For years, nearly anyone who is online has shopped through a web browser. And now nearly 3 out of 4 internet users do some banking online. And while banks and retailers have gotten better at protecting your private financial information, online criminals have gotten savvier at stealing it.
As we prepare for the holiday season, we thought we’d review a few smart tactics to make sure that the only one who is spending your money is you.
1. Make sure your PC is patched and protected.
This is a standard piece of advice we always share but it’s especially crucial for people who rely on their PC for their financial transactions. Keep your PC updated with the latest system, application and security software. Our free Health Check makes this easy. With an updated and protected PC, you’ll avoid more than 99% of the trouble you might face online.
2. Go directly to the site
When you’re shopping online, it’s always best to stick to retailers you know and trust. Go to the site directly and search there. Avoid clicking on links in your email to go to a store or your bank so you don’t end up at a scam site. If your bank contacts you with a problem, go to the site on your own, or just pick up the phone and give them a call.
3. Look for the “s” in “https:”.
Only enter your information in if you see that extra “s” in your URL. It stands for secured and it’s an extra layer of protection that keeps your account information private.
4. Shop and bank when you’re secure.
Only shop when you know you’re on a network and a PC that’s protected. A computer in an Internet cafe may have a keylogger that tracks your credit card number or password. An open “free Wi-Fi” network, may be convenient. But it’s also risky for shopping or banking. If you use your smartphone or tablet to shop or bank, make sure you have security software on it that includes anti-theft protection that will you allow you to deactivate your device if you lose it. That way when you lose your phone you don’t lose control of your money.
5. Check your accounts.
Try to limit your online shopping to one credit card, and make sure you check that account on a regular basis. Make it a weekly chore to check your account statement and your bank account. Then you’ll be ready to contact your institutions as soon as you notice a problem. The longer a criminal has access to your account, the more trouble they can do–of course.
With these few precautions, you can worry less about your security and more about what you’d actually like to buy.
Image credit: Images_of_Money
On Tuesday Apple announced its latest iPhone models and a new piece of wearable technology some have been anxiously waiting for -- Apple Watch. TechRadar describes the latest innovation from Cupertino as "An iOS 8-friendly watch that plays nice with your iPhone." And if it works like your iPhone, you can expect that it will free of all mobile malware threats, unless you decide to "jailbreak" it. The latest F-Secure Labs Threat Report clears up one big misconception about iOS malware: It does exist, barely. In the first half of 2014, 295 new families and variants or mobile malware were discovered – 294 on Android and one on iOS. iPhone users can face phishing scams and Wi-Fi hijacking, which is why we created our Freedome VPN, but the threat of getting a bad app on your iOS device is almost non-existent. "Unlike Android, malware on iOS have so far only been effective against jailbroken devices, making the jailbreak tools created by various hacker outfits (and which usually work by exploiting undocumented bugs in the platform) of interest to security researchers," the report explains. The iOS threat that was found earlier this year, Unflod Baby Panda, was designed to listen to outgoing SSL connections in order to steal the device’s Apple ID and password details. Apple ID and passwords have been in the news recently as they may have played a role in a series of hacks of celebrity iCloud accounts that led to the posting of dozens of private photos. Our Mikko Hypponen explained in our latest Threat Report Webinar that many users have been using these accounts for years, mostly to purchase items in the iTunes store, without realizing how much data they were actually protecting. But Unflod Baby Panda is very unlikely to have played any role in the celebrity hacks, as "jailbreaking" a device is still very rare. Few users know about the hack that gives up the protection of the "closed garden" approach of the iOS app store, which has been incredibly successful in keeping malware off the platform, especially compared to the more open Android landscape. The official Play store has seen some infiltration by bad apps, adware and spamware -- as has the iOS app store to a far lesser degree -- but the majority of Android threats come from third-party marketplaces, which is why F-Secure Labs recommends you avoid them. The vast majority of iPhone owners have never had to worry about malware -- and if the Apple Watch employs the some tight restrictions on apps, the device will likely be free of security concerns. However, having a watch with the power of a smartphone attached to your body nearly twenty-four hours a day promises to introduce privacy questions few have ever considered.
Our Freedome VPN service hit a new milestone this summer. We added our newest location in Paris, France and now have 11 nodes in 10 different countries: Canada (Toronto) Finland (Espo) France (Paris) Germany (Sachsen) Italy (Milan) Netherlands (Amsterdam) Spain (Madrid) Sweden (Stockholm) United Kingdom (London) United States (East Coast) United States (West Coast) That means regardless where you are in world, you can pick any of these locations to mask your whereabouts and use any of the services you love. Freedome also acts a VPN to encrypt your data so a free Wi-Fi network is safe for private transactions along, and it includes anti-virus, anti-tracking, and anti-phishing. It's been localized into 10 different locations and will soon be available for iOS devices. If you travel -- our just want your phone to think you're traveling -- this is the kind of protection you need. Get it now from the Google Play or iTunes store. Cheers, Sandra, [Image by jvieras via Flickr]
This May, the GameOver ZeuS botnet made history by becoming one of the largest botnets ever seized by law enforcement. Unfortunately, it's back at work. BankInfo Security's Mathew J. Schwartz explains: Nearly three months after the FBI, Europol and Britain's National Crime Agency launched"Operation Tovar" to successfully disrupt the botnet used to spread Gameover ZeuS, the malware is making a global comeback. Gameover ZeuS is a Trojan designed to steal banking and other personal credentials from infected PCs. At the time of the May law enforcement takedown, the FBI estimated that between 500,000 and 1 million PCs worldwide - one-quarter of them in the United States - were infected by the malware, which the bureau says was used to steal more than $100 million. Our Security Advisor Sean Sullivan notes that "there isn't a 'flood' of new GoZ variants". F-Secure Labs has looked at the recent threats and one of our experts has a theory about their origin. Our analyst most familiar w/ GameOver ZeuS just took a look at the latest GOZ samples. His verdict: it's very clearly the work of Slavik. — Sean Sullivan (@5ean5ullivan) August 27, 2014 Find out the latest about GoZ from Sean and Mikko Hypponen on 5 September in Threat Report Webinar live from Helsinki at 10:00 AM EST. What should you do? Our Online Scanner detects both new and old GameOver Zeus variants. Check your PC for free now. Cheers, Jason [Image by delunula dot com]