November 20, 2023
The shopping season is a time for giving and joy, but it's also a time when cybercriminals are on the lookout for unsuspecting victims. With more of us shopping online even more than before, it's important to be aware of the risks and take steps to protect yourself and your data.
Top 10 tips for safe cyber habits when shopping online during the holidays and throughout the year:
- Unique passwords and multi-factor authentication (MFA). Having unique and strong passwords and multi-factor authentication wherever possible for every account helps to thwart cybercriminals. While our UC Berkeley devices are equipped with Calnet, your personal devices should use MFA as well. MFA adds an extra layer of security to your accounts by requiring you to enter a code from your phone in addition to your password.
Pro tip: Use a password management system. Read about LastPass, a password management system that’s free for anyone with a CalNet ID). - Shop on secure websites. Look for the "https://" prefix in the address bar before entering any personal or financial information. This indicates that the website is using a secure connection. You should also avoid shopping on public “free” Wi-Fi networks, as they are less secure than private networks.
Pro tip: Use a VPN. Read about the bSecure Remote Access VPN (Virtual Private Network). - Be wary of phishing emails and text messages. Phishing emails and text messages are designed to trick you into clicking on malicious links or revealing personal information. If you receive an email or text message from an unknown sender, don't click on any links or provide any information. Instead, go directly to the company's website to log in to your account.
Pro tip: Report any phishing emails and text messages received in your UC Berkeley accounts. - Keep your software up to date. Software updates often include security patches that can help protect your devices from malware and other threats. Make sure to install all software updates as soon as they are available.
Pro tip: Learn what software is available to you through UC Berkeley. - Be careful what information you share online. Don't overshare personal information on social media or other websites. Be especially careful about sharing your home address, phone number, and financial information.
- Stay up-to-date on the latest information security news. Read the Fall Info (In a) Sec Newsletter.
Pro tip: Subscribe to the Info (In a) Sec Newsletter. - Be wary of phishing emails and text messages. Phishing emails and text messages are designed to trick you into clicking on malicious links or revealing personal information. If you receive an email or text message from an unknown sender, don't click on any links or provide any information. Instead, go directly to the company's website to log in to your account.
- Beware of too-good-to-be-true deals. If you see a deal that seems too good to be true, it probably is. Do some research to compare prices and make sure the website is reputable before making a purchase.
Pro tip: Read the fine print. Before making a purchase, be sure to read the terms and conditions of the sale. This includes understanding the return policy and shipping costs. - Use a credit card instead of a debit card. Credit cards offer more fraud protection than debit cards. If your credit card is compromised, you can dispute the charges and your bank will likely refund your money.
- Never leave your device unattended. The physical security of your device is just as important as information security.
By following these tips, you can help protect yourself from cybercrime and enjoy a safe shopping season and experience.