Email & Message Help

Why Reply-To addresses matter

An email can look completely legitimate — professional layout, real branding, correct spelling — and still be a scam. The Reply-To address is one of the most reliable ways to spot it. Here's what to look for.

Quick answer

The Reply-To address is where your reply goes — it is often different from the visible sender address and harder to spot. Scammers use mismatched Reply-To addresses so they can intercept replies while appearing to be from a legitimate organisation. Always check both addresses before responding.

Most people know to check the sender's email address when they receive a suspicious message. But there's another field that scammers exploit more often than the From address: the Reply-To address.

The Reply-To address is where your message goes when you hit Reply. It can be completely different from the address that sent the email. And that difference can expose a scam that looks otherwise flawless.

What is the Reply-To address?

When you receive an email, there are several address fields involved. The From address is what appears in your inbox — it's the display address you see immediately. The Reply-To address is where your reply actually goes when you hit Reply.

These two addresses are completely separate. A legitimate company called Acme Ltd might send email from noreply@acme.com and have replies go to support@acme.com — a sensible setup. The key is that both addresses are on the same domain: acme.com.

Scammers abuse this by using a legitimate-looking From address — or even spoofing a real company's address — while setting the Reply-To to a free personal email account they control. When you reply, your message goes to the scammer. They can then continue the conversation as if they're the real company.

A real example of a Reply-To mismatch

Email headers — what you see vs what's really there
From: Anker <store+98977546624@g.shopifyemail.com>
To: recipient@example.com
Subject: Thanks a lot! Here's a special offer for you
Reply-To: Anker <ezrafebus44@hotmail.com>

At first glance, this email looks like a marketing message from a well-known electronics brand. The layout is professional. The branding is consistent. The Shopify sending infrastructure is legitimate — many real companies send marketing emails through Shopify.

But the Reply-To address — ezrafebus44@hotmail.com — is a personal Hotmail account with a random-looking username. A legitimate Anker or Shopify transactional email would never route replies to a personal Hotmail address. That single detail is the smoking gun.

When this email was put through Summarly, the Reply-To mismatch was flagged immediately and classified as High risk, despite the professional appearance of the email body.

Why scammers use this technique

The Reply-To trick is effective because most email clients don't show the Reply-To field prominently. You see the friendly display name and sender address. The Reply-To stays hidden unless you specifically look for it.

It's also harder to fake convincingly. A scammer can often make the From address look like support@barclaysbank.com using spoofing techniques. But when the victim replies, the response goes to wherever the Reply-To points — in this case, an account the scammer controls.

How to check the Reply-To address

The method varies slightly by email client, but here's how to find it in the most common ones:

In Gmail

Open the email. Click the three dots (...) next to the reply button in the top right of the message. Select Show original. Search for "Reply-To" in the raw email source.

In Outlook

Open the email. On the Message tab, click File then Properties. The Internet headers section will show the Reply-To field.

On iPhone Mail

Tap the sender's name at the top of the email to expand the address details. If a Reply-To address is set, it will appear there.

The quickest check

Simply hit Reply and look at where the email is addressed to before sending anything. If it goes to a different address than the one that sent the email — especially a free personal email service like Hotmail, Gmail, or Yahoo — treat that as a warning sign.

Warning signs to look for

  • The Reply-To address uses a free personal email service (Hotmail, Gmail, Yahoo, Outlook.com) when the claimed sender is a brand or official organisation
  • The Reply-To domain does not match the From domain
  • The Reply-To address looks like a randomly generated username
  • The From address looks official but the Reply-To is completely different
  • The email encourages you to reply quickly — urgency is often used to stop you checking details

What to do if you spot a Reply-To mismatch

  1. Do not reply to the email
  2. Do not click any links or call any numbers in the message
  3. If you need to contact the claimed organisation, find their details independently — not from the email
  4. Forward suspicious emails to report@phishing.gov.uk
  5. Mark the email as spam or phishing in your email client
  6. If you already replied and shared personal or financial details, contact the relevant organisation directly using contact details from their official website

How Summarly checks this

If you paste a full email including the headers into Summarly, or paste the message with the From and Reply-To lines visible, Summarly checks whether the Reply-To domain matches the claimed sender. A mismatch with a free personal email account is flagged as a strong warning sign and raises the risk level accordingly.

This works best when you include the full email headers — the lines at the top of the raw email showing From, To, Reply-To, and Subject. You can get these using the "Show original" options described above.

Want to check an email's headers?

Paste the full email including the From, Reply-To, and Subject lines into Summarly. We'll explain what it appears to say and flag anything suspicious — including Reply-To mismatches.

Check a message free

Frequently asked questions

What is a Reply-To address?

It's the address your reply goes to when you hit Reply — which can be different from the address that sent the email. Scammers use a mismatch between the two to make emails appear legitimate while routing replies to a personal account they control.

Is a Reply-To mismatch always a scam?

Not always. Some legitimate companies use third-party mailing services where the Reply-To differs from the From. However, a Reply-To using a free personal email provider (Hotmail, Gmail, Yahoo) when the claimed sender is a brand, bank, or official organisation is a significant warning sign that should always prompt further checking.

Can I see the Reply-To on my phone?

On iPhone Mail, tap the sender name to expand the address details. On Android, the display varies by app — in Gmail for Android, tap the sender name and look for the Reply-To field. You can also use the Show original option to view full headers.

What should I do if the Reply-To doesn't match?

Treat it with suspicion. Don't reply. Don't click any links or use any contact details in the message. If you need to contact the claimed organisation, find their details independently via their official website or a trusted phone directory.

Related guides

How to spot a phishing email How to spot a fake invoice or payment demand How to spot a fake subscription renewal scam What Summarly does and doesn't do with your messages
↑ Back to top