But watch out: Cyber Monday shoppers are cyber criminal targets

Daniel Vasquez on consumer issues Consumer columnist

Didn’t find what you wanted on Black Friday? That’s why the online gods invented Cyber Monday.

Cyber Monday is the busiest online shopping day of the year - falling each year on the immediate Monday after Black Friday. And this year researchers say more retailers than ever - nearly nine out of 10 - will participate with special promotions.

That’s why it’s a great back-up sales opportunity for those items you couldn’t get your hands on during Black Friday. Maybe the items you wanted sold out or you were hoping for a better deal.

Expect some unprecedented offers as retailers and service providers scramble to bring in consumer dollars before year’s end. Check with your favorite retailers’ online sites for the best deals. Local retailers may also offer deals on their Web sites that allow buyers to pick up items at the store.

But Keep in mind, with Cyber Monday comes the increased risk of cyber crime. So it pays not only to take advantage of holiday online bargains, but also to be careful at the keyboard when making purchases.

Because Cyber Monday transactions occur online, cyber bad guys, including fraudsters, ID thieves and those who spread spam and malware, have a particularly ripe opportunity to take advantage of e-shoppers.

Here are some ways to stay crime-free on Cyber Monday:

Stick with sites you know. Now is not the time to go with a site you’ve never heard of. If you can, shop on sites you’ve already used. You can also visit sites dedicated to Cyber Monday deals, such as CyberMonday.com,Bargainist.com and FatWallet.com.

Check the URL address. Only shop online with secure retail sites and make sure the browser shows an address that begins with “https” not just “http.” Do your homework. Look up a product’s information online before Monday, including price, features, warranty, consumer reviews and ratings. Don’t just choose an item based on the lowest price.

Check Web sites repeatedly during the day. Different deals may appear at different times, even better ones later in the day. Check your cell phone for apps that might help you check deals.

Consider more than holiday gifts. Like Black Friday, Cyber Monday is a great time to take advantage of deals to replace important household items, such as a family TV or refrigerator. Or maybe you have been saving up to replace your home entertainment center. Cyber Monday may also be a good time to get gifts for upcoming birthdays or anniversaries.

Source: SunSentinel.com

With the economy downturn this year, merchants have more ads and sales to entice people to get out and shop this holiday season. Whether you are shopping in the store or online, be sure to use the following tips to be safe.

Black Friday
Starting the Friday after Thanksgiving, malls, large retailers like Target and Best Buy, and grocery stores are more crowded than usual with shoppers – and thieves. Security in most places have been increased for the holiday season, but if you are out and about, ensure your safety with these tips from the National Crime Prevention Council:

Keep careful track of your bags and packages. Do not carry more than you can handle. Make frequent trips to your car to unload, and put the bags in the trunk or in a hidden place in your car. If you purchase a large or expensive item, it may be well worth it to drive the purchase home and return to the store for more shopping, instead of risking a break-in.

If you see unattended bags or packages, do not try to take the package back to the retailer on the bag or find the owner. Tell a security guard or store employee, and they will secure the package.

Check your receipts for accurate information. Your full credit card number should not appear on the receipt, but if it does, put the receipt in a safe place so you don’t accidently drop it while shopping. Someone could pick this up and use the information to make unauthorized purchases.

If you shop with children, have a plan in case you are separated. Have a central meeting place, and review with your children who is a safe person to approach, such as a mall security guard. Ensure that each child knows your cell phone number – you may want to print a card with emergency information and put it in your child’s coat or pants pocket.

Guard your money. Take only as much cash as you think you will need, and only take one or two credit cards. Keep your wallet close to you, and not in a large purse that you have to shuffle through every time you make a purchase. Keeping your wallet under your sweater, instead of in a coat pocket, can prevent pick-pocketing.

When getting cash from the ATM or using your debit card at the counter, be sure to guard your PIN number. Stand close to the keypad to block anyone who may be looking over your shoulder.

Be aware of your surroundings and do not walk in abandoned areas alone. Park under a light if possible, and walk in a well lit part of the parking lot if you are shopping after dark.

Cyber Monday
SafeShopping.org is an informational site created by the American Bar Association to help you order safely while shopping online. They offer these tips to prevent identity theft and shopping mishaps:

You can tell the internet connection is secure when there is a picture of an unbroken key or closed lock in your browser window. Either icon indicates that the merchant site is secure and your sensitive information, such as your credit card number, cannot be read by anyone else but the retailer. Make sure that the web address that asks for personal information starts with “https” instead of “http”. Some websites may use a pop up box that indicates a secure area or uses the term “Secure Sockets Layer” (SSL).

The safest way to pay online is by credit card. If your information is stolen and you have an unauthorized charge on your credit card, under federal law your liability is limited to $50. If you do have an unauthorized charge, you should give written notice to both the merchant and the credit card company within 60 days.

Unless you are sure of the address, do not send personal information via email. Email does not offer the same protection as these secure websites. Identity thieves can make up emails that look like secure websites, so if you receive an inquiry for personal information from someone you do not recognize, do not send personal information.

If you are more comfortable giving information over the phone rather than the web, most merchants offer this option. Be sure you record the phone number, company name, date and time of your call, and the name of the person who recorded your credit card number.

If you use a password for orders, make it different than the one you use to log into your computer or network. You may even want to create a special, stronger password that is harder for hackers to crack for web purchases. Do not use birthdates, addresses, phone numbers, recognizable words, or children’s names as passwords, as these are too easy to figure out.

To avoid computer viruses, do not open an attached file that ends in “.exe” as they could activate a computer virus and damage the information stored on your computer. Use a reliable anti-virus software program as well.

Web retailers are not yet required by law to maintain the privacy of people who order from their sites, so they may collect names, addresses, and other information and use these for marketing, or they may sell the information to other merchants and telemarketers. Check to see that the site you are ordering from has a privacy policy that ensures your name does not get sold for spam.

Source: emaxhealth.com

by Larry Magid

Retailers aren’t the only ones gearing up for the holiday season. Criminals are also out in force. To highlight the increased crime during the holidays, security company McAfee has come up with the “12 Scams of Christmas” ranging from bogus electronic greeting cards that deliver malware instead of cheer to fake charities that steal your money and your identity.

It’s especially important to be extra careful this time of year, says McAfee’s David Marcus. “The bad guys know people are spending more time online, they’re paying more bills online so [the criminals] stand a chance of being a bit more successful this time of year.

In a podcast interview (scroll down to listen), Marcus counted down the 12 scams of Christmas starting with:

1. Charitable phishing scams: Marcus warns consumers to be wary of e-mails that appear to be from legitimate charities. Not only will they take your money and deprive charities of needed funds, but they will also steal your credit card information and identity.

2. Fake invoices from delivery services: During this period, scammers will send out fake invoices and delivery notifications appearing to come from Federal Express, UPS, the U.S. Postal Service or even the U.S. Customs Service saying that they were unable to deliver a package to your address. They ask you to confirm your address and give them credit card information to pay for delivery.

3. Social networking friend requests: Bad guys take advantage of this social time of year by sending out authentic looking friend requests via e-mail. Marcus recommends that you not click on those links but sign into Facebook and other services and look for friend requests from the site itself. Clicking on a link could install malware on your computer or trick you into revealing your password.

4. Holiday e-cards: Be careful before clicking on a holiday e-card, especially if it’s from a site you haven’t heard of. This is a way to deliver malware, pop-ups, and other forms of unwanted advertising. Some fake e-cards will look like they come from Hallmark or other legitimate companies, so pay close attention and make sure it’s from someone you know. If you’re going to send an e-card, be sure you’re dealing with a reputable service lest you risk infecting yourself and your friends.

5. Fake “luxury” jewelry: If you see an offer for luxury gifts from companies like Cartier, Gucci, and Tag Heuer at a price that’s too good to be true, it probably isn’t true. These links could lead you to malware and take your money or merchandise that will probably never arrive (or be fake if it does). Some of these sites, according to McAfee, even display the logos of the Better Business Bureau.

6. Practice safe holiday shopping. Make sure your wireless network is secure and be sure you’re shopping on sites that are secure. Though it isn’t an iron clad guarantee, you should look for the lock icon in the lower right corner of your browser and make sure the Web page starts with https. The “s” stands for “secure.”

7. Christmas carol lyrics can be dangerous: Bad guys know that people are searching for holiday related sites for music, holiday graphics, and other festive media. During this time, they create fraudulent holiday related sites.

8. Job search related scams: With the unemployment rate at 10.2 percent, there are plenty of job seekers looking for work. Beware of online offers for high paying jobs or at-home money making schemes. Some of these sites ask for money up front, which is a good way for criminals not only to steal your “set up fee” but misuse your credit card too. Marcus said that some “get rich quick” sites are all about money laundering, asking you to accept an inbound financial transfer and pay them.

9. Auction site fraud: McAfee has observed a rise in fake auction sites during the holidays. Make sure you’re actually going to eBay or whatever site you plan to deal with.

10. Password stealing scams: Criminals use low-cost tools to uncover passwords, in some cases planting key logger software to record keystrokes. Once they get your passwords, they gain access to bank accounts and credit card accounts and send spam from your e-mail accounts.

11. E-mail banking scams: A common type of phishing scam is sending out official looking e-mails that appear to come from your bank. Don’t click on any links but type in your bank’s Web address manually if you need to access your account.

12. Files for ransom: Hackers use malware to gain control of your computer and lock your data files. To access your own data you have to pay them ransom.

Bottom line–Don’t let the eggnog and holiday cheer keep you from using your critical thinking skills when you go online during the holiday season. And, of course, make sure your operating system is updated and that you’re using up-to-date security software.

Source: news.cnet.com

By Jessica Walker

Segment 5

Jessica: The majority of us receive emails from friends and family with a request to send the message to a certain number of people and something extraordinary will happen within minutes.  Is there a chance that malware could be added to your computer or the next persons computer if you pass the email on?

Linda: The email messages themselves aren’t going to hurt you – but if they have attachments, downloads, or links included, and you click or download these your chances of getting malware are very high. Never click on the attachments or links in chain mails. Period. And don’t forward them to others. Forwarding these emails at a minimum clogs email servers (an estimated 93% of all email is spam), worst case you are placing others at significant risk for malware.

Jessica: Is it safe to unsubscribe from an emailed advertisement?  Could malware be added to your computer when you unsubscribe?  Is there a national “do not email” list similar to the “do not call” list?

Linda: If you are currently subscribed to the company that (purportedly) sent the email advertisement and you want to unsubscribe, do not use the link in the email. Use a search engine to find the company’s website - so you know you are really on the legitimate site – and then use the unsubscribe option there.

If the email is not legitimate and you click on the unsubscribe link, you will surely have malware trying to get onto your computer.

If you suspect the email is fraudulent, you may want to report it to the company – larger sites usually have a unique “report spam” email address for this purpose.

There is no national ‘do not send spam email to this account’ list; if there was, it would surely be used to send spam.

Jessica: You worked for Microsoft for 13 years and your book naturally addresses Windows and information pertaining to PC’s.  But, I would like to offer advice to our members that have Macintosh computers.  Macs have built in virus protection but that doesn’t mean they are impervious to criminals.  With that said, what tools do you recommend for our members that have Macs?

Linda: Mac users have traditionally felt safe from malware attacks and they were largely safe in doing so because criminals always go for the biggest opportunity and with Windows dominating over 90% of computers, Apple machines were an edge case. As Apple’s market share increases, so have the threats to Mac computers, and iPhones. Unfortunately, the smugness that some Mac users have felt when watching attacks against the Windows OS has led to very poor adoption rates of security software. This is a real mistake. The security and safety advice I have given remains true regardless of the Operating System you run.

Segment five question:  How should you safely unsubscribe from an emailed advertisement? To submit your answer, click on the contact link found on the upper left side of the blog.