In my previous article, I advised you on how to protect yourself against attempts to steal your money while shopping online. I promised to analyze another problem – how to find shops you can trust and recognize those you can’t.
There are many e-shops and online markets on the internet. Some have a perfect reputation, some do not. From time to time there is a headline in the papers about “another fraudulent website” followed by speculation of how much money was actually stolen. How do you screen the good shops from the bad ones? Let us start with a few tips:
You can generally trust
- Well-known and long established online shops
- Shops your friends recommend to you, based on their experience
- Shops with professional-looking websites and working customer support
Be careful when
- A shop offers goods too cheap – for example a new iPhone for $20
- Websites with limited functionality and errors
- A shop hosted in some unusual country – check the domain name in the address bar
- Respond to offers sent via spam
- Initiate shopping when you get the alarm from avast! Antivirus, or the web-browser for that e-shop
Beside those tips you can use some crowd-sourced reputation service where people visiting that shop can cast a vote about their experience. This can be very useful. Having a lot of positive feedback is a good sign you can trust the shop in question. Mixed, negative feedback signal potential troubles. When there is limited or even no feedback at all, it means the shop is brand new or not widely used. When you come across a shop like that, be very cautious – most of the fraudulent webs have a short lifespan.
There are two reputation services I can recommend you. The first is our avast! Online Security browser plugin which is a part of avast! installation. The second widely used and reliable is Web Of Trust.
Speaking about the reputation, I have one warning for you. The reputation some shops present about themselves can easily be a product of forgery. When you visit a fraudulent site, it will probably be overfilled by fake positive reviews to lure more victims. Trust the reputation and references from friends or independent sources.
How to pay
When using a smaller online shop, unlike the well-known big ones, it is generally a good idea to not give your credit card details directly, but to use some payment service such as PayPal. In this way you can pay for the goods or service without exposing your crucial information. Another option is a pay-on-delivery service. I would be personally very reluctant to trust my credit card to a shop I have seen for the first time in my life. If such a shop accepts only directly entered credit cards, I would rather go buy somewhere else.
There are many threats lying in wait for internet users. Stay protected with avast! Antivirus and please, be cautious about where you conduct online transactions. One last thing – please, share these tips; the topics discussed in these two articles are still new for many people, and you certainly don’t want to see your friends or family members falling victim to cybercrooks.
Enjoy the upcoming shopping season!
Thank you for using avast! Antivirus and recommending us to your friends and family. For all the latest news, fun and contest information, please follow us on Facebook, Twitter and Google+. Business owners – check out our business products.
Seasonal shopping fever starts with Black Friday and Cyber Monday in a few weeks, but we’ve already seen terrific sales offered online by retailers getting an early start. Every year more people make their purchases online, with the intention of saving time and money and avoiding the crowds. There are, however, some people who love the shopping season for different reasons. These are people we all want to avoid – Cybercrooks. They study our shopping behavior with one thing in mind – to take advantage of us for their own profit. Here are a few tips to lower your risk of falling victim to cybercrooks.
Protect your credit card well
The most important rule is to protect your credit card. While shopping online, the only information you generally need to authenticate a payment are the numbers written on both sides of your card. Along with the PIN code, these are crucial for the security of your banking account. Be very careful who you entrust with them.
- Never let anyone write down your card number or take a photo of it
- Never send those credentials by email, SMS, or tell them over the phone
- Never give your card to a website you do not trust or which does not use a secured (encrypted) connection
- Process your credit card data only from a clean (without malware infection) computer
- Limit the maximum value payable over the internet at your bank
Some of the points mentioned above require in-depth explanation. Let’s take a closer look at them. Read more…
They say that you can never have too much good advice. So in addition to the excellent set of Safe Holiday Shopping Tips we provided last week, here are three more simple rules of the road for safe and worry-free online experience this holiday season.
1. You can do more online and through mobile; just don’t do it differently. Doing more of what you normally do isn’t as much a risk as doing different things than you normally do. Try not to change your actual behavior, even though you’re doing more shopping and browsing online and through mobile. The less you stray from your normal habits, then the less likely you’ll encounter malicious sites, apps, or messages, and the less you’ll fall victim to fraud and other scams.
2. Scrutinize unusual messages. Be wary when receiving unsolicited or odd messages – even from people you know – and be especially wary if you do decide to act on them. Just like email viruses used to troll your address books, today’s malware will access your social networks. An odd message through your social network may well mean that your friend has been hacked. There will be plenty of scams and attacks that purport to be great last-minute deals, fake holiday cards that ask you to forward along to all your Facebook friends, confirmations or verifications for transactions you never made, and even fake warning messages about scams to avoid. All of these are just different attempts to get you to click on a link.
3. Don’t log in on a page you got to from an outside link. If a message takes you to a login page for a service that you use, look closely at the URL before entering your credentials. Better yet: just go to the site using your bookmarks or standard “www.xyz.com” address rather than signing in on the page you got to from a link.
Black Friday offers deep discounts and enticing deals, but holiday shoppers who venture out into the cold, dark night must have brave hearts, steely resolve, and pointed elbows. Far away from the crowds of frenzied shoppers, those of us who prefer to shop online, wearing our fluffy bathrobes and drinking hot chocolate, face our own set of dangers.
Here are some online shopping tips to help you remain safe and secure:
Choosing the Merchant
- Stick with what you know – Use websites that you know are legitimate. If you visit an unfamiliar one, check the avast! WebRep rating to make sure it’s trustworthy. A quick search for reviews, complaints, or scams related to the site will help you too.
- Make sure the site is secure – Look for the closed padlock icon on your browser’s address bar or a URL address that begins with shttp or http. This indicates that the purchase is encrypted or secured. Read more…
Turns out that the popular online shoe and clothing retailer was attacked by cybercriminals who gained access to parts of the internal network through one of the servers in Kentucky. One Sunday, Tony Hsieh, CEO of Amazon-owned Zappos wrote on the company blog that 24+ million customers were affected, but critical credit card and other payment data was not affected or accessed. The hackers failed to get payment card numbers, because that data is encrypted, as required by the Payment Card Industry Data Security Standard.
The company sent an email to every one of their customers explaining the situation including what information was stolen: Customer name, email address, billing and shipping addresses, phone number, the last four digits of customers’ credit card number, and/or cryptographically scrambled passwords.
Zappos took swift action by expiring and resetting passwords, and they set up a password change webpage for customers to create new ones. “We also recommend that you change your password on any other web site where you use the same or a similar password,” the email sent to affected customers states.
As a result of stolen credentials, phishing attacks that try to steal sensitive information like social security numbers or lead you to a website that attempts to install a virus, are more likely. “As always, please remember that Zappos.com will never ask you for personal or account information in an e-mail,” the blog statement says. “Please exercise caution if you receive any emails or phone calls that ask for personal information or direct you to a web site where you are asked to provide personal information.”
avast! EasyPass is a fast, easy way to manage all your passwords. avast! EasyPass generates strong, unique passwords for every site you visit – with just one click. The best part is that you access your passwords using one Master Password, so you don’t have to remember lots of passwords. Learn more about avast! EasyPass.
Black Friday, the day after Thanksgiving and the busiest shopping day of the year, starts at midnight November 25th with mega-sales running throughout the weekend. Cyber Monday, the online retail equivalent to Black Friday, is the time when many consumers, who didn’t want to fight the crowds over Thanksgiving weekend or failed to find what they were looking for, shop online that Monday from home or work.
“For our US friends especially, this weekend is when retailers, offline and online, offer the best deals of the year,” said Jindrich Kubec, senior virus analyst at the AVAST Virus Lab. “It’s also when cybercriminals become hyperactive with scams and fraudulent offers.”