Email Authenticity and Security

WFOT is committed to protecting the integrity of our official communications and helping our member organisations and delegates identify genuine messages. Email impersonation and phishing attempts continue to be a risk across all sectors, and malicious emails can appear convincing even when the sender address is not legitimate.

This page explains how to recognise authentic WFOT messages, what to do if you are unsure about an email, and which domains are authorised to send official communication on our behalf.

How to Identify an Authentic WFOT Email

Official WFOT communications will always meet the following criteria:

  1. The email will originate from one of the authorised domains listed below.

  2. Messages will pass standard authentication checks. Many email clients display this information under their security or message details section.

  3. Links in the email will direct you only to websites operated by WFOT or it's partners.

  4. The formatting, tone and visual identity of the email will be consistent with other WFOT communications.

If you receive an email that appears unusual, unexpected or inconsistent with the above, treat it with caution. Do not click links, download attachments or provide any personal or organisational information until you have verified its legitimacy.

Authorised Sending Domains

The following domains are approved to send official communications on behalf of WFOT. Emails sent from any other domain should be treated as suspicious until verified.

Sent by WFOT

  • @wfot.org

  • @mail.wfot.org

  • @wfotcongress2026.org

  • @delegates.wfot.org

External Partners

  • @thinkbusinessevents.com.au

If you receive a message that claims to be from WFOT but does not come from one of these domains, please report it to your IT team and forward the message to WFOT for review.

Reporting Suspicious Emails

If you believe you have received a fraudulent or spoofed email claiming to be from WFOT, please forward it to [email protected] along with any relevant information. Prompt reporting helps us take action against abusive accounts and improve security for all members.

Liability

WFOT takes reasonable steps to secure and authenticate its official communications. Even so, no organisation can fully prevent fraudulent or unauthorised emails that misuse its name or branding. WFOT is not responsible or liable for any loss, damage or harm that arises from the receipt of fraudulent emails, the misuse of WFOT identifiers by third parties or any actions taken in response to unauthorised messages. Recipients remain responsible for exercising appropriate caution and for verifying the authenticity of any communication that appears suspicious.