Phishing
Stay safe from phishing attacks
Phishing is one of the most common online threats. These scams impersonate trusted services — sometimes even 1Password — to trick you into revealing sensitive information or installing malicious software (malware) on your device.
This guide explains how phishing works, how to recognize it, and what to do if you think you’ve been targeted.
What is phishing?
Phishing is a form of social engineering where attackers pose as a trusted contact or legitimate company. The goal is to steal things like your passwords, account credentials, or payment information, or to trick you into installing malware on your device. Phishing messages often create a false sense of urgency so you’ll act without thinking.
They usually arrive by email, but may also come through text messages, calls, or social media.
How to spot a phishing attempt
Phishing messages often:
- Claim there’s been suspicious activity on your account.
- Ask you to “verify” or “secure” your information.
- Use urgent, threatening, or alarming language.
- Contain links that look real but lead to fake websites.
- Claim you owe money on an invoice or account.
ℹ️ Tip:
Hover over links before clicking to reveal where they actually point. If they don’t lead to a reputable domain, don’t click.
What to do if you receive a suspicious message
If you think a message might be a phishing attempt:
- Don’t click any links or buttons, or download attachments.
- Don’t reply or provide any information.
- Report it as phishing/spam.
ℹ️ Tip:
Many email providers and messaging platforms offer ways to report fraudulent messages. Reporting phishing attempts helps make the internet a little safer for everyone.
How to validate emails from 1Password
If you’re not sure whether an email came from 1Password, take a close look at the sender’s email address. 1Password only sends emails from addresses with specific domains. If the sender’s address doesn’t match one of these domains, it may be fraudulent:
| 1password.com / .ca / .eu | Account notifications, billing, recovery, and renewal reminders. |
| 1password.community | Community replies and support notifications. |
| agilebits.com | Marketing, product education, research, webinar invites. |
| custommail.1password.com | Outreach from Customer Success and Account teams. |
| email.1password.com | Newsletters and product announcements. |
| info.1password.com | Terms, billing, and membership updates. |
| passage.id | Welcome emails for the Passage product. |
📄 Full list of 1Password email and marketing domains →
ℹ️ Tip:
The sender name in an email can be faked – even the address can look legitimate at first glance, so look carefully. To confirm where a message really came from, check the full email header. Most email clients have a “Show Original” or “View Source” option that lets you see the actual sending domain.
What 1Password will never do
We’ll never:
- Ask you to share your Secret Key, 2FA codes, or account password via email.
- Threaten to delete your account unless you “act now”.
- Link you to a login page outside of 1password.com/ca/eu.
If something feels off, it probably is.
What to do if you receive a suspicious 1Password email
If you think a 1Password message might be phishing:
- Don’t click any links or buttons, or download attachments.
- Don’t reply or provide any information.
- Forward the email to abuse@1password.com.
- If you shared info, contact support@1password.com right away.
Think your 1Password credentials might’ve been phished?
If you entered your 1Password credentials on a suspicious site:
- Change your 1Password account password immediately.
- Review your linked apps and browsers and remove any that are unfamiliar.
- Contact support@1password.com so we can help secure your account.
If you clicked a link and didn’t enter any information, you’re likely safe. But feel free to reach out to confirm.
Extra tips to keep your 1Password account secure
- Enable two-factor authentication (2FA) for your 1Password account.
- Use Watchtower to monitor your password health and security alerts.
- Never reuse passwords across sites.
- Only sign in to 1password.com/ca/eu by typing the URL directly into your browser.
Need help?
- Not sure about a message? Forward it to abuse@1password.com.
- Need account help? Contact support@1password.com.
We’re here to help — and we’re always working to keep your information safe.
