The government, acknowledging the increased risks associated with online payments, has mandated additional precautions to ensure consumers can shop securely
As Diwali approaches, shoppers are gearing up for the festive season, with family and friends carefully selecting gifts to make the occasion memorable. However, amid this surge in online shopping, fraudsters are also preparing to exploit the influx of digital transactions. The Indian Computer Emergency Response Team (CERT-In) recently issued an advisory alerting consumers to prevalent online scams and sharing steps to secure online transactions this festive season.
With more people relying on digital platforms for their Diwali shopping, CERT-In has flagged several common scams to watch out for:
Phishing Scams : Scammers use fake emails or messages that look like they’re from reputable brands to steal personal information.
Lottery and Prize Scams : Victims are tricked into paying fees to claim prizes they never entered to win.
Emotional Manipulation Scams : Fraudsters create fake dating profiles and request money for fabricated emergencies.
Job Scams : Fake job offers require applicants to pay fees for applications or training.
Tech Support Scams : Scammers offer fake tech support to gain remote access to victims’ devices or charge for unnecessary services.
Investment Scams : False investment schemes promise unrealistic returns to lure those seeking quick profits.
Cash-on-Delivery (CoD) Scams : Fake online stores deliver counterfeit or incorrect items under CoD orders, leading to financial loss.
Fake Charity Appeals : Scammers pose as charities, especially during crises, to solicit donations fraudulently.
Mistaken Money Transfer Scams : Scammers claim accidental transfers and demand repayment, often using fake evidence.
Digital Arrest Scams : Victims are threatened with arrest unless they pay fines for fake charges.
Phone Scams : Fraudulent callers impersonate officials, pressuring victims to share sensitive information.
Parcel Scams : Scammers claim parcels contain illegal items and demand fines to avoid legal trouble.
Loan/Card Scams : Fake lenders offer low-interest loans, pressuring victims to pay fees upfront.
The government, acknowledging the increased risks associated with online payments, has mandated additional precautions to ensure consumers can shop securely. A core recommendation from CERT-In is to conduct transactions only on secure and reputable websites. Consumers should avoid suspicious links and never perform transactions on public Wi-Fi networks, which expose devices to potential hacking.
To further protect accounts, CERT-In advises using strong, unique passwords across platforms, enabling two-step verification, and updating passwords regularly. Additionally, users should avoid storing card details on e-commerce sites; instead, they can opt for virtual or tokenized cards, which offer extra security by concealing actual card information.
“Consumers have been recommended to avoid clicking on suspicious links or conducting transactions on public Wi-Fi networks, which expose devices to malicious attacks,” said Manish Tewari, Co-Founder of Spydra Technologies. “This is especially important during the festive season when online shopping activity surges, making it easier for scammers to target consumers who may be less vigilant. The advisory also stresses creating strong and distinct passwords for all social media and online accounts, enabling 2-step verification, and frequently changing passwords—each a fundamental measure for securing online platforms and accounts against unauthorised access.”
CERT-In also cautions against sharing sensitive details like OTPs and PINs, even with those posing as customer support representatives. Scammers frequently impersonate trusted officials to deceive users, so vigilance is crucial. When possible, using the Unified Payments Interface (UPI) and virtual cards can offer stronger protection against fraud. The advisory also recommends downloading apps only from authorised stores and reviewing app permissions to avoid fake payment applications.
Saif Ahmad Khan, Founder of LEDSAK, emphasised the importance of vigilance as online shopping continues to grow. “The advisory embodies what every person’s first obligation should be—to start with a secure and trustworthy site for any transactions, for payment and purchase. With e-commerce now becoming an essential mode of shopping for many, especially during festive times, it’s essential to only use known platforms and authorized payment gateways. The guidelines issued by CERT-In are timely and essential as they provide a strong foundation for consumers to safeguard themselves in the digital marketplace.”
The CERT-In guidelines encourage consumers to shop from trusted websites and applications and to be mindful of details like web addresses, which may reveal subtle misspellings on fake sites designed to steal credit card and private information. Safety symbols and HTTPS in URLs indicate a secure site, but double-checking these features is advised, especially during peak shopping periods.
With these precautions in place, consumers can enjoy the convenience of online shopping without compromising security. The advisory underscores that awareness and careful action can make a significant difference in staying safe from digital fraud while making the most of the festive season.
