How to Tell If a Website Is Fake in 30 Seconds

Fake websites — also called spoofed sites — are designed to look exactly like real ones. They copy the branding, layout, and content of banks, online stores, government portals, and telecom companies. Their only purpose is to steal your login credentials, card details, or money.

The good news: there are reliable ways to verify a website in under 30 seconds, no technical knowledge required.

Step 1 — Check the URL Very Carefully

Look at the address bar at the top of your browser. Scammers register domain names that look almost identical to real ones:

• Real: paypal.com  →  Fake: paypa1.com or paypal-secure.com
• Real: mtn.com.gh  →  Fake: mtn-gh-bonus.netlify.app
• Real: amazon.com  →  Fake: amazon-deals-today.com

The real domain is always the part just before the final slash — for example in secure.paypal-login.com/verify, the domain is paypal-login.com — not PayPal at all.

Step 2 — Look for HTTPS (But Don't Stop There)

A padlock icon and "https://" in the address bar means the connection is encrypted — but it does not mean the site is legitimate. Scammers can and do use HTTPS on fake sites. The padlock tells you the connection is private, not that the site owner is trustworthy.

Step 3 — Search for the Site on Google

Open a new tab and search for the company name. Click the official result from search (not an ad). Compare the domain in the search result to the site you're on. If they're different — the site you're on is fake.

Step 4 — Check the Contact Information

Scroll to the bottom of the site. Legitimate businesses have:

• A real physical address
• A working phone number
• A professional email address (not @gmail.com or @yahoo.com)
• Links to real social media pages with followers and history

Fake sites often have no contact info, a fake address, or a contact form that goes nowhere.

Step 5 — Check When the Domain Was Registered

Scam websites are often newly registered — set up days or weeks before they're used. You can check a domain's age for free using a WHOIS lookup tool (search "whois lookup" on Google). If a site claiming to be a major bank was registered last month, something is very wrong.

Step 6 — Look for Obvious Red Flags

• Prices that are too good to be true — 80% off luxury goods is almost always fake
• No returns or refund policy — real shops always have one
• Only accepts wire transfer or crypto — these can't be reversed
• Stock images everywhere — no real product photos
• Spelling and grammar errors throughout the site
• Fake reviews — all 5-star, generic, no specific details

Step 7 — Trust Your Instincts

If something feels off — the design looks slightly wrong, the URL doesn't seem right, the deal seems unbelievable — trust that feeling. Close the tab and find the official website by typing the address directly into your browser or searching on Google.

What to Do If You've Already Entered Your Details

1. Change your password immediately on any account you used on that site
2. Contact your bank if you entered card or payment details
3. Enable two-factor authentication everywhere you can
4. Report the site to Google (search "report phishing Google") to help protect others

Staying safe online isn't about being paranoid — it's about taking 30 seconds to verify before you act. That habit alone will protect you from the vast majority of fake websites on the internet.