Do you know your phishing from your fishing? Can you tell when your connection’s not secure? Are you as safe as you think when online shopping? Find out by taking our quiz.
Should you use public Wi-Fi for online purchases?
Your use of public Wi-Fi can be intercepted by cybercriminals with a 'man in the middle attack' which intercepts the data you pass on to an eCommerce website.
Public Wi-Fi isn't really secure enough to share sensitive data, even if you needed to ask for a password first. Whilst no internet connection completely secure, public Wi-Fi spots are some of the most dangerous.
Pick out the link which is NOT owned by eBay
You'll know a website's true domain by the last set of characters before the .com, .co.uk, etc.
Some eCommerce websites use sub-domains (a second word or phrase where ‘www’ would normally appear), they still end in the company’s name. In the above example, the domain ‘ebay.deals.co.uk’ is not an eBay domain, but by 'deals.co.uk’. Cybercriminals will use this technique to trick you into handing over your details.
Pick out the email which IS from Apple
Complex email addresses should raise your level of suspicion, but aren’t necessarily fraudulent.
You may receive legitimate marketing emails from a range of email addresses, some of which catch your eye. Cyber-criminals pray on your complacency and will use similar characters and variations to make it nearly impossible to tell these addresses apart from the authentic addresses. If you are in any doubt, don’t click anything, and don’t call phone numbers from within the email.
Which of these trust seals guarantees you are filling in a form securely?
Whilst trust seals are an easy way for legitimate eCommerce businesses to demonstrate their commitment to security, it’s very easy for cyber-criminals on fraudulent websites to upload and use the very same images.
These trust-seals are a marker of security on a website you already trust.
Which of these web addresses is secure?
The padlock in your browser’s address bar signifies that the website has an SSL certificate, which means the transfer of your data is encrypted and secure.
You should expect to see ‘https’ at the beginning of an eCommerce website whenever you fill out an online form. No other signals, including pop-ups or messages on the website can be trusted in place of an SSL certificate.
What should you do if you think you’ve been scammed?
All of these answers are correct!
Contact the police, attempt to make contact with the company to check their validity, alert your bank and contact Action Fraud to ensure the best protection if you've been caught out by a cybercriminal.