When the headlines are filled with new hacking cases, ranging from the cyber attack on Israel’s El Al airline and national stock exchange to the compromised information on online superstore Zappos, it might make you feel like it’s time to give up the Internet altogether. But let’s be honest; you’d never survive. So instead of swearing off the magical tool completely, you just need to know how to keep your information safe, especially when you’re providing personal information when shopping online. If you’re one of the 24 million Zappos customers, change your password pronto like they told you to do and then move on to these 5 steps to keep yourself safe from identity theft.
Trust your gut
Just like you wouldn’t go into a store at the mall that you don’t recognize and seems a little off to you, don’t shop at stores online that give you a bad feeling and appear shady. If at any time during the shopping or checkout process you feel like the site is asking for too much personal information, just quit the transaction and leave the site. You may hate to leave behind a really good deal, but the money and time you could lose if someone gets your credit card information will definitely cancel out the benefits of a sale price. If the site looks like it was designed in the ’90s, has a weird address, or fills your screen with pop-ups, just forget about it.
Be extra careful if you’re on a mobile device
Smartphones can basically do everything a computer can do nowadays, but that doesn’t mean they are as protected against threats as your desktop. Most phones aren’t equipped with the anti-virus software that you have on your computer, so it’s easier for criminals to get malware on your mobile device that could help them steal information you enter. The shortened URLs that are often used because they’re more phone-friendly can also trick you into visiting a risky site since it’s harder to tell whether it’s secure or trusted. There’s also the risk of your phone being stolen, so make sure it’s password protected so any information you may have stored on it isn’t easily accessed.
Don’t use public Wi-Fi to shop
Anytime you enter personal information using a public network, you’re setting yourself up for identity theft. Most Wi-Fi hotspots don’t encrypt your data, so any hacker at your neighborhood Starbucks or wherever you’re sharing Wi-Fi can basically just pluck your identity out of the air if he has the right software. This applies to cell phones, too, since you’re often using nearby Wi-Fi. Be aware when you’re using a hotspot that any information you send through the Internet could be picked up by strangers; if it’s information that could make you vulnerable, wait until you get home to your protected network. It may be less convenient, but it’s much safer.
Check your credit card statement frequently
Using a credit card is really the only smart way to shop online. If you buy something from a scam site using a debit card, check, or cash, there’s no way to get your money back. If you use a credit card, the card companies have to reimburse you for fraudulent charges under the Fair Credit Billing Act. But they can’t always catch purchases you didn’t make or receive, so it’s up to you to keep an eye on your statements. If you see something fishy on your statement, just contact your credit card company to dispute the charge and possibly get a new card so the charges won’t continue.
Use a virtual credit card number
If you just have to have something on a site you’re unfamiliar with, there’s a neat little thing called a virtual credit card number that allows you to shop online without exposing your real account number. Several banks offer these kind of temporary credit card numbers that allow you to set the amount and time frame for a purchase and then send you a card number to use online. You minimize the damage since the number will expire relatively quickly and has a lower maximum spending amount and your real credit card number is still secret. At the very least, limit your online spending to one traditional credit card so the damage and hassle is contained to one credit card company if you do get hacked.