Your Road to Financial Solutions

December 2018 eNews
Table of Contents
Holiday Spending Tips
 
Another Benefit of Membership
 
Save to Win Winner - October
 
Online Shopping Safety Tips
 
Holiday Skip-A-Pay
 
Proud to Promote Within
 
Costco Fall Frenzy
 
Visit Our Website
Loans
Rates
Contact Us
Hours & Locations
Share this email:
Forward To Friend Share on Twitter Share on Facebook
Return to All Articles
woman shopping online
It is that time of year where so many people prepare to purchase gifts for friends, family, and loved ones. Though it can be convenient to avoid the lines and rush for the latest Black Friday deal by shopping online, this also carries some risk. Cyber-criminals are always working to steal your personal and payment information and the holiday shopping season is the perfect opportunity for this to happen. By following a few key practices, you can greatly lower your chances of becoming a victim of identity theft or fraud.

Choose Trusted Online Retailers and Apps

Always shop only with trusted online retailers. That means using a retailer you already know or one that is verified through another trusted entity. If you find a new possible shop to do business with, but are unsure about its reputation, try to find reviews from trusted sources because there are several ways to fake online reviews, and there are places where cyber-criminals can pay other criminals to post positive reviews. Even though an untrusted site might have the best prices, it is worth it to use a trusted online shop that is known to safeguard your financial information and purchases.

The same advice applies when downloading apps to help with your online shopping. Whether you are downloading a store app to get a coupon, a deal aggregator app to comparison shop, or a reward app that ensures you get points or cash back, it is important to stick to trusted apps from known developers. Unfortunately, fake apps appear in the app stores, purporting to be from a trusted source while other apps exist to capture your data without providing the services they claim to support. You can avoid many malicious apps by downloading your apps from Google Play, Apple App Store, Microsoft Store, or another trusted platform, selectively choosing which apps to download, and making sure you carefully read the permissions and app reviews.

Secure your Device, Connectivity, and Accounts

Keep your devices up-to-date, especially those you shop and bank with - Simply updating the device that you use for conducting your online shopping is a key cyber-security practice. By keeping the device up-to-date with current patches and software, you ensure you have the manufacturer's latest security fixes in place.

Never use a public computer when shopping or banking - Using a public computer, like those found at libraries, can expose you to greater risk. It is best to use a trusted home device and network for anything involving financial transactions.

Never shop or conduct banking on unencrypted or public Wi-Fi - It is best to always conduct financial transactions or log on to sensitive accounts via a trusted Wi-Fi network. Ideally, this should be from your home network, which should require a password and use WPA2 encryption.

Look for the lock icon on your browser - When a site has a lock icon on the browser window or in the URL bar, it indicates that your communications with the site are encrypted. If you do not see a lock, look for "https" at the beginning of the URL, as this is the same thing as the lock.

Check out as a guest - By checking out as a guest, you prevent the online retailer from storing your personal account and financial information. This minimizes the amount of information that could be lost if the retailer is compromised. If you have or need an account with a retail website:
  • Use a strong password - Be sure to use a strong, unique password. Always use more than ten characters, with number, special characters, and upper and lower case letters.
  • Don't save your payment information with retailers - If you have an established account with a retailer, do not store your payment information with them. In case of an account compromise, stored payment information may allow a criminal to make purchases using your financial information.
Be Wary of Fraudulent Emails and Advertisements

Look out for suspicious or unexpected emails - A common tactic of cyber-criminals year round is to send fraudulent emails seeking to get you to click a link or open an attachments. When it comes to this time of year, they may make an email look like it contains tracking information for a shipment or a promotion for a store. The link or attachment might download malware or try to get you to enter your user credentials in a convincing, yet fraudulent login screen, so they can steal your password. Always avoid clicking direct links in emails, and if you receive an email with a tracking number in it, head to the shopping carrier's website in your browser and copy and paste the tracking number itself into the site.

Avoid clicking advertisements or pop-up windows of any kind - Advertisements embedded in websites and pop-ups have been known to be compromised by cyber-criminals to distribute malware. It is best to avoid clicking them altogether. To close pop-ups, press Control + F4 on a Windows computer and Command +W on a Mac.
The information provided in the MS-ISAC Monthly Security Tips Newsletter is intended to increase the security awareness of an organization's end users and to help them behave in a more secure manner within their work environment. While some of the tips may relate to maintaining a home computer, the increased awareness is intended to help improve the organization's overall cyber security posture. This is especially critical if employees access their work network from their home computer. Organizations have permission and are encouraged to brand and redistribute this newsletter in whole for educational, non-commercial purposes. Disclaimer: These links are provided because they have information that may be useful. The Center for Internet Security (CIS) does not warrant the accuracy of any information contained in the links and neither endorses nor intends to promote the advertising of the resources listed herein. The opinions and statements contained in such resources are those of the author(s) and do not necessarily represent the opinions of CIS.

Your savings federally insured to at least $250,000 and backed by the full faith and credit of the
United States Government
Our Privacy Policy is available online at Progressionscu.org and has not changed. You may also request a paper copy be mailed to you by calling us at 509.535.0191 or 800.828.8691.
Some of the links contained in this newsletter are to websites not operated by Progressions Credit Union. Progressions Credit Union is not responsible for the content of those websites and the privacy and security policies of those websites may differ from those of Progressions Credit Union.
The information contained in this email (the “Content”) is provided for informational and educational purposes only, without any express or implied warranty of any kind, including warranties of accuracy, completeness, or fitness for any particular purpose. The Content is not intended to be and does not constitute financial, investment, tax or accounting advice or a solicitation to buy or sell securities. The Content is necessarily general in nature and is not specific to you or anyone else.  YOU SHOULD CONSULT YOUR OWN INVESTMENT, TAX OR ACCOUNTING ADVISORS BEFORE IMPLEMENTING ANY ADVICE INCLUDED IN THE CONTENT. By viewing or utilizing the Content, you agree that you will not hold Marquis Software Solutions, Inc., Progressions Credit Union or their affiliates or agents responsible for loss or damages resulting from the Content.