Wednesday, December 12, 2007

Secure Shopping

Below are some tips to follow for a safe online shopping experience.
Update your software. Before you shop online, ensure you have the most current security softwareupdates available for your operating system, applications and browser. Set your default settings to “auto update.”

Know who you are doing business. You are safest when doing business with a reputable company. If you are not familiar with the company, use a search engine to investigate customer reviews of the seller. Consider Web site rating software or toolbars, or consider using Web site rating services or product locator services on the Internet. Be wary of unrealistic low prices that seem too good to be true. They may be an attempt to trick you into clicking on a malicious link.

Ensure “pay online” transactions are secure.

  • Be sure “https” or “shttp” appears in the Web site’s address bar when you are ready to provide payment information.
  • Look for logos from organizations that feature trusted or credential Web sites like BBBOnline, TRUSTe, or Verisign.
  • Use credit cards to pay for online purchases because they usually offer theft, fraud, and vendor non-performance protection. Debit cards have less protection as the money is deducted immediately from your account, and you must pursue refunds or recovery of funds individually.
  • Do not send financial payment or credit card information through email.
  • Do not provide bank account or Social Security numbers to complete an online transaction. Be wary of anyone who requests this type of information online.
  • Do not perform online transactions from a public computer or kiosk.
  • Do not use your browser to store password or credit card information.
  • Do not enter personal information in a pop-up screen. Legitimate companies, agencies and organizations don’t ask for personal information via pop-up screens.
Understand the Web site’s “privacy policy.” Read the Web site’s privacy policy. How will the companyuse your personal information? Be suspicious if a Web site’s privacy policy is nonexistent. Research and understand what the seller does with your private information. If you can’t find this information,shop at another Web site.
Use strong passwords. When creating passwords for online accounts, use at least eight characters, with numbers, special characters, and upper and lower case letters whenever possible. Don’t use the same password for online shopping Web sites that you use for non-shopping Web sites or for computer programs on your local computer. Never use obvious passwords or share logins and passwords.

Check your credit card and bank statements regularly.
Check or reconcile your credit card and bank statements regularly. Immediately report any anomalies or transactions you didn’t make to your credit card company or bank.

Use temporary account authorizations when available
. Some credit card companies may offer virtual or temporary credit card authorization numbers. This kind of service gives you use of a secure and unique account number for each online transaction. These numbers are often issued for a short period of time and cannot be used after that period. Contact your credit card company to see if they offer this service.

Share your online shopping knowledge with family and friends.
Take the knowledge you gain from this Security Tip and talk about it with others. The more you share these tips, the safer and more secure we all can be.

General Shopping Tips:
Understand the “terms” of the transaction. When shopping online,understand the terms of the transaction, including incentives, shipping and/or handling costs, return or exchange policies and timelines, restocking or return costs, product quality claims, minimum purchase limits, etc.
Keep a good paper trail. Keep copies of all transactions including the product description, price, the online receipt, and any emails you exchanged leading up to and including the transaction.
For more online shopping information visit:

Federal Trade Commission:
OnGuard Online:
Stay Safe Online:

Tuesday, October 9, 2007


One of the tools that I am a big fan of is a link validator. I use McAfee's SiteAdvisor. One of the main reasons to use on is to validate links such as in a Google search through a trusted source in this case McAfee, that the linked sight can be trusted. Trusted sites have a green check and so forth. Other uses include: "... (warning) you before you interact with a dangerous Web site. Traditional security products focus on trying to clean up problems after they occur. McAfee SiteAdvisor also complements and enhances your existing security software by detecting threats which traditional security products often miss, including spyware attacks, online scams, and sites that spam you."

While i am not recommending our endorsing McAfee products in general (as this is the only McAfee product I use) I am recommending that users use some way of validating the security of web content before viewing it and SiteAdvisor works for me.

Thursday, October 4, 2007


October is Cyber Security Awareness Month (as every worthy cause or any cause for that matter now needs and awareness month) to that end Linn county is hosting forums/workshops for parents and teens to learn more about protecting them selves on line. More info can be found at I have also posted links to the right of organizations that I belong to NCSA and MSISAC both of which deal with the topic of keeping kids and families safe on line In addition to resources found at my employers website. I have also started to put together my own list of content filters and web monitoring tools when it is finished I will make them links on this blog.

Update- I have added some more links to the right and included "The Parents Guide to Cyberbullies" (pdf) and other information about "cyberbulling".