17 Tips to Avoid Shopping Scams on Black Friday & Cyber Monday

Black Friday and Cyber Monday are the highest-revenue days of the year for retailers, and also for online scammers. Fraud volume on the major shopping weekends runs at two to three times the daily baseline. The good news: the scams are predictable, and a small set of habits prevents most of them.

Before you start shopping

• 1. Update your devices. Phone, laptop, browser. A patched device defeats most opportunistic attacks.
• 2. Use a password manager. Unique passwords on every store account. Reused passwords are the single biggest source of account takeover.
• 3. Turn on MFA. Especially on the payment accounts you will use most: PayPal, Apple Pay, Google Wallet, primary email.
• 4. Use a dedicated email for shopping. Keeps marketing clutter out of your main inbox and limits exposure if a retailer is breached.
• 5. Set up a virtual or single-use card. Most banks now offer them. A leaked virtual card is trivially revocable.

While you are shopping

• 6. Type URLs directly. Do not click links in emails or ads claiming to be from major retailers. Lookalike domains are a top scam vector.
• 7. Check the URL bar. HTTPS is not a guarantee of legitimacy, but the absence of HTTPS is a guarantee of risk.
• 8. Be suspicious of prices that seem impossible. A genuine retailer rarely sells the latest iPhone at 60% off.
• 9. Verify unfamiliar sellers. Search the brand name plus "reviews" or "scam." A brand-new domain with no footprint is a red flag.
• 10. Use credit, not debit. Credit cards give you stronger fraud-reversal protection than debit cards.
• 11. Avoid wire transfer and gift cards. Legitimate retailers do not ask for either as payment.
• 12. Watch for fake delivery notifications. Smishing texts spike during the season. If you did not order from a courier, ignore their text.

Public networks and devices

• 13. Do not shop on public Wi-Fi without a VPN. Coffee-shop networks are easy to spoof and easy to monitor.
• 14. Do not shop on shared devices. A hotel-lobby PC will remember everything you typed.
• 15. Lock your phone screen. A stolen unlocked phone in the holiday crush is a payment app away from emptying your account.

After you buy

• 16. Save receipts and confirmations. They are the proof you need for any chargeback dispute.
• 17. Watch your statements. Check card and bank statements weekly through January. Most fraud is reversible if reported within thirty days.

The patterns to recognise

Almost every Black Friday scam fits one of four templates:

• Fake retailer. A polished-looking store selling popular items at deep discounts. Pay and nothing ships.
• Phishing in retailer livery. An email or text from "your delivery" or "your bank" asking you to verify details.
• Compromised account. An attacker uses your saved card to buy gift cards and resell them.
• Fake review or social-media offer. A "limited time" link from an influencer that goes to a malicious site.

If a deal makes you feel urgent or excited enough to skip the usual checks, that is the signal to slow down. Real retailers will still be selling tomorrow. Scammers count on you not checking.

The bottom line

The boring fundamentals (unique passwords, MFA, credit not debit, type the URL) defeat almost every shopping scam in circulation. Build those habits once and they protect you the rest of the year as well.