Cyber Monday was created by retailers to encourage consumers to shop online by offering discounts and promotions. With varying degrees of lockdown restrictions active across the country, this year’s Cyber Monday falls on 30 November and is predicted to see higher rates of online shopping than usual.
The pandemic has accelerated the shift towards a more digital world and triggered changes in online shopping behaviours that are likely to have lasting effects. More than half of UK consumers are now shopping online, and UK online spend is forecast to increase 29.6% between now and 2024, according to retail analysts at GlobalData.
Now more than ever, it’s important to take precautions in order to stay safe online. Therefore, we’ve put together an ‘online toolbox’ with five tips to help you stay safe online during Cyber Monday and beyond.
1. Strong Passwords
We all understand the need to have a strong password, but do we really know what that means? The National Cyber Security Centre’s advice is to create a long password by using three random words. The longer and more unusual your password is, the stronger it becomes and the harder it is to hack. You can make it even stronger with special characters, such as using a passphrase, for example: Thisisan3xampleofastrongpass.
A strong password reduces your risk of compromise, even if your password is known. It’s critical that your passwords and accounts are not subject to brute force attacks (guessing), and that they aren’t reused across multiple websites. For example, don’t reuse your Facebook password for your Amazon account.
Tools
- Password Strength Testers analyse how safe your passwords are.
- If you’re worried your password or email may have been leaked, you can perform a free check on Have I Been Pwned.
2. Legitimate Websites
During Cyber Monday and in the run up to the holiday season, you should be wary of deals that seem too good to be true, as they usually are! Don’t be lured into clicking “free” offers and disclosing too much information to websites that seem untrustworthy.
Tools
- You can use tools such as ‘isitphising’ and ‘wheregoes’ to find out the types of websites you’re planning to visit before you even click the link.
3. The Padlock
Have you noticed the padlock that is present on almost all websites? It’s usually located on the left-hand side of your browser bar. The padlock symbol represents websites that have a valid certificate and are usually trustworthy. Alongside this padlock is the URL of your website beginning with httpS, not just http – the S stands for Secure! If the website doesn’t have a padlock and isn’t using HTTPS, our advice would be to stay well away!
Tools
- You can use websites like SSL Shopper to check the authenticity of your Padlock (certificate).
4. Using Antivirus and System Updates
Did you know that the ransomware WannaCry attack that affected the NHS and many more in 2017 could’ve been prevented by a patch released by Microsoft two months prior? It’s important ensure your machine is updated with the latest security patches to prevent new vulnerabilities. There is a reason your IT department asks you to restart your computer and ensure all updates have been installed.
Use of antivirus is imperative to detecting and defending you when connecting to the internet. A computer without antivirus is an open-door invitation to attackers and even free antiviruses are better than no antivirus at all.
Tools
- You can find a list of reputable free antiviruses.
5. Virtual Private Networks (VPN)
A VPN will create a secure (encrypted) tunnel so that nobody else is able to snoop on the information that is passing through your connection. Be cautious of connecting to a free public Wi-Fi as the signal could be coming from a different location. Even if you’re working from home, the use of a VPN is a good idea to safeguard your passwords, card details and other personal information.
Tools
- You can see a list of free VPNs, but premium options are also available.
If you’re concerned your organisation could be at risk, get in touch with one of our Cyber Security experts on bd@gemserv.com.
Explore our cyber security capabilities here.