Phishing attempts and weird WeTransfer imitations

Here's a checklist to see if you're communicating with our service, or people pretending to be us (which will be referred to as "the phishers" from here on out) with the intention of stealing your login details or installing malware on your machine.

• Is the layout different from the layout you usually see when you open a WeTransfer mail? If so, don't use the download button or link.
• Does the download button take you to our domain (https://wetransfer.com)? If not, the files are hosted somewhere else and never safe to download.
• Check the address mentioned in the body of the email. If the transfer isn't from someone you know or an obvious fake, don't use the download link.
• Check the sender's address. We always send our service-related emails from "...@wetransfer.com". If the email is sent from a different address, don't open the download link. (Please note that sometimes we send out marketing emails from different addresses - and if you contact our Support team, we'll email you back from '@wetransfer.zendesk.com)
• Please note that emails from "...@wetransfer.com" are no guarantee that we’ve actually sent you this email. So stay aware even if we seem to be the sender.
• Check the address the email was sent to. We only ever send a transfer email to your own email address. Not to "undisclosed recipients" or to other addresses. So finding a "Bcc" definitely means we did not send you this email. 

Do not log in / enter your credentials or click the download link in a suspicious 'transfer' email.

For any questions about emails, or if you think you have received a phishing/suspicious email, please contact our Support team to report it. Make sure to include the email in question as an attachment, or forward it.