⚠️ Important Security Notice: Phishing Emails Targeting Squarespace Clients

Recently, Squarespace alerted Circle members that some clients have been targeted by individuals posing as legitimate web design professionals — often impersonating the same agency that originally built their website.

Unfortunately, this scam has reached some of our clients as well. We’ve received reports of fraudulent emails claiming to be from “Launch Worthy” (note the space), using the address info.launchworthy.com — which is not associated with our team. Our official domain is launchworthy.co (no “m” at the end).

What’s Happening

Scammers are sending emails that look like they come from trusted Squarespace Partners. The messages claim there are urgent “compliance updates” or “license verifications” required to prevent your website from being restricted or taken offline.

They may even include details or imagery (like screenshots or logos) copied from legitimate sources to appear authentic. Here’s an example of the type of message being circulated:

“Squarespace has introduced a new compliance and technical verification process for all active sites. Sites that do not complete their license key verification promptly may face suspension...”

Squarespace has confirmed this is a phishing scam. Their Security Team has found no evidence of any security breach on Squarespace or its partner platforms.

How to Stay Safe

Here’s how you can protect your website and personal information:

1. Double-check the sender’s email address.

   • Official Launchworthy emails always come from @launchworthy.co.

   • Any variation (like .com or Gmail) is not from us.

2. Never pay or share login credentials based on an unsolicited request — even if it looks legitimate.

3. Enable two-factor authentication (2FA) for your Squarespace, Google, and related accounts.

4. If in doubt, contact us directly at hello@launchworthy.co before responding to any suspicious message.

5. Report phishing emails by flagging them in Gmail or forwarding to phishing-report@squarespace.com.

Launchworthy’s Commitment to Your Security

We take your trust seriously. Launchworthy has advanced email authentication (SPF, DKIM, and DMARC) and other security measures in place to protect communications from impersonation.

If you ever receive a questionable email referencing your website or payment, please reach out to us directly — we’ll verify whether it came from our team.

There are no required “license verifications,” compliance audits, or platform fees associated with your Squarespace site outside of your existing subscription or Launchworthy agreement.

Stay Connected, Stay Secure

Phishing scams are becoming more sophisticated, but awareness is the best defense.
We’ll continue to monitor the situation closely and keep our clients informed of any updates from Squarespace.

If you have any questions or want us to review a suspicious email, contact us anytime at hello@launchworthy.co.