The holiday season is upon us, and alongside the magic of Christmas comes the pressure of secure online shopping for presents for your loved ones.
The holiday season is a busy time for many, so it’s no surprise that people plan to save time and effort by skipping store queues and shopping for Christmas presents online, often during their evenings or lunch breaks at work.
Of course, cybercriminals are also aware that it’s high season for online shopping. As a result, it’s vital to be aware of what to look out for when using your credit card online, filling your digital shopping cart, and potentially even using your work computer or mobile phone to do a spot of Christmas shopping.
We’ve compiled 10 tips for secure online shopping to help you safely browse for and buy your Christmas gifts.
1. Always follow your company’s IT policy
Before anything else, make sure to check whether your company has rules regarding the use of work equipment for personal business. Many workplaces have policies that prohibit or restrict such uses, and, of course, they must be respected.
2. Only use well-known and trustworthy online retailers
It’s a good idea to stick to well-known websites or the official online shops of specific brands whose products you want to buy. Check that the URL is correct, as scammers often create fake websites with addresses that mimic the real websites they are aping. You can also check with rating sites such as Trustpilot – remember that the ratings are user-driven and can also lead you astray.
Bonus: Check the security of the websites you visit.
Any website that deals with e-commerce should use a secure connection, such as TLS or SSL. You can check for this by looking for a URL that starts with ‘https’ (with ‘s’ standing for ‘secure’). A padlock icon should also be next to the URL in your browser, indicating that the page is secure. However, be aware that this alone does not guarantee credibility.
3. Avoid saving payment information
Avoid storing your payment information locally in the browser of a work or home computer, as the information may potentially be accessible to others with access to the device or could be misused in the event of a security incident. Additionally, online retailers may ask to save your payment details to save time on future orders – choosing not to save your information can keep it safe in case of a future breach on the part of the retailer, and you may want to consider this even if you plan on using the same website frequently.
4. Avoid installing extra software or plugins
Never install any purchase-related software, browser extension, or plugin on your work computer or mobile. These can potentially compromise your company’s security systems, break IT policies, or put your computer at risk.
5. Be extra cautious of phishing attempts and/or fake websites
Keep in mind that any security incident on your work PC, such as phishing, can potentially affect other parts of the company as well. Pay attention to whether the sender seems trustworthy and avoid clicking on links in unexpected emails, such as those notifying you about packages you didn’t order.
6. Stick to a minimum of personal use
Limiting the amount of personal online shopping and other personal activities you perform on your work PC reduces the risk that you will inadvertently compromise the company’s network and data.
7. Be careful with suspiciously low prices
If the price of an item is significantly lower than usual or than that found on competing retailers, it is often a sign that the site is fake, untrustworthy, or sells counterfeit goods. Compare the price with other retailers to assess whether the offer is legitimate.
8. Beware of pop-up offers and links in emails
Scammers often use pop-up ads and spam emails to lure people into visiting their pages. Avoid clicking on links in emails where you are not 100% sure the sender is trustworthy, and carefully check the URL to ensure the website address is correctly spelled. If you have any doubts, go directly to the website via your browser rather than clicking the link.
9. Check the return and refund policy
Read the store’s return and refund policy carefully before making a purchase. Many fake online stores have either a non-existent or very restrictive return policy. This can be a sign that it is either a fake website or that it will be difficult to get your money back if you run into any issues.
10. Consider using a virtual payment solution
Payment methods such as PayPal, MobilePay, virtual credit cards, or credit cards with fraud protection can provide an additional layer of protection. Many of these payment services are more secure than paying by debit card and often have additional security features. It also makes it easier to get your money back if something goes wrong.
Remember to keep your wits about you when shopping online, and common sense should trump a suspiciously good deal. If you accidentally fall prey to any of the above or experience any other suspicious activity—such as strange pop-ups—you should immediately contact your IT department, as it may be a sign that your PC has been compromised.