4 Reasons Why It's Almost Impossible to Shut Down Online Scams

Header

Author: James Greening

July 21, 2022

Modern internet technology has made it incredibly easy for anyone to create a new website and sell products or services online. While this is certainly a boon for professionals, artists and businesses, it has also proven to be a blessing for cybercriminals who desire to cast their nets far and wide. In a report published in 2021, ScamAdviser highlighted that 3% of the 7,000,000 domains analyzed were very likely to be scams.

To create a fully-functioning website, one must utilize the infrastructure provided by various companies. For example, to set up and run a successful online shopping store, the following are required:

  • A domain name must be purchased from a domain registrar. This is the ‘name’ of the website, eg. scamadviser.com
  • Server space must be purchased from a hosting provider. This space is where the website ‘lives’.
  • A payment gateway service must be integrated to collect payments.
  • Ad campaigns must be run on an advertising platform to generate website traffic.

There are hundreds of companies providing these services and a website owner may utilize the service of any of the companies. In the case of ad platforms, however, Meta (Facebook/Instagram) and Google are dominant players. Other parties such as banks and courier companies are also involved but they have a smaller part to play in the scam ecosystem. 

Who Can Take Down a Scam Website?

As there are multiple parties involved in supporting a scam website to continue operating, it would seem that approaching even one of the service providers with a complaint should be enough to have a scam website taken down. For example, 

  • the domain registrar and hosting provider both have the power to suspend the website.
  • The payment gateway service can suspend the payment service, making it impossible for the scammers to receive payments.
  • The advertisement platform can suspend the ad account, preventing the scam online store from getting customers

In reality, it turns out to not be so easy…

Why is it Almost Impossible to Shut Down a Scam Site?

It is not necessarily a lack of power to suspend the operations of scam websites that makes them seemingly impossible to take down; there seems to be an unwillingness by the internet companies too.

The internet is self-regulated and the responsibility of taking action against scams falls on the shoulders of internet companies themselves. Further, companies often have ‘reactive’ policies instead of ‘proactive’ ones, meaning that they are willing to take action only after obtaining satisfactory evidence that a scam has occurred, even if a brand new website shows obvious indications of being a scam. Why is this so?

Scammers are Paying Customers

Self-regulation is a tricky situation due to the often overlooked fact that scammers are paying customers of internet companies. Scammers pay monthly or annual fees and often create websites in bulk. They also spend enormous amounts of money on advertising their scams. 

Domain registrars, hosting providers, payment providers and even ecommerce store-building platforms like Shopify are making a fair share of money from scammers and happily continue to do so. Proactively fighting scams would be a resource drain and also negatively impact their profits. Therefore, there is no financial incentive for companies to fight scammers.

Supporting Scammers Does Not Hurt Their Reputation

Most victims of online scams are just average people looking for products and services online. They do not possess the savvy to know that scammers are taking the help of tech companies. At ScamAdviser, we often see customers blaming Facebook for scamming them by allowing fake ads to run, or they may blame PayPal for allowing the scammers to steal money. The truth is that there are several lesser-known parties involved in making scams possible. 

In our Bad Boys of the Internet 2021 report, we published the names of the companies whose services are most used by scammers. These include internet giants such as NameCheap, GoDaddy, CloudFlare, Amazon Web Services, Alibaba Cloud Computing and many more. The average internet user is likely to have never heard about these companies. 

As a result, the companies supporting scammers do not risk their brand names being damaged as few in the general public are aware that these companies are associated with scams. 

Inefficient Reporting Systems

Scammers use automated scripts to create hundreds of websites daily to replace the ones being taken down. Unfortunately, scam websites cannot be reported with the same ease as they tediously have to be reported one website at a time. The companies also put the burden of proof on victims, asking for documentation such as proof of purchase and even court orders just to take action against a single website.  

Below are real responses from NameCheap and GoDaddy when they were requested to take down confirmed scams. While their demands are not completely unreasonable, it is simply not possible to provide communication proof and court orders for every website. 

It should also be noted that scammers are savvy and have working email IDs and virtual addresses, thus easily outsmarting NameCheap.

GoDaddy, on the other hand, bluntly responded that the victim should seek the help of law enforcement instead of asking them to take down the site.

There is inadequate action taken against scam ads too. The UK consumer rights organization Which? reported that Google had failed to remove 34% of the scam adverts reported to it and Facebook 26%.

Victims Do Not Report Scams

Most victims are unaware of where and how to report a scam. Victims who try to report scams and receive disappointing responses like the above will never bother to report a website again. This results in a vicious circle, where victims do not report scams to tech companies as the process is cumbersome and ineffective, while companies say they will not take action unless a scam is reported to them.

How to Make the Internet Safer?

Well-structured Know Your Customer (KYC) processes can help internet companies become much better at keeping scam sites at bay. For example, the Danish .dk registry was able to reduce the number of online stores selling fakes by 80% in one year by just asking for an ID.

Unfortunately, forcing hosting providers, registries, and registrars to have more stringent KYC processes seems a lost cause. If there are a few “bad boys” in the market, scammers will just flock to these players.

As of now, there is no simple and straightforward mechanism available for taking down scam sites quickly and at scale. We hope that consumer protection agencies, internet companies and international law enforcement can work in tandem to devise methods to make the fight against online scams more effective. 

Meanwhile, it is up to consumers to be aware of scams and avoid them; “Buyer beware!”, as they say. Read the below articles to learn how you can protect yourself from online scams. Don’t forget to Check ScamAdviser Before You Buy.

Report a Scam!

Have you fallen for a hoax, bought a fake product? Report the site and warn others!

Help & Info

Popular Stories

As the influence of the internet rises, so does the prevalence of online scams. There are fraudsters making all kinds of claims to trap victims online - from fake investment opportunities to online stores - and the internet allows them to operate from any part of the world with anonymity. The ability to spot online scams is an important skill to have as the virtual world is increasingly becoming a part of every facet of our lives. The below tips will help you identify the signs which can indicate that a website could be a scam. Common Sense: Too Good To Be True When looking for goods online, a great deal can be very enticing. A Gucci bag or a new iPhone for half the price? Who wouldn’t want to grab such a deal? Scammers know this too and try to take advantage of the fact. If an online deal looks too good to be true, think twice and double-check things. The easiest way to do this is to simply check out the same product at competing websites (that you trust). If the difference in prices is huge, it might be better to double-check the rest of the website. Check Out the Social Media Links Social media is a core part of ecommerce businesses these days and consumers often expect online shops to have a social media presence. Scammers know this and often insert logos of social media sites on their websites. Scratching beneath the surface often reveals this fu

So the worst has come to pass - you realise you parted with your money too fast, and the site you used was a scam - what now? Well first of all, don’t despair!! If you think you have been scammed, the first port of call when having an issue is to simply ask for a refund. This is the first and easiest step to determine whether you are dealing with a genuine company or scammers. Sadly, getting your money back from a scammer is not as simple as just asking.  If you are indeed dealing with scammers, the procedure (and chance) of getting your money back varies depending on the payment method you used. PayPal Debit card/Credit card Bank transfer Wire transfer Google Pay Bitcoin PayPal If you used PayPal, you have a strong chance of getting your money back if you were scammed. On their website, you can file a dispute within 180 calendar days of your purchase. Conditions to file a dispute: The simplest situation is that you ordered from an online store and it has not arrived. In this case this is what PayPal states: "If your order never shows up and the seller can't provide proof of shipment or delivery, you'll get a full refund. It's that simple." The scammer has sent you a completely different item. For example, you ordered a PlayStation 4, but instead received only a Playstation controller.  The condition of the item was misrepresented on the product page. This could be the