A phishing email impersonates trusted brands to steal your personal information. If you receive a suspicious email that appears to be from Squarespace, don't click links, download attachments, or reply. Instead, forward the entire email with headers to [email protected].

Common signs of phishing emails:

• Requests for sensitive information like bank details, passwords, or SSN
• Claims of account compromise
• Unsolicited account verification links
• Misspelled sender addresses (e.g., @squareespace.com)
• Suspicious links not leading to www.squarespace.com
• Copied Squarespace design
• HTML attachments

Official Communication Channels:

• Squarespace never contacts customers through website form blocks
• Squarespace doesn't make unsolicited phone calls
• Form submissions from [email protected] and [email protected] contain visitor-entered content

Information Squarespace Will Never Request:

• Full credit card numbers
• Passwords

Information Squarespace May Legitimately Request:

• Last four digits of your credit card
• Government ID (for specific account issues)
• Bank details through secure portal (for Squarespace Payments)
• Social security number (for payment processing)
• Bank statements (for verification)

Protect Your Account:

• Enable Google reCAPTCHA for forms
• Verify links before clicking (should preview as email.squarespace.com)
• Review form submissions carefully
• Report suspicious form submissions using the "Report spam" button

Legitimate Squarespace email addresses end in:

• @mail.squarespace.com
• @squarespace.com
• @squarespacescheduling.com
• @acuityscheduling.com
• @unfold.com
• @accelerationpartners.com

For additional security, enable two-factor authentication and regularly monitor your account activity for suspicious changes.

Related Articles

Previous Articles