November 18th, 2007, 08:14 PM
Online Retail Security
I read up on how to protect your transactional data on the web and realized that the moment you make a purchase online, the security of that information is out of your hands. In the online retail sector, how do I know a retailer is taking enough steps to keep my information secure?
November 18th, 2007, 08:23 PM
Hey Sara, welcome aboard. There are alot of variables when it comes to security, especially with e-commerce. You have local security, ie: ensuring your system doesn't have any logging software or monitoring software like keyloggers or other various rat's or trojans.
Then you have trust security, where you as a user are basing your trust in the website in question.
For example - you're browsing across a website that hyperlinks ebay.. or what appears to be ebay.
You click on the link and it takes you to loginebay.com - visually the websites resembles ebay.com to a T, however it is a mimic'd fake website which upon entering your login details, will archive these details and then possibly direct you to the official ebay website. You've entered your details into a database without even knowing it.
This is just one of various scenarios that come into play. There are other areas like XSS to watch out for - but in general - ensure thatthe URL is the correct URL for the website. Also install a phishing filter for whatever web browser you are using.
Be weary about websites that are not well known or legitimate looking. If in doubt, a quick google of the website will usually spill back results on whether it's legit or not.
Common sense is usually the best practice for purchasing online. It is very safe, provided you be on your toes for scams.
November 18th, 2007, 08:26 PM
I am sorry to have to tell you Sara: "you don't"
For example does "TK MAX" mean anything to you?
So, what do you do? well, I buy stuff online (NOT e-bay, that is for lusers as far as I am concerned) and use a particular credit card that I have set up for just that purpose............... minimum credit line
And if anyone tells you different they are liars, so don't vote for them in the next presidential elections either.
EDIT: On the other hand, passing a CC over the counter in a store is possibly just as risky?
Not a new problem:
Last edited by nihil; November 18th, 2007 at 08:34 PM.
If you cannot do someone any good: don't do them any harm....
As long as you did this to one of these, the least of my little ones............you did it unto Me.
What profiteth a man if he gains the entire World at the expense of his immortal soul?
By apollovega in forum Newbie Security Questions
Last Post: July 29th, 2004, 04:21 AM
By SDK in forum Miscellaneous Security Discussions
Last Post: July 22nd, 2004, 11:05 PM
By nihil in forum The Security Tutorials Forum
Last Post: December 24th, 2003, 02:04 AM
By thirstybrain in forum Programming Security
Last Post: May 22nd, 2003, 07:27 AM
By xmaddness in forum Miscellaneous Security Discussions
Last Post: October 2nd, 2002, 09:32 PM