Cybersecurity expert offers tips on how to not fall victim to online shopping scams
COLUMBIA, Mo. (KMIZ)
Experts are reminding consumers to stay vigilant while shopping online this holiday season.
Nearly 12,000 people were victims of online shopping scams in 2022, according to the FBI Internet Crime Complaint Center.
Those reports included nonpayment and nondelivery scams that resulted in losses totaling more than $73 million. The Cybersecurity and Infrastructure Security Agency said this time of year is prime time for scammers.
“During the holiday season, we all receive emails or text messages about deals that you just can't miss or an opportunity to give to charities you just don’t recognize,” said Robert Graham, who is the CISA's cybersecurity advisor and cybersecurity coordinator for Missouri.
The CISA has three steps to follow for safe online shopping. The first step is to protect your device's information and accounts.
“We recommend that you update your software to ensure your devices are protected against the latest threats," Graham said.
Using a strong password is another way to fight off scammers.
"At least 16 characters, random and unique for each account," Graham said. "Use a password manager to generate, save and then fill in strong passwords for you and then turn on multi-factor authentication for any account that offers it."
The second step is recognizing phishing attempts or dangerous downloads.
"Phishing is just a technique used to trick the user to think that they're [scammer] somebody that they're not," Graham said. So they want you to click on that link so they can mimic a reputable vendor or associate that you may have done business with."
CISA's third safety tip is to purchase with confidence. This means making sure you know how personal information is stored and used on a particular website.
“We want you to choose reputable vendors who encrypt information,” Graham said.
Graham said scammers are getting better and better at impersonating legitimate retailers.
Natelli Herrera, a student at the University of Missouri, said she often avoids shopping at less popular online retailers for that reason.
“I don't really shop on websites that I think could be a scam or anything like that," Herrera said. "For my own security, I just kind of stick to bigger stores.”
CISA recommends taking a quick look at the url of a website. Make sure the website address begins with "https" instead of just "http." The "s" ensures encryption and verification of the site.
"Some of the techniques that we encourage all users to look at is bad grammar within the email or looking at the the the sender's email address," Graham said. "They [scammers] can mimic a domain by using two V's together to represent a W."
Graham said make sure to check your accounts frequently for unauthorized charges.
Hererra said her family had a scammer scare two years ago.
“My sister put her information into a website and it was this really cute sweater for Mizzou actually," Herrera said. "It was online and then it never came, and she had to close her bank account and all that. So it was really scary, but I think she learned her lesson.”
The CISA says paying with a credit card online can leave you better protected should fraudulent charges be made. The Federal Trade Commission says federal law limits consumer's responsibility for unauthorized charges to $50.
