Click here to download a list of tips for safer holiday shopping.
Shopping online is easy and convenient—for cybercriminals, too. Avoid getting scammed with these tips to keep you safe while online shopping.
1. Use a password manager.
Password managers create and store your usernames and passwords in an encrypted vault. UC Berkeley offers FREE LastPass Premium. At a minimum, separate your Berkeley and personal accounts (i.e., don't use your @berkeley email for purchasing). Make sure your critical accounts use strong, unique passwords — and enable multi-factor authentication when available.
2. Charge it.
Use a credit card instead of a debit card for online purchases, as credit cards offer better fraud protection. Consider using a separate credit card just for digital transactions to limit your exposure. Utilize payment gateways like PayPal or Apple Pay to keep your info secure. Regularly check your bank statements and report any unrecognized charges to your bank immediately.
3. Make purchases directly from known, reputable sources.
Make sure you know or confirm a seller's identity. If downloading an app, do so directly from the Apple App Store or Google Play Store and keep it up to date. Always confirm the shipping status directly through the seller's website, not from a link or phone number in a text or email.
4. Don't respond to pop-ups or unsolicited texts.
Ignore pop-up offers and deals sent to you via text, email, or social media. Just delete them and don’t respond, click on any links, or call any phone numbers. Scammers are known to send offers that really are too good to be true, such as free gift cards or super low prices, in exchange for people’s personal or credit card information.
5. Report a scam or a fraud.
If you get something phishy, report it. Use the bMail web interface to report phishing and other suspicious emails. If you're scammed on social media, consider reporting the scammer's account to the company: Facebook | TikTok | Instagram | eBay | Craigslist. The FBI also recommends reporting holiday scams to ic3.gov, the FBI’s Internet Crime Complaint Center (IC3).