Proactive Security - Part 3: Financial Transactions
Precautions for important financial transactions
I always use a separate, secure computer for online banking and other critical financial transactions. In one location it's an old PC updated to Windows 7, and in another an even older PC running Windows XP.
Of course, both of these computers also have the security setup I've outlined in parts 1 and 2.
I also encrypt all the passwords and financial documents that I store on those on those computers. I use TrueCrypt, but there are alternatives. TrueCrypt lets me go one step further and use Portable Firefox from within the TrueCrypt volume (encrypted container) so that no temporary files containing personal details are ever exposed.
Cyber-muggers love to booby-trap bank, broker and other websites where they can steal important passwords, etc. So I implement the precautions outlined in the parts 1 and 2 of this security plan — good security software, keeping Windows patched, etc. — even though I never use my "green" computers for anything but important business.
By the way, there's a serious "gotcha" to watch out for if you use a router. Computers normally trust other computers connected to the same local area network. That means your secure computer could be attacked by any other computer on the LAN — say a guest computer connected by WiFi, or one connected by Ethernet that is used for wide-ranging adventures online. ;-)
Unless you know how to set up your router or the firewall of your secure computer so that you're absolutely sure it is blocked from any and all other computers on your local network, turn them off or disconnect them from your network before you start the secure one. Windows 7 makes it easy to block other computers if you don't need to network between them.
Credit card precautions
I don't trust most online entities with my credit-card details. Millions upon millions of credit cards are compromised each year through attacks on large and small retail and financial entities. There are only a few places where I put my credit-card information at risk, and then only when I have some confidence in the entity, and it's too clumsy to do otherwise.
I use PayPal for most online payments instead. Many online retailers, etc., accept PayPal payments directly. For those that don't, you can get one-time, one-place credit card numbers with a PayPal Plug-In. You can also get one-place, multi-use numbers from them for recurring payments. You're protected from third parties. Some banks and credit-card issuers offer similar services.
By law, credit cards are well protected (debit cards aren't, but some banks protect you anyway). Card issuers are anxious to keep you hooked, so you're not likely to lose money from credit-card fraud. You can still be greatly inconvenienced if one of your cards is compromised though. For example, credit card details can be used as the first step in identity theft. :-(
More on the web about secure PC precautions
How to avoid being robbed by your PC
Consider Linux for Secure Online Banking
Avoid Windows Malware: Bank on a Live CD
- • backup is security job one
- • develop your "web smarts"
- don't get hooked
- guard against spyware
- be careful with email
- fear attachments
- surf safely
- • tighten security settings
- windows
- browsers
- email clients
- • defense tools and software
- firewalls
- hardware firewalls
- anti-virus
- anti-spyware/-malware
- all-purpose security suites
- • patch and upgrade software
- • bonus: double your security
- • test your protection
- • protect your privacy
- • WiFi security