The Shopping Online Centre, the place to start your UK online shopping
The Shopping Online Centre promoting the benefits of shopping online and detailing the latest offers and deals that are available from over 600 online shopping companies.
security tips and advice ~ online shopping security ~ internet shopping security ~ shopping frequently asked questions
Home Advanced Product Find Dell PC, Laptop Offers Mobile Phones Travel Garden Women's Clothing Electronics Home Appliances

You are in:- Security
STORE & SERVICES
DIRECTORY
Advice & Help
Art, Posters, Gifts
Auction Sites Online
Books
Business (B2B)
Career & Jobs
Charities
Children & Babies
Clothing & Fashion
Computers
Dating
DIY
Education and Training Courses
Electrical
Electrical Spares and Accessories
Food & Drink
Furniture
Gambling
Games & Toys
Gas & Electricity Suppliers
Gifts, Flowers, Adventure Days
Health (Pharmacy) & Beauty
Holidays - Accommodation
Holidays - Train, Ferries, Car & Car Hire
Holidays - Flights
Holidays - Packages
Home & Garden
Insurance
Internet, Broadband & ISPs
Kitchen
Loans & Credit Cards

Mobile Phones
Motoring
Music, Films, CDs, DVDs and Games
Pet Shops and Insurance
Photography
Property and House Sales
Software (PC & Games)
Sports & Fitness
Telephone (Landlines)
Travel by Car
Weddings
Wines, Drinks & Food

SECURITY Frequently Asked Questions

For your Information - We do not send out any mail from the "webmaster@shoppingonlinecentre.co.uk" account; any such mail received from this address should not be opened or read as it may contain viruses emanating from other internet servers or PCs that may have been compromised. Protect your computers with Antivirus and Firewall software (find Symantec products within our product search).

Is the Internet really a safe place to undertake transactions?

Yes, as long as you take the appropriate measures outlined below. As with other shopping methods, retail stores, markets, telephone, mail order, there is always a risk, albeit small, of being affected by fraud. However, by purchasing via your credit card, many banks pledge to cover any losses due to Internet fraud.

 

Back to Top

Can I make transactions more secure?

Yes, if you have a Visa Card. Visa have introduced a new service called "VERIFIED BY VISA".
Verified by Visa lets you shop online with added confidence. Through a simple checkout process, Verified by Visa confirms your identity when you make purchases at participating online stores. It's convenient, and it works with your existing Visa card.
Plus, Verified by Visa is easy to use. You register your card just once, and create your own password. Then, when you make purchases at participating online stores, a Verified by Visa window will appear. Simply enter your password and click submit. Your identity is verified and the purchase is secure.

To activate Verified by Visa in your Visa card, or to learn more, contact the financial institution that issued your card.

Back to Top

How do I know that my PC to host computer link is secure?

Industry standard SSL (Secure Sockets Layer) technology should be used for the encryption of all sensitive data such as credit card information or information required for quotations. The use of this will be indicated within the status bar at the bottom of the screen of most browsers.
Use a web browser that uses 128-bit encryption like Internet Explorer 5.0 or version greater or Netscape Navigator 6.0 or greater version.
When you visit or enter that part of a secure Website, it automatically sends you its certificate, and commences a secure connection. (A certificate is a statement verifying the identity of a person or the security of a Website.)
When this occurs, there are 2 ways to confirm you are in a secure environment:
1) The web address will start with https://… rather than http://….
2) In the bottom of your browser window, a padlock will be displayed.
For more information, see you browser help files.

Back to Top

How should a password or memorable word be configured?

To help you remember your password or memorable word, try to link it with events, places or names that are personal to you.
However, to make it harder to guess or break, it should be: -

  • At least 6 characters or more
  • Contain numerals as well as alpha characters
  • If the host system allows, use one or more symbols such as <>?@:;#!"£$%& somewhere within it
  • If the host system is case sensitive, a mix of uppercase and lowercase letters
  • Try substituting letters with numbers, e.g. o with 0, i with 1 to make them memorable but different!

    Please do not write passwords down.

Back to Top

How is data held by suppliers protected?

Under the terms of the Data Protection Act, all suppliers must observe a stringent duty of care to protect your information and ensure that it is stored properly and correctly.

They must treat all your personal information as private and confidential (even when you are no longer a customer). They must not reveal your name and address or details about you to anyone, including other companies in their group, other than in the following four exceptional cases when they are allowed to do this by the Act:

  • If they have to give the information by law.
  • If there is a duty to the public to reveal the information.
  • If you ask them to reveal the information, or if you have given then your permission; beware of tick boxes on forms and if this is an "opt in" or an "opt out"!
  • If it is in their interests to give the information but they will not use this as a reason for giving information about you or your accounts (including your name and address) to anyone else including other companies in their group for marketing purposes."

Back to Top

Viruses and Mobile Code Attacks

A Virus or Mobile Code Attack is a program that typically replicates itself across machines and networks, and can be distributed via e-mail. This code may be malicious or sometimes it is benign.
Malicious code's purpose may be to cause havoc by corrupting a PC or your system by deleting files, Data modification, theft of UserIDs and/or passwords or even modem redirection to use an expensive call number.
Benign code inflicts your computer but causes no damage to the computer or network.

Back to Top

How do I remove a virus?

If you install an anti-virus program it usually has two purposes, one to scan and delete any existing viruses and the other is to maintain that it is free from any future attacks. It is extremely important that you check for viruses regularly to help ensure you keep your PC as clean and free from viruses as possible and that you maintain and keep your antivirus software and definitions up to date at all times. Good suppliers will update definitions as soon as new viruses are identified and regular downloads to your software will keep you protected.
Contact your local computer retailer who can provide you with advice about purchasing a suitable anti-virus program and how to set it up and how use it.

Back to Top

Hackers

Some hackers may try and access a person's PC directly by using 'Trojans' (a software used by hackers). This software can be used, for example, to copy the keystrokes, and therefore, the information that a person enters via the keyboard - this could include any kind of personal documents or indeed any personal details. Although 'Trojans' can be used by hackers for fraudulent means this is fortunately not yet widespread, however, with the advent of Broadband and greater Online usage, hackers are more likely to find your computer on the network and infiltrate your machine without you knowing unless you have a personal firewall.
A state of the art firewall protection will deter hackers and protect your system. Please contact your local computer retailer who can provide you with advice about purchasing a suitable firewall program, most are easy to set-up and use.

Following the advice given in these guidelines should help reduce the likelihood of hackers accessing your personal documents or account information. Just like in an unsafe neighbourhood, you need locks for the windows, doors, and a front gate, as well as an alarm system in case someone gets by the locks. It is recommended that you have antivirus and firewall protection software and that this is kept current at all times.

Back to Top

What do I do if I get an unknown email?

If in doubt, do not open any unsolicited emails if you are unsure about who has sent it. If you receive such an email, simply delete it without opening it. Again, a good antivirus program will inform you of a virus before the email is presented to be opened and make you PC more secure.

What is a fraudulent email?

A fraudulent (spoof) email pretends to be from a well-known company, such as a Bank, Auction Site, etc., in an attempt to get personal information from you. People who send spoof emails hope to use your information - such as credit and debit card numbers or account passwords - to commit identity theft and obtain goods, services or money using your details.

To prevent spoof from affecting you, look at emails closely. Spoof, or "phishing," emails - and the spoof websites often associated with them - are deceptive in appearance. However, they contain content that reveals they're fake. The most important thing to do to protect yourself is be able to spot this misleading content.

10 ways to recognise fake (spoof) emails

  1. Generic greetings. Many spoof emails begin with a general greeting, such as: "Dear 'Company' member." If you do not see your first and/or last name, be suspicious and do not click on any links or buttons.
  2. A fake sender's address. A spoof email may include a forged email address in the "From" field. This field is easily altered.
  3. A false sense of urgency. Many spoof emails try to deceive you with the threat that your account is in jeopardy if you don't update it ASAP. They may also state that an unauthorised transaction has recently occurred on your account, or claim your financial institution is updating its accounts and needs information fast.
  4. Fake links. Always check where a link is going before you click. Move your mouse over it and look at the URL in your browser or email status bar. A fraudulent link is dangerous. If you click on one, it could:
    • Direct you to a spoof website that tries to collect your personal data.
    • Install spyware on your system. Spyware is an application that can enable a hacker to monitor your actions and steal any passwords or credit card numbers you type online.
    • Cause you to download a virus that could disable your computer.
  5. Emails that appear to be websites. Some emails will look like a website in order to get you to enter personal information. Financial Institutions never asks for personal information in an email.
  6. Deceptive URLs. Only enter your Financial Passwords on secure financial pages. These begin with https://....
    • If you see an @ sign in the middle of a URL, there's a good chance this is a spoof. Legitimate companies use a domain name (e.g. https://www.company.com).
    • Even if a URL contains the name of your financial institution, it may not be their site. Examples of deceptive URLs include: www.barclays_secure.com, www.barclay1.com.
    • Always log in to your financial institution by opening a new web browser and typing in the URL of the company or using your favorites/bookmarks previously stored.
    • Never log in to your financial institution from a link in an email
  7. Misspellings and bad grammar. Spoof emails often contain misspellings, incorrect grammar, missing words, and gaps in logic. Mistakes also help fraudsters avoid spam filters.
  8. Unsafe sites. The term "https" should always precede any website address where you enter personal information. The "s" stands for secure. If you don't see "https," you're not in a secure web session, and you should not enter data.
  9. Pop-up boxes. Your financial institution will never use a pop-up box in an email as pop-ups are not secure.
  10. Attachments. Like fake links, attachments are frequently used in spoof emails and are dangerous. Never click on an attachment. It could cause you to download spyware or a virus. Your financial institution will never email you an attachment or a software update to install on your computer.

Back to Top

Address links in emails and Using?

To help keep your personal information safe, we recommend that you never enter your credentials (username, e-mail address and/or password) at a site you reached by clicking a link in an email. Instead of clicking the link, copy the address and paste it into the address bar in your web browser. Thus you know the link you are using and not a possible hidden address or URL within the email.

Back to Top

What information should I not put in an email?

Never ever disclose personal details (such as date of birth, mothers maiden name, your online banking detail, passcodes, passwords or any other banking information) in an email. Emails are not secure and are not normally encrypted. They can be copied or forwarded to anybody and remain in email servers within the internet!

Remember, reputable companies will never ask for your details, financial information security
Also, if you register a password with one or more organisations, only use common passwords where if compromised, their is no risk to any financial loss or privacy. Beware of companies that email your password back to you to encourage use of their systems, they compromise that password you have so cleverly chosen and so closely guarded!

Back to Top

What is phishing and identity-theft ?

Phishing is the use of fraudulent e-mail messages and/or spoofed Web sites-two common forms of phishing-to trick you into sending personal information, such as a credit card number, account details and particularly passwords to an identity thief. Once they have these details, they act like you to empty your accounts or buy items using your money. Never give out personal information and especially passwords to others. Those needing these details such as your Bank already knows these details and would never ask you to provide them back.

Microsoft has an excellent Video on Phishing scams and identity-theft scams. Watch the video to find out more about phishing e-mail scams and how they are used for identity theft. You'll also learn three things you can do to protect yourself from being hooked by a phishing scam. Visit http://www.microsoft.com/athome/security/email/phishing/video1.mspx.

Back to Top

Back to Top
Sponsored Links
Verified by Visa ~ password configuration ~ memorable word configuration ~ information in emails ~ protect PC
©2002-2008 Efficiency Solutions Ltd
Advanced Product Find Other Links Why Shop Online? Who we are Legal Security Site Map Home