Safe Online Shopping: 15 Rules to Never Get Scammed
Online shopping fraud cost consumers $5.7 billion in 2025 — making it the most-reported fraud category to the FTC for the fourth year running. Fake stores, counterfeit products, and non-delivery scams account for the bulk of losses, but even purchases from legitimate retailers can go wrong without basic precautions. These 15 rules, applied consistently, will prevent the vast majority of online shopping scams.
Found a suspicious store or deal? Paste the URL into our free scanner →
Rule 1: If the Deal Seems Too Good to Be True, It Is
A PS5 for $89. Designer handbags at 95% off. iPhones at half price. These listings flood social media ads, pop-up stores, and newly created websites. Legitimate retailers compete on price, but they don't sell below cost. If a price is dramatically lower than every other retailer, the product is either counterfeit, will never arrive, or the store is harvesting your credit card information.
Rule 2: Verify the Store Before Buying
Before entering payment information on any unfamiliar site, run our 8-point website verification checklist. Check the domain age, contact information, reviews on independent sites, and whether the business exists outside its own website. A five-minute check can save you hundreds of dollars.
Rule 3: Always Use a Credit Card (Never Debit)
Credit cards offer chargeback protection under the Fair Credit Billing Act. If a product never arrives or is significantly different from what was advertised, you can dispute the charge with your card issuer. Debit cards offer weaker protections, and the money leaves your bank account immediately — recovering it takes weeks or months. Never shop online with wire transfers, cryptocurrency, or gift cards.
Rule 4: Use Virtual Card Numbers
Services like Privacy.com, Capital One virtual cards, and Apple Pay/Google Pay generate unique card numbers for each merchant. If one store is breached, your real card number isn't exposed. Virtual cards also let you set spending limits per merchant and freeze cards instantly.
Think it might be a scam?
Paste it here for a free, instant verdict.
Free · No signup required · Cmd+Enter to scan
Rule 5: Don't Shop Through Social Media Ads
Instagram, Facebook, and TikTok ads are the leading source of fake store traffic. Ad platforms struggle to verify advertiser legitimacy, and scammers create convincing ads that run for days before being flagged. If you see a product you want through a social media ad, don't click the ad — search for the brand independently and buy through their verified website or a known retailer.
Rule 6: Check Reviews Outside the Store's Website
A store's own testimonials page is meaningless — they control what appears there. Search for the store name plus "review" or "scam" on Google. Check Trustpilot, BBB, and Reddit. No independent presence whatsoever is a red flag. See our guide on spotting fake reviews.
Rule 7: Read the Return Policy Before Buying
Scam stores often have no return policy, or bury an "all sales final" clause in lengthy terms and conditions. Legitimate retailers clearly state their return windows, conditions, and processes. If you can't find a clear return policy, don't buy.
IsThisAScam's 6-layer detection system can analyze online store URLs, helping you identify fake e-commerce sites before you share your payment information.
Rule 8: Use Strong, Unique Passwords for Shopping Accounts
Your Amazon, eBay, and retail accounts store your payment and shipping information. A compromised shopping account can result in unauthorized purchases. Use a password manager and unique passwords for every shopping account.
Rule 9: Be Wary of Email and Text Order Confirmations
Phishing emails disguised as order confirmations are rampant:
"Your order #3847291 for MacBook Pro ($1,299.00) has been confirmed. If you did not place this order, click here to cancel immediately."
The panic of an unauthorized purchase makes you click without thinking. Never click links in order confirmation emails. Log into the retailer's website directly to check your orders.
Rule 10: Verify Delivery Notifications
Fake "your package couldn't be delivered" texts are the second most common smishing attack. They direct you to phishing sites that look like USPS, FedEx, or UPS. Track deliveries through the official carrier website or the retailer's order page — never through links in text messages.
Rule 11: Avoid "Dropship" Stores Selling Alibaba Products at Markup
Many "boutique" online stores are simply dropshipping products from AliExpress or Alibaba at 5-10x markup. The product quality is the same $3 item from China, but you pay $45 and wait weeks for delivery. Reverse image search product photos — if the same item appears on AliExpress for a fraction of the price, you know the real source.
Rule 12: Use Two-Factor Authentication on Retail Accounts
Amazon, eBay, PayPal, and major retailers all support 2FA. Enable it to prevent account takeover even if your password is compromised.
Rule 13: Monitor Your Statements After Purchases
Check your credit card statement for unauthorized charges in the days following any online purchase. Scam sites may charge more than the displayed price, add recurring subscription charges, or sell your card information for use by other fraudsters.
Rule 14: Use Browser Security Extensions
A good ad blocker (uBlock Origin) prevents malicious ads from loading, and a password manager auto-fills only on legitimate domains. See our browser security extensions guide.
Rule 15: Keep Records
Save order confirmation emails, screenshots of product listings, and tracking numbers. If you need to dispute a charge or file a complaint, having documentation makes the process faster and more likely to succeed.
If You've Been Scammed
- Contact your credit card company immediately to dispute the charge
- Report the store to the FTC at reportfraud.ftc.gov
- Report to the BBB's Scam Tracker
- Report to the platform where you found the store (Instagram, Facebook, Google)
- Change your password if you created an account on the scam site
- Monitor your credit card for additional unauthorized charges
Received something suspicious? Check it now for free →