much easier to spot. They rely on you reacting emotionally and quickly rather than pausing to verify – which means a calm, two-second check defeats most of them. And when you’re unsure, you don’t have to guess: paste the message, link, or screenshot into ScamCheck’s report a scam page and get an instant, explainable risk assessment that tells you not just whether something is risky, but why.
Why this scam works (the psychology)
Scammers are not really hacking technology – they are hacking human attention. The what to do if scammed succeeds because it combines three psychological levers: urgency (“act now or lose access”), authority (pretending to be your bank, employer, or a government body), and trust (arriving through a familiar channel like SMS, email, or WhatsApp). When those three line up, even careful people act before they think.
Understanding this is powerful, because it gives you one reliable rule that cuts through every variant: any message that pressures you to act immediately is a reason to slow down, not speed up. Legitimate organisations do not punish you for taking a few minutes to verify through an official channel – scammers do, because verification is exactly what breaks their script.
How the what to do if scammed works
Almost every version follows the same playbook, engineered to rush you past your own judgement:
- Stop all contact with the scammer and do not send any more money.
- Contact your bank or payment provider immediately to freeze or reverse the transaction.
- Change passwords and enable two-factor authentication on affected accounts.
- Gather evidence – screenshots, numbers, links, transaction IDs.
- Report to your national fraud authority and file a police complaint where applicable.
The single most important thing to notice is the manufactured urgency. Scammers know that if you stop and verify through an official channel, the scam falls apart – so every message is designed to make you act before you think.
Red flags to watch for
You can catch the vast majority of these scams by learning a short list of warning signs:
- Requests to ‘pay a fee to recover your lost money’ – this is a follow-up scam
- ‘Recovery agents’ who contact you out of the blue
- Anyone asking for remote access to ‘help’ you
- Pressure to act in secret
If a message ticks even one or two of these boxes, treat it as suspicious until you’ve verified it independently.
Real-world examples
Here are realistic examples drawn from live scam intelligence. Each one looks plausible at a glance – which is exactly the point:
- In India: call 1930 and report at cybercrime.gov.in as soon as possible.
- In the US: report to the FTC (reportfraud.ftc.gov) and the FBI’s IC3 (ic3.gov).
- In the UK: report to Action Fraud (actionfraud.police.uk).
Notice how each example combines a believable story with a small, specific action. That action – clicking, paying, or sharing a code – is where the trap closes.
How AI has changed this scam in 2026
The old advice – “look for bad spelling and grammar” – no longer works. Generative AI now writes flawless, persuasive messages in any language, clones brand tone, and personalises a con for a specific person or region in seconds. Scammers also use AI to translate scams into Hindi, Hinglish, Spanish and dozens of other languages, and to spin up convincing fake websites at scale. In practice this means you should judge a message by its sender, its destination domain, and its request – never by how polished it reads. It also means the defence has to be AI-powered too, which is exactly why a tool like ScamCheck applies the same machine-driven analysis to whatever you receive.
Who is most at risk
Anyone can be targeted, but the what to do if scammed hits some groups harder: older adults and first-time smartphone users (less familiar with the tactics), small business owners and sellers (who handle payments and are time-pressured), job seekers and students (eager for opportunity), and busy professionals (who skim messages on mobile). If you support family members in any of these groups, the most useful thing you can do is teach them the one habit below – and send them ScamCheck.
A 30-second checklist before you act
When any message asks you to click, pay, log in, or share a code, run this quick check first:
- Pause. Urgency is the warning sign, not the instruction.
- Check the source. Is the sender’s number, email domain, or link the official one – or just close to it?
- Never share secrets. No legitimate party needs your OTP, PIN, CVV, or password.
- Verify independently. Open the official app or type the website yourself; don’t use the link provided.
- Run it through ScamCheck. If anything still feels off, get a free risk score before you act.
How to check it in seconds with ScamCheck
You never have to decide alone. ScamCheck is a free, AI-powered scam detector that reads the content the way an analyst would and explains the risk:
- Open the report a scam page.
- Paste the message, link, email, or number – or upload a screenshot.
- Read the risk score and the specific reasons behind it.
- If it’s high risk, don’t engage; if you’re still unsure, verify through an official channel.
Because every result explains why it was flagged, you also get better at spotting the next scam on your own. You can follow new and trending campaigns on the latest scams page.
How ScamCheck detects the what to do if scammed
ScamCheck doesn’t rely on a single blocklist that’s always one step behind. It layers several checks the way a human analyst would: it extracts the entities in your message (links, phone numbers, UPI IDs, email addresses), tests domains for typosquatting, homoglyph and punycode tricks, and deceptive subdomains, runs multilingual detectors tuned for scam patterns in English, Hindi and Hinglish, and – for screenshots – reads the image with OCR and AI vision to catch spoofed payment screens and fake UI. It then produces a calibrated risk score and, crucially, explains the specific signals behind it. Because new scam domains are registered by the thousands every day, this signal-based approach catches fresh scams that reputation lists miss on day one. You can explore current campaigns on the scam intelligence hub and the latest scams feed.
What to do if you’ve already been affected
If you’ve clicked, paid, or shared details, act fast – the first hour matters most. Contact your bank or payment provider immediately to freeze or reverse the transaction, change any exposed passwords, and report the incident to your national authority (for example, call 1930 or report at cybercrime.gov.in in India, or the FTC and FBI IC3 in the US). You can also report the scam through ScamCheck to help protect others.
How to protect yourself
A few simple habits stop almost all of these scams:
- Contact your bank first – speed can stop or reverse a payment.
- Never pay anyone promising to ‘recover’ your money.
- Document everything before accounts or chats are deleted.
- Warn family and contacts if the scam used your identity.
- Use ScamCheck going forward to vet messages before you act.
The underlying principle is always the same: slow down and verify before you act. Scammers rely on speed and emotion; a two-second check defeats both.
Why a free scam checker matters
Fraud hits hardest the people with the least margin for error, and a paywall in the ten-second window when someone is deciding whether to click means the tool never gets used. That’s why ScamCheck is free and works on whatever a scam actually looks like – a pasted message, a forwarded email, a phone number, or a screenshot. It was built by A Square Solutions; you can read the engineering story in how we built ScamCheck.
Common myths about the what to do if scammed
“It won’t happen to me – I’m too careful.” Modern scams are engineered by professionals and tested on millions of people; falling for one is about timing and context, not intelligence. The smartest people get caught when a message arrives at exactly the wrong moment.
“If the message looks professional, it’s real.” Polished design and perfect grammar are now trivial to fake with AI. Branding proves nothing – only the verified sender and destination do.
“My bank/app will refund me anyway.” Recovery is possible but never guaranteed, and authorised-push-payment scams (where you approve the transfer yourself) are the hardest to reverse. Prevention is far more reliable than recovery.
“A link with a padlock (HTTPS) is safe.” HTTPS only means the connection is encrypted – scammers use it too. It says nothing about who owns the site.
The bottom line
The what to do if scammed works by rushing you past your own good judgement with urgency, authority, and a trusted-looking channel. Strip those away by slowing down and verifying independently, and the scam collapses. You don’t need to be a security expert – you need one habit (pause and check) and one free tool. Before you click, pay, or share anything, run it through report a scam page; it takes two seconds and could save you a great deal. Then share this guide with someone who needs it – the best protection spreads person to person.
Related ScamCheck guides
- WhatsApp Scam Detection Guide
- Fake UPI Payment Screenshot Scams
- ScamCheck – free AI scam detector
- report a scam page
Authoritative references
- India National Cyber Crime Reporting Portal (1930)
- US Federal Trade Commission – report fraud
- FBI Internet Crime Complaint Center (IC3)
- UK Action Fraud
Frequently asked questions
What is the first thing to do after being scammed?
Contact your bank or payment provider immediately to freeze or attempt to reverse the transaction, then stop all contact with the scammer.
Can I get my money back after a scam?
Sometimes – fast bank action can reverse or recall transfers. The sooner you report, the better the odds.
Where do I report a scam?
Report to your national authority: 1930/cybercrime.gov.in (India), reportfraud.ftc.gov and ic3.gov (US), actionfraud.police.uk (UK).
Are ‘fund recovery’ services legitimate?
Be very wary – most are follow-up scams. Never pay a fee to recover lost money.
How can I avoid being scammed again?
Verify before you act, never share OTPs, and check suspicious messages with ScamCheck.