Shopping online is a convenient way to get what you want when you want. It’s also much less expensive than going to the store or mall. However, you should be aware of some risks involved with shopping online before making your purchase. We’ll discuss how cyber security best practices can help keep your information safe during holiday shopping.
1. Update your software and devices
Most cyber crime is related to outdated hardware and software. For example, older operating systems are easy targets for ransomware because they cannot be updated with the latest security patches. Obsolete hardware may not have all the updates necessary to protect you from malicious sites or bots. Such updates may be available only be managed IT services like Microsoft and Apple. IT security experts recommend keeping your computer and mobile devices updated with the latest security patches and system updates.
2. Use a virtual private network
A virtual private network, or VPN, helps keep your data secure while you’re browsing online. VPNs encrypt all web traffic passing between your computer and the VPN server, which masks your IP address among thousands of others on the network. No one can identify that it’s you making online purchases or accessing other sensitive information because they see just an encrypted string of numbers instead of your real IP address.
3. Don't use public Wi-Fi
Most public wifi networks aren’t encrypted, which means that anyone who wants can see what you’re doing online while using this network. This includes hackers trying to steal your information by installing malware on your device. While it may seem convenient to browse online while out shopping or at a restaurant, don’t do it unless you’re using the hotspot from your provider. And even then, try not to use any sensitive sites such as shopping, banking or websites where you might be asked to provide your login and password. Instead, just use it for things like social networking that don’t require you to enter personal information.
4. Be suspicious of anything that is "too good to be true"
Cybercriminals will often use an email address that appears similar to a trusted institution or company to trick you into giving out personal info. For example, if you get an email from what looks like Paypal asking for your login and password because there’s something wrong with their system, don’t believe it. Legitimate companies would never ask for this information through email. Also, watch out for emails claiming that there are problems with your account that require you to give them more information to solve the issue. If you suspect anything suspicious about an email regarding your account, don’t click on any links in the message or enter any information. Instead, look for a number in your email’s header called the “Return-path” and call whatever company it’s linked to confirm whether they sent you an email about this issue.
5. Use a strong password
Make sure you create a strong password for your accounts, such as an alphanumeric combination of upper and lower case letters, symbols and numbers, between 10 to 20 characters long. It’s also wise to change your password frequently. When creating passwords think of something difficult enough for others to guess but easy enough for you to remember. This may be the most challenging part about creating strong passwords since it needs to be difficult for humans but easy enough that you can recall it quickly.