Cyber CEO: 7 Tips to Stay Cyber Safe While Online Holiday Shopping

November 23, 2021

As many people start cautiously re-entering the world, I think it's safe to say that many of the changes the COVID-19 Pandemic caused will remain. We all knew e-commerce was becoming one of the major players in the way people shop and access goods and services, but no one could have imagined the explosion of online shopping that resulted from the pandemic. And the rate is only increasing ! The SalesForce Shopping Index reports an 11% increase in global online shopping in Q3 of 2021.

With an increase in online activity comes an increase in the risk of cyber threats. While individuals tend to be the initial victim of online shopping attacks, users are increasingly doing online shopping on corporate devices or networks, leaving enterprises extremely vulnerable. Companies and individual consumers alike should be aware of the risks of online shopping and the best practices to mitigate vulnerabilities, identify threats, and address attacks. Never has this been truer than now.

The holiday season is officially upon us. I know - where did the year go ?! I digress... It's time for Black Friday sales and holiday shopping - a time that is already often overwhelming and stressful. My gift to you this holiday season is a list of tips that will help you as a customer avoid adding cybercrime to that long list of stressors. Now you can focus on what you're going to get for that impossible to shop for person instead !

Whether you're taking advantage of the early Black Friday deals or getting a head start on your holiday shopping, good cyber hygiene begins with awareness and education. Here are some online shopping tips to stay cyber secure this holiday season.

Shop on Secure Sockets Layer (SSL) Certified Sites Only

Legitimate websites will always be encrypted with a Uniform Resource Locator (URL) that begins with “https:” and a padlock icon. An SSL certificate verifies an organization’s identity and ensures an encrypted connection between the website and the server. Without these security measures, cybercriminals can more easily access the personal information and data you enter on the website.

Use Your Credit Card

Your credit card or PayPal account offers more protection if you are the victim of a cyber-attack because they are not directly linked to your bank account and provide insurance for theft. Leverage these far less risky options to pay for your online shopping instead of your debit card.

Update Your Devices and Software

Cybercriminals exploit known vulnerabilities in apps and devices in order to gain access to networks and/or steal sensitive data. Before making any transactions, ensure the apps and devices you use are running the most current software to ensure vulnerabilities are addressed and patched.

Avoid Public WiFi and HotSpots

While convenient, public networks are usually not secure, especially to make transactions with sensitive information like when you're looking to online shop. If you must use one to make a purchase, use a Virtual Private Network (VPN) to keep your information protected.

Verify Email Offers and Shipping Confirmations

Avoid clicking on links sent by email. Cybercriminals have become increasingly sophisticated when developing email phishing scams to collect your sensitive information and data or install malware on your devices. Whenever possible, go to the company website to confirm promotions and deals and to check the status of your online orders.

Use Your Personal Device 

It is becoming increasingly common for employees to use corporate devices for personal purposes like online shopping. While doing so may be convenient, this can lead to both individuals and enterprises being vulnerable to cyberattacks. To mitigate this risk, enterprises can ensure employees are aware of cybersecurity protocols and employees can do their best to separate the use of personal and corporate devices.

Be Wary of Ads and Fraudulent Online Shops

Many shoppers are starting to look for holiday shopping inspiration online. While you can get some great ideas there, many threat actors have started setting up fraudulent websites using copied images. When shopping on a lesser-known brand's website confirm it is a real business - Google reviews that aren't on the website, see if there is a social media following, look for legitimate activity. When in doubt - don't shop on a fishy website.

The holiday season can be chaotic and distracting in the best of times, but in a time that has seen a significant increase in cybercriminal activity and has had more than its fair share of distractions, we encourage both individuals and enterprises to maintain vigilance and practice good cybersecurity hygiene as you celebrate this holiday season. 

To Your Success,

To learn more about how Herjavec Group is advancing the security profiles of enterprise organizations around the world, click here.