These tips will help keep you safe no matter what you're doing online or where you're doing it.
Ensure that a web site is secure and is what it claims to be before entering personal information.
Online shopping and banking are convenient for all of us, including criminals. Attackers can create malicious websites that appear to be legitimate and will try to trick you into accessing them instead of the real website you intend to visit or log in to. Use the following tips to make sure the site you're accessing is legitimate and your information is being encrypted before entering sensitive information like bank accounts, credit card numbers, or passwords:
- Use reputable sites that are known to you. If you are unsure about a source, type the address directly into your browser instead of clicking on a link in an email or on a web site.
- A legitimate, secure site will use secure sockets layer (SSL) to encrypt information. Signs that a website is secure include a URL that begins with "https:" instead of "http:" and a padlock icon. If the padlock is closed, the information is encrypted. The location of the icon varies by browser; for example, it may be to the right of the address bar or at the bottom of the window.
- Click the lock to get verification of the web site’s identity. Information about the site owner and the certificate authority that issued the SSL certificates should be displayed. If you are unsure, search the web for information on the authority.
- If you are still unsure, don’t use the website.
Be wary of re-directions from search engines or other sources
If you are expecting to arrive at one website and end up at another, back up and make sure you are not being redirected.
Watch your browser’s address bar (where you type the website you intend to go to) and see if it flashes to a different address quickly, then another, before bringing you to the page. This could be a sign of unwanted redirection. When in doubt, just exit and relaunch your browser.
Always practice wireless safety with public hotspots.
- Only use trusted hotspots (wireless access points). Make sure you know who owns the connection you are trying to access.
- Enable the personal firewall on your computer. Microsoft Windows users have a personal firewall installed.
- Turn off your Android/iPhone's built-in Wi-Fi when you aren't using it or you may be auto-connecting to nearby wireless access points - plus it saves your battery! You should also disable the option to "automatically join new networks" on your device, setting to ask for confirmation first instead.
- Secure your wireless network at home by configuring WPA2 security which enables encryption and a password for your network. WEP is a less secure, but still viable option if WPA2 is not available. If you are in an area with many Wi-Fi hotspots or a lot of residents physically near your Wi-Fi network, consider not broadcasting your SSID (network name).
- Public networks that are available at places such as Starbucks, McDonald’s, and Panera are unsecure and susceptible to “sniffing” by criminals. This means that they may see sensitive information that you transmit like passwords and credit card numbers. Use of these networks is not recommended for doing anything that requires a login. Some of this risk is removed by using a VPN (Virtual Private Network) to encrypt your connection.
Use hillspot secure wireless at Stonehill, not guest.
The hillspot secure wireless network is encrypted so information sent over the network cannot be intercepted by anyone else.
The guest wireless network is unsecure, and information sent over this network is in plain text. This means that software may be used by anyone to read all of your transmissions.
Additional resources: