On the morning of the 18th of March 2026, we became aware of a scam email impersonating Cogio Ltd.

The message falsely claimed to be from a director of Cogio and asked recipients to reply with their WhatsApp ID or QR code, describing the request as “time-sensitive”.

There is currently no indication of a breach

At this time, we have no evidence that Cogio’s systems, hosting platform, email accounts, domains or client records have been breached.

We believe this is a spoofing / impersonation attempt, rather than evidence of an intrusion, for several reasons:

  • The message was sent to our public email address at info@cogio.co.uk, which is openly available and easy for scammers to find.
  • The sender used a Hotmail address that is not connected to Cogio.
  • The Reply-To address pointed to an unrelated iCloud account.
  • The wording is generic and does not demonstrate knowledge of any particular client, project or service.
  • The scammer asked recipients to reply with contact details, which suggests they were trying to gather information rather than using information already obtained.
  • At the time of publishing this notice, we have seen no signs of unauthorised access to the services we manage.

In other words, this appears to be an attempt to pretend to be us in order to trick recipients into starting a conversation outside normal channels.

What we did in response

As soon as we identified the issue, we took immediate action.

  • We were made aware of the e-mail at 11:11am and reviewed it for any indications of a breach
  • By 11:29am, we had emailed our clients to warn them about the scam.
  • By 11:55am, we had also attempted to call all clients for whom we provide hosting and domain services to make sure they were aware.
  • We then reported the e-mail to the National Cyber Security Centre

We are continuing to monitor the situation closely.

What you should do

If you receive this email, or anything similar:

  • Do not reply
  • Do not send your WhatsApp details, QR code or any personal information
  • Do not click links or open attachments if a similar message includes them
  • Forward the email to info@cogio.co.uk so that we can review it
  • Then delete or mark it as spam

If you have already replied to a suspicious message claiming to be from Cogio, please contact us straight away at info@cogio.co.uk or by calling your account manager so that we can advise you on the next steps.

How to tell if a message is really from Cogio

Scam messages often rely on urgency, unfamiliar sender addresses and requests for unusual information.

Please be cautious of any message that:

  • asks you to move a conversation onto any other platform (such as WhatsApp, Telegram etc.) unexpectedly
  • pressures you to act urgently
  • comes from an email address that does not clearly belong to cogio.co.uk
  • asks for passwords, codes, contact details or other information that would not normally be requested in that way

If you are ever unsure, stop and contact us directly using our normal details before taking any action.

We understand that messages like this can be unsettling, especially when they appear to come from a trusted business.

To be clear, this notice is precautionary. We are sharing it so that clients are aware of the scam, know what to look out for, and know how to report anything suspicious to us.

At present, there is no indication that Cogio has suffered a breach. This appears to be an external impersonation attempt using publicly available information.

If you have received this email, or any similar message claiming to be from Cogio, please forward it directly to info@cogio.co.uk.

Additional Resources

National Cyber Security Center – How to Spot and report scam emails, texts, websites and calls: https://www.ncsc.gov.uk/collection/phishing-scams/spot-scams