Holiday shopping is fun but also stressful. Not only are you concerned about getting the perfect gift for your loved ones, but you’re also concerned about what’s inside your wallet. It’s not our intention to add one more thing to your plate of worries, but we have to advise you that others are curious about what’s inside your wallet, too: cybercriminals. If you’re careless while online shopping, you could give them full access to your most precious assets, like your bank account.
Don’t let yourself get caught up in a hacking event when you’re meant to spend time with your friends and family. Here’s a comprehensive guide on everything you must consider while online shopping this holiday season.
Common online shopping scams
Cybercriminals are savvy, and they just keep getting more intelligent with the advent of new technology like AI. They are wholly aware that online shopping picks up around the holidays, and that’s when they ramp up their efforts to seduce you with fake deals, products, websites, and more Black Friday scams. There are dozens of online shopping scams out there, so let’s get into the nitty-gritty.
Phishing
See also: Tips to Sniff Out Fake Websites and Protect Your Money
Multiple scams fall under this category. Phishing scams are when bad actors create fake websites or communications to trick you into doing something. These methods vary: some of them are links designed to give your device a virus upon a single click, and some are devised to lead you to a website (often created to mirror a reputable one) that beckons your personal information. Once you’ve clicked on these links or provided the requested information, Christmas starts to feel like Halloween. Things can get scary, especially for your finances! Here is where you should look out for phishing scams the most.
The places you should look out the most for these scams are on social media, text messages, and email. However, even knowing this, phishing scams come in many different forms. Here are a few standard tactics used by scammers:
Fake delivery messages. You’ve likely gotten one or two of these messages by this point. Cybercriminals will pose as legitimate shipping services like USPS and FedEx, sending you a text about how your package is stuck at customs/couldn’t be delivered. With this, they will include a link to “mitigate” the issue. Do not click this link.
Amazing deals ending soon. Scammers often send out fake fliers or links that show products with unbeatable prices, like 90% off large appliances or others. They will also often have an intense sense of urgency, stating that the deals will end very soon. This is their way of getting you to give them your credentials right away.
Fake charities. During the holidays, many people want to give back. Scammers will use this goodwill to set up fake charities for you to donate to. Sometimes, these fake charities will simply take your money. Other times, they will rig their forms to steal your financial information.
See more: How to spot common online shopping scams
Social engineering
Another thing to consider is that sometimes, scammers don’t only rely on links to try to get your money. They will also talk to you directly or use AI to speak to you. Depending on how much information they already have about you, this can be convincing and easily trick even those looking out for scams. That’s why it’s essential to avoid having too much identifying information visible on your social media profiles or when talking to strangers. Even filling out random surveys, like personality tests, can give scammers a wealth of information that will work against you.
Fast-fashion and overseas websites
One of the rising trends in holiday shopping, and online shopping in general, is overseas fast-fashion websites like Shein and Temu. We understand it is a delicate balance: there are many who are trying to do the best they can within their means. However, we implore you to steer clear of these websites as much as you can. They are often riddled with scams and do not deliver the advertised product. Also, these companies frequently use illegal and underpaid labor in foreign countries—which is why the products are so cheap—and exploit every avenue of cost-cutting possible, resulting in low-quality products.
If you need more information about their business model and how you are a part of it, just read their policies. If you still want to buy from them after that, you likely missed a few sections about cookies and possible surveillance by the Chinese government.
See more: Is Temu Legit? and Dark Patterns
Online shopping while using public Wi-Fi
Using public Wi-Fi is risky as it is, but online shopping while on public Wi-Fi could be the nail in the coffin. Exposing your credentials by filling out forms, like patent information, opens yourself up to a disaster. Many criminals often stake out at popular coffee shops and libraries, watching people’s internet traffic until they find something juicy, like a credit card number. They record these private details and then use them to commit theft and fraud. Generally, it’s best to use a VPN like IPVanish with Threat Protection while browsing on a public Wi-Fi network—that way, all of your data is encrypted and safe from wandering eyes.
How to stay safe
So, how can you stay safe from online shopping scams over the holidays this year? Here are some of our best, most repeated tips, all in one list so you can follow along as you go:
- The offer is too good to be true. This goes without saying. If you’re seeing deals that are out of this world, like 99% off expensive products, it’s likely not real.
- There are no policies listed on the website. Reputable websites are usually fully transparent with their policies and procedures. You should know how your money is processed and how your data is used. If you can’t find this, you should not use the site.
- The aesthetics are off. Blurry images, typos, etc., all indicate that a site is not legitimate. Especially if you were expecting a link to lead you to a site you’ve already been to, you should take extra precautions if anything about it looks confusing or unprofessional.
- You’re not expecting a message. It can be easy to get mixed up. During the holidays, you order a lot of packages, so you’re likely receiving many package notifications. But keep track, and never respond to any messages about packages you are not expecting. You can also copy the link and input it into our free Link Checker to be sure.
- Poor reviews. If no one has anything to say about the site you’re on or the product you’re trying to buy, it’s usually a good sign you shouldn’t be involved. Also, look out for only positive reviews that are repeating or all have typos, as fake reviews can lead to a false image.
- The seller is asking for too much. When speaking to a seller, they might ask you weird questions, like too much information about you personally, or to pay with specific methods like gift cards/crypto or to hurry up. This is usually a sign of a scam.
See also: Common PayPal Scams: How to Spot and Avoid Them
- You are redirected during checkout. Even if you’re scrolling a site you think you’re familiar with, if you are redirected during checkout to a website that looks shady, do not go through with the purchase.
- The URL looks off. When it comes to URLs, they have to match perfectly to be part of a legitimate website. Scammers try to get around this by using unusual characters or lengthening the URL. If you see something off, it is impossible for that URL to be associated with the website you expect. To stay safe, you can use the free IPVanish Link Checker, which scans links for malicious scripts, dark patterns, and other red flags that may indicate a fraudulent site.
Don’t spoil the surprise!
One of the biggest reasons to use a VPN during the holidays is to avoid spoiling the surprise! Third-party cookies on websites become associated with specific devices or sometimes even your router. That means that if you share a device or are simply showing something to someone, an ad may pop up that totally reveals what you have purchased for them. What a bummer! Using a VPN like IPVanish keeps third parties from creating cookies at all, meaning your browser will not remember where you shopped. Not only does it keep you safe, but it keeps your loved ones from finding out their gifts before they rip the paper off. Happy holidays!
