EN
In a Nutshell
In this era, the most dangerous scam websites don’t look like scam websites. They look exactly like the real thing. AI-generated content, stolen brand assets, and fake trust seals mean the old advice — “just look for bad grammar” — no longer works.
According to the Global Anti-Scam Alliance, which ScamAdviser is a proud member,, 57% of adults globally were scammed last year, yet 73% believed they could spot a scam. The gap between confidence and reality is exactly what fraudsters exploit. This guide closes that gap.
Scammers now use AI tools to generate flawless website copy, realistic product images, convincing customer testimonials, and even chatbot “support agents.” Traditional red flags like poor spelling, broken English, and generic stock photos no longer apply to the most sophisticated scam operations.
What hasn’t changed: the underlying structure of how scam sites operate. The 10 red flags in this guide focus on verifiable facts — domain age, payment methods, independent reviews, legal registration — that AI cannot fake. Use these, not surface aesthetics.
A Gucci bag at 80% off. A new iPhone for half the retail price. A luxury watch for $29. If a deal defies logic, trust that instinct. Scammers deliberately price products far below market value to override scepticism. Legitimate premium brands almost never discount at these levels, and no real business can sustainably sell at a loss.
Tip: Check the same product on 2–3 trusted retailers. If the price gap is enormous, the site is almost certainly fake.
Most legitimate online businesses have active, engaged social media accounts. Scam sites often insert social media icons but the links either go nowhere, lead to the website homepage, or point to empty/newly created profiles. Look at follower count, post history, and whether real people are engaging with the content — not just bots.
Tip: Click every social media icon on the site. If any are broken, empty, or lead to profiles created in the last 3 months, treat it as a serious warning.
A reviews section on a website is easy to fabricate. Names, photos, and testimonials can all be generated by AI or copied from other sites in seconds. What scammers cannot fake is an independent third-party review platform. If a site has glowing on-site reviews but zero presence on Trustpilot, Google Reviews, or Sitejabber, that absence is a red flag. Equally, a Trustpilot profile with 500 five-star reviews posted in a single week is also suspicious.
Tip: Search the company name + “reviews” or “scam” on Google. Check Trustpilot, Sitejabber, and the BBB independently.
Scammers register domains that look legitimate at a glance but contain subtle differences: amazon-secure.io, paypa1.com, microsoft-login.net. The technique is called typosquatting or domain spoofing. Also watch for unusual TLDs (.xyz, .top, .click, .shop) which are statistically disproportionately used by fraudulent sites. And always read the domain right to left from the first slash — amazon.com.verify-update.io is NOT Amazon.
Tip: Always type the URL manually or use a bookmark. Never navigate to a financial site via a link in an email or social media post.
💳
05
Only Accepts Untraceable Payment Methods
Legitimate businesses accept credit cards, PayPal, or other consumer-protected payment methods because they expect to fulfil their orders. Scammers avoid these because chargebacks would expose them. If a site insists on bank wire transfer, cryptocurrency, Western Union, MoneyGram, or gift cards, walk away. These payment methods are irreversible and virtually untraceable once sent.
💡 Tip: Use a credit card wherever possible — it gives you chargeback rights if goods are not delivered. Never wire money to a retailer you haven’t verified.
📞
06
No Real Contact Details
Legitimate businesses want to be contactable. Scam sites hide. Check for a physical address (not a PO Box or mail forwarding service), a real phone number (call it), and a branded email address (not Gmail, Yahoo, or Hotmail). If the only contact option is a web form with no other details, that is a significant red flag.
💡 Tip: Copy the physical address into Google Maps. If it doesn’t correspond to a real business premises, proceed with extreme caution.
🏷️
07
Brand Names Used to Mislead
Scammers combine trusted brand names (Nike, Apple, Chanel, Amazon) with discount keywords to appear in search results. The product page might look authentic — correct logo, professional photos (often stolen from the brand’s own site) — but the URL, contact details, and payment process reveal the truth. Premium brands do not sell their products through unknown third-party discount websites.
💡 Tip: Check if the brand has an official list of authorised resellers on its own website. If the site you’re looking at isn’t on it, don’t buy.
⏰
08
Artificial Urgency and Pressure Tactics
Countdown timers. “Only 2 left in stock!” “Offer expires in 10 minutes.” “Your account will be deleted unless you act now.” Pressure is a manipulation tool designed to override your critical thinking. Legitimate businesses rarely need to create artificial panic to make a sale. Urgency is the scammer’s most reliable weapon — slow down, and the trick falls apart.
💡 Tip: Any website or message that demands immediate action deserves the most scepticism. Pause, research, and verify before doing anything.
📜
09
Missing, Thin, or Plagiarised Legal Pages
Every legitimate online store is legally required to have a Privacy Policy, Terms & Conditions, and a Returns Policy. Scam sites often omit these entirely, use placeholder text, or copy-paste boilerplate that doesn’t match their business. Look specifically at the returns policy — if it requires you to ship goods back at your expense to an address in a country with no consumer protection law, that is a deliberate trap.
💡 Tip: Google exact phrases from the site’s Privacy Policy or T&Cs. If the same text appears on dozens of other unrelated sites, it’s plagiarised boilerplate.
🗓️
10
Very Recently Registered Domain
Most scam sites exist for a few months before disappearing. This means the domain was registered very recently. You can check any site’s registration date for free using a WHOIS lookup tool (whois.domaintools.com or simply search “whois [domain]”). A domain registered in the last 3–6 months, combined with any of the other warning signs on this list, significantly raises the risk level.
💡 Tip: Use ScamAdviser.com — it automatically checks domain age as one of its 40+ trust signals and displays it clearly.
The 60-Second Scam Check: Do This Before Every Purchase
Before making any purchase from an unfamiliar website, run through this checklist:
☑
Run it through ScamAdviser.com
Enter the URL and check the Trust Score. Under 60? Investigate further before proceeding.
☑
Search the company name + “scam” or “reviews” on Google
Real complaints and warnings surface quickly. If the first page is empty, that itself is informative.
☑
Check Trustpilot independently
Go to Trustpilot.com and search the company directly — don’t click links on the site itself.
☑
Verify the domain age
A domain under 6 months old combined with high-value offers is a serious risk combination.
☑
Click every social media icon
Confirm each one leads to a real, active account — not a homepage or empty profile.
☑
Call or email the contact details
If no one answers and no one replies, that tells you everything.
☑
Check the returns policy
A genuine returns process is a strong indicator of a legitimate business.
☑
Confirm secure payment options are available
Credit card or PayPal minimum. Avoid any site that offers only wire transfer or crypto.
☑
Look up the physical address on Google Maps
A real business premises — not a parking lot or residential address — is a strong positive signal.
☑
Search the brand on its official website’s authorised reseller list
If you’re buying a branded product, verify the seller is authorised.
Safe vs. Unsafe Payment Methods
Your choice of payment method is your last line of financial defence. Choose it carefully:
Payment Method
Consumer Protection
Verdict
Credit Card
Chargeback rights if goods not received or misrepresented. Strong fraud protection.
✅ Safest option
PayPal / Klarna
Buyer protection on eligible purchases. Dispute resolution available.
✅ Safe
Apple Pay / Google Pay
Backed by card payment protection. Tokenised — card details not shared with merchant.
✅ Safe
Debit Card
Some chargeback rights but weaker than credit card. Money leaves account immediately.
🟡 Use with caution
Bank Transfer / IBAN
No chargeback. Once sent, virtually impossible to recover.
🔴 Avoid on unknown sites
Cryptocurrency
Fully irreversible. Anonymous. No consumer protection. Scammers’ preferred method.
🔴 Never for retail purchases
Gift Cards
Untraceable. Irreversible. Used exclusively by scammers for payment.
🔴 Always a scam signal
Western Union / MoneyGram
No fraud protection. Designed for person-to-person transfers, not retail.
🔴 Always a scam signal
I’ve Been Scammed. What Do I Do Now?
Act fast — the first 24–48 hours are critical for recovering money or limiting damage:
➀
Contact your bank or card provider immediately
Request a chargeback if you paid by credit or debit card. Explain you did not receive the goods or the site was fraudulent. Time limits apply — act within 24–48 hours if possible.
➁
Report to your national fraud authority
USA: ReportFraud.ftc.gov | UK: ActionFraud.police.uk | Australia: ScamWatch.gov.au | Canada: antifraudcentre.ca | EU: report to your national consumer protection authority.
➂
Report the site to ScamAdviser
Submit a report at ScamAdviser.com/report-a-scam. Your report helps protect the next 4.5 million people who use the tool each month.
➃
Report to the domain registrar
WHOIS lookup will show the registrar. Most have an abuse reporting process and will investigate scam sites quickly.
➄
Change any passwords you used on the site
If you created an account, change that password everywhere you’ve reused it and enable two-factor authentication.
➅
Monitor your financial accounts
Watch for unauthorised transactions in the following weeks. If your full card details were entered, consider requesting a new card number.
Frequently Asked Questions
How can I tell if a website is a scam?
Check the URL with ScamAdviser and verify domain age, independent reviews, real contact details, and secure payment methods rather than relying on grammar or design.
Does HTTPS mean a website is safe?
No, HTTPS only encrypts the connection and does not guarantee the website itself is legitimate.
What payment method is safest for online shopping?
Credit cards are the safest because they offer chargeback protection, while PayPal also provides buyer protection on eligible purchases.
Can I trust a website that has a trust seal or security badge?
Not always—fake seals are common, so you should click the badge to confirm it links to a real verification page.
Still not sure whether a site is legitimate?
If you’re unsure after checking, it’s safest to avoid the site and shop from a verified retailer instead.
🛡️ Your First Step: Check Before You Click
Over 6 million consumers use ScamAdviser every month to check websites before they shop, share data, or invest. Paste any URL into ScamAdviser.com for an instant risk assessment powered by 40+ independent data sources.
If you’ve encountered a scam site that’s not yet flagged, report it at ScamAdviser.com/report-a-scam. Every report protects millions of other consumers.
