Seven steps to safer online shopping this festive season

Scammers can now create fake websites using artificial intelligence (AI) that look almost identical to those of your trusted brands, complete with logos, product listings, and even fake reviews. Just because you get an email that looks authentic, doesn’t mean it is – particularly if the deals being offered are really too good to be true.

Before you click, search for the retailer’s official web address online or type it into your browser yourself. If you don’t know the retailer, search online first to check if it has been associated with scams, or check known review sites. Avoid clicking on links or ads or phoning contact numbers in emails. Always pause and verify before you buy.

It pays to check that the website address you’re shopping on begins with 'https' and displays a padlock icon. This indicates the site uses encryption to protect your data. Fake sites often skip this step.

Scammers may also use slightly altered URLs, adding extra letters or using ‘.net’ domains instead of ‘.com.au’. If you’re unsure, leave the site and search for the official one instead.

The same goes for email addresses – fake emails may come from slightly different domain names purporting to be the retailer or the delivery service you know.

Credit cards, PayPal, and PayID offer better protection than other methods if something goes wrong with your purchase. Never pay by direct bank transfer or cryptocurrency, as it’s almost impossible to recover your money if you’re scammed.

Don’t enter your card details without first verifying you’re on a legitimate website.

And avoid ticking the ‘save my credit card details’ box.

Social media is a hotspot for scams. Fraudsters run ads for fake products or ‘fire sales’ that look legitimate, often impersonating well-known brands or even hijacking real accounts.

If you see a deal on Facebook or Instagram, don’t click on the ad – search for the retailer directly.

This can save you from losing money to ghost stores that never deliver.

Legitimate retailers will never ask for unnecessary details like your driver’s licence or banking PIN. If a site or seller requests this information, it’s a red flag.

Scammers use stolen personal details for identity theft, so share only what’s required for the purchase – and nothing more.

Keeping your personal information secure means avoiding sharing personal details, such as your birth date, because a retailer wants to send you a birthday gift. It won’t be worth it if they get hacked and your information falls into the hands of a scammer.

Before you start shopping, make sure your phone, tablet, or computer has the latest software updates installed.

Updates patch security vulnerabilities that scammers exploit. And avoid shopping on public Wi-Fi networks – these are easy targets for hackers.

Use your secure home Wi-Fi network or mobile data for your online shopping transactions.

As you’re shopping, keep track of what you’ve bought and when or how it’s due to be delivered, and as well as your invoice or tracking number.

Scammers often send phishing emails disguised as delivery updates, asking you to click a link or pay a fee to release your parcel.

Don’t click – instead, go directly to the courier’s official site or app.

Watch for other phishing signs too: unexpected attachments, requests for sensitive information, or email addresses ending in “gmail.com” instead of a company domain.

While we all love a great deal, don’t let the lure of an online bargain distract you from keeping your personal information safe.

Remember:

• Think before you click on a link and verify before you buy.
• Don’t provide personal details over text messages or email links, or when someone contacts you.
• Contact organisations directly using details from their official website.