Fake websites are now everywhere!
There are people out there creating realistic fake websites that look identical to the originals with the intent to scam consumers: that means you and me, both. The fake websites imitate popular retailers such as Amazon and PayPal, toll-collection agencies, employment portals, law firms, and financial institutions. In this cybersecurity notice, we’re going to look at how to identify fake websites when doing any type of commerce online, such as online shopping.
It’s too easy to set up a fake website. According to the Wall Street Journal:
“Attackers buy an AI-powered tool on a criminal marketplace or dark-web forum. They feed in the URL of a legitimate site, and the AI-powered tools instantly scrape the real page, clone its look and feel, and add fake forms designed to capture personal or financial details. Scammers can tweak the pages, translate them into multiple languages, and deploy them—often in minutes—without writing a single line of code.”
Here are ways to protect yourself:
✅ DO be extra vigilant when interacting with website links from a mobile phone. It’s harder to verify information on smaller screens.
🔴 DON’T click on unknown links to websites in text messages, emails, and social media DMs.
✅ DO get in the practice of holding down on a link that you receive and are interested in viewing. It will show you the web address in the preview, or you can select “copy” and paste the address in a notes application to verify the address manually.
✅ DO navigate to any company’s official website by typing the address directly into the search bar, ESPECIALLY for any financial institution that you do business with.
✅ DO install apps only from official stores (i.e. Apple’s App Store, Google Play Store, Amazon App Store, Samsung Galaxy Store)
✅ DO study web addresses carefully.
⚠️ WATCH for variations of legitimate domain names and any subtle misspellings or substitutions in URLs. Look for “HTTPS” in the URL and a 🔒 padlock icon in the search bar.
🔴 DON’T always count on spelling mistakes or grammar errors to spot a threat. AI-generated content can produce text that is free of spelling mistakes or grammar errors. (AI may not always choose the best word choices, so look for semantics).
⚠️ DO be extra cautious of any language that sounds urgent or demanding.
⚠️ WATCH OUT for heavily discounted prices or unusual offers, especially with back-to-school shopping.
✅ DO ask your friend messaging you who you suspect may have been hacked to take a selfie and send to you immediately as a way for you to verify his/her/their identity.
🔴 DON’T move conversations about purchases to WhatsApp, Telegram, or any other platform (especially a platform you don’t use or recognize) at a seller’s request.
🗡️ REPORT misleading websites to the @betterbusinessbureau_ or FBI’s Internet Crime Complaint Center (IC3) at www.ic3.gov.
⚠️ PLEASE NOTE: Scammers are also impersonating the IC3. The IC3 will never directly contact you for information or money. Always type in the web addresses directly into the search bar.
🔴 DON’T assume it won’t happen to you.
It’s not always about making money. You also have to protect money and/or your credit.
#cybersecurityeducation #cybersecuritytips #fakewebsites #notfinancialadvice #responsibleAI
Works Cited:
Snow, Jackie. “Cybercriminals Use AI to Create Fake Websites That Look Just Like the Real Thing.” Wall Street Journal. 20 Aug 2025, 10:00 a.m. ET. Link: https://www.wsj.com/tech/cybersecurity/ai-fake-scam-websites-8a9e0ef6?st=fnSDKF&reflink=article_copyURL_share
