Don’t get phished while holiday shopping!

Dr. Umar Mujahid Khokhar
Dr. Umar Khokhar, associate professor of information technology

With the holiday season approaching quickly, it’s that time to get your gift list ready and precautions you should take. According to the National Retail Federation, 57% of consumers will do their holiday shopping online, whether that’s using a laptop or a phone. With that convenience comes the opportunity for phishers and scammers to ruin your shopping experience, your credit, and yes, take your identity.

Georgia Gwinnett College (GGC) Dr. Umar Khokhar, associate professor of information technology, said there are steps you can take to help avoid being phished or scammed while shopping online.

“Phishers and scammers are like honey pot bees. They make things look legitimate, but it’s their way to get access to your computer or phone, and your information,” he said. “If a deal looks too good to be true, it probably is.”

1. Be Wary of Unrealistic Deals

Scammers often promote fake discounts to trick people into clicking unsafe links or giving up personal information. Double-check deals on reputable sites before making a purchase.

2. Check the Website’s Authenticity

Many scam websites look like well-known retailers, often with small differences in the URL, like “.net” instead of “.com” or misspellings in the name. Always verify the web address and use official retailer apps when possible. Know that a site having https:// in the URL is good but not 100% reliable when it comes to site security.

3. Enable Two-Factor Authentication and Use Strong Passwords

With many people reusing passwords across sites, stolen passwords from one site can compromise others. Use strong, unique passwords and turn on two-factor authentication for an extra layer of security on accounts.

4. Avoid Shopping on Public Wi-Fi

Public networks can expose shoppers to hackers. It’s best to avoid logging into sensitive accounts or making purchases over public Wi-Fi. Instead, wait to use a secure, private connection.

5. Choose Secure Payment Methods

Paying by credit card or through trusted payment services like PayPal can offer additional protections compared to debit cards or direct transfers.

6. Be Cautious of Emails and Texts Claiming "Urgent" Action

Scammers frequently impersonate well-known brands via email or text, tricking users into clicking malicious links. Rather than clicking directly on these links, visit the retailer’s website directly to check for any issues.

7. Monitor Your Financial Statements Regularly

Regularly reviewing bank and credit card statements during the holiday season can help you quickly spot any unauthorized transactions.

8.  Be Cautious of “Order Confirmation” and “Tracking” Scams

Scammers send fake “order confirmation” or “package tracking” messages to lure people into clicking malicious links. If you’re not expecting an order update, it’s best to verify directly with the retailer.

Khokhar added that should you become a victim of phishing or a scam, the first thing you should do is contact your financial institution and the company where you purchased the item. In addition, you should report it to the Federal Trade Commission (FTC) at www.reportfraud.ftc.gov. Your report is shared with thousands of law enforcement agencies.

“By reporting phishing and scams, it helps agencies prevent others from becoming victims and track down the individuals or organizations that commit these crimes,” Khokhar said.

Return to News View our News Archive by Year