Author

Topic: [Security Awareness] Online payment transactions. (Read 228 times)

legendary
Activity: 2268
Merit: 18711
September 30, 2019, 01:49:48 PM
#8
Since all our passwords are stored in our home computer and we cannot access them offsite.
With KeePass you can install it on multiple devices and copy your database between devices. You can even carry the database around on a USB stick which you could plug in to other devices. If that's too much effort for you, then you can use something like Bitwarden and automatically sync your passwords across devices using either their server or hosting your own server.

Some people may suggest to install the same password manager on another computer but then most public computers will not allow this facility too.
You should never be logging in to anything on a public computer. You have absolutely no idea what kind of security (or lack thereof) is present, what malware is present, if the owner/admin is monitoring your keystrokes or screen capturing, what their internet security is like, and so on. If you log in to anything on a public computer, you should consider it immediately compromised.
hero member
Activity: 2506
Merit: 645
Eloncoin.org - Mars, here we come!
Instead use a password manager such as KeePass to generate and store a different high entropy password for every login you have. Do this once, and provided you don't get hacked, you will never need to change your password again.

One thing which annoys me from using password managers is that they allow you to create complex passwords which human being cannot memorize or remember. This is good to the extent if you are using a single laptop / desktop but sometimes we have to check our emails or bank accounts  when we are not at home. Since all our passwords are stored in our home computer and we cannot access them offsite.

Some people may suggest to install the same password manager on another computer but then most public computers will not allow this facility too.
sr. member
Activity: 2366
Merit: 305
Duelbits - $100k Bonus/week
  • Change password regularly.
This does not have a make sense if you don't know how to keep your password in a secure place.
This is not a similar case to OP, this is about my friend who always changes the password on his Facebook account, a time comes he forgot and he did not recover because of no Gmail and No phone number.

You can read this article in addition to OP's statement.
Here are seven tips for safe online transactions.
1] Use advanced anti-malware program. ...
2] Watch out for security vulnerabilities in your PC. ...
3] Make sure you are using a secure connection. ...
4] Deal with reputed websites only. ...
5] Use credit cards for online shopping. ...
6] Do not use public computers. ...
7] Set a strong and complex password.
legendary
Activity: 2268
Merit: 18711
If you want to go full old school, you could randomly generate your own passwords and then use a piece of paper to keep it safe.
Sure, but now you have to protect the piece of paper. You have to carry it around with you if you want to access any of your accounts on the go, and it is far easier for an attacker to steal a piece of paper than an encrypted password manager. KeePass also provides some protection against keyloggers, which manually entering your passwords from paper does not. You also have a far higher chance of making a mistake.

Human beings are also very bad at being random. Unless you are using a truly random generator of entropy, such as flipping a coin, then anything you generate yourself will not be random.
hero member
Activity: 1526
Merit: 596
Change password regularly.

Look for “https” in the URL when you click the “lock” icon it will display that site is using secure socket layer of or “SSL”
Changing your password regularly doesn't achieve very much if you use weak, human-generated passwords, and reuse the same password across multiple sites (as most people do). Instead use a password manager such as KeePass to generate and store a different high entropy password for every login you have. Do this once, and provided you don't get hacked, you will never need to change your password again.

Similarly, rather than looking for https and being prone to forgetting, everyone should be using the extension HTTPS Everywhere at all times. There is no reason not to:

https://www.eff.org/https-everywhere
https://addons.mozilla.org/en-GB/firefox/addon/https-everywhere/
If you want to go full old school, you could randomly generate your own passwords and then use a piece of paper to keep it safe. I'm not fully sure about offline password managers, but I believe if they have access to your PC, they'll be able to get access to that app as well.

Via the payment option, there are services online which can help a lot with this, basically they generate you a new credit card and then limit usage of that card to a certain amount per month - this basically means you can never get hacked for a lot of money, and also helps with budgeting, and not exposing your true credit card info to other sites.
legendary
Activity: 3234
Merit: 5637
Blackjack.fun-Free Raffle-Join&Win $50🎲
Since this forum is dedicated to cryptocurrency, I think it is necessary to separate the transactions that are performed in crypto and in fiat. We know that in most cases payments in crypto are irreversible, which means that the caution in such transactions should at least be doubled. Not only by checking if we are sending funds to the right address, but also to whom we are sending, whether this person has any reputation, feedback or maybe accepts escrow.

Paying online using fiat is much safer then paying with crypto especially if we use a service such as PayPal which protects the customer and acts as an escrow. By using PP user can protect privacy and money, all required when purchasing is user e-mail associated with PP account.

Paying directly by using bank cards can be safer if we use extra cards for such purpose, and in time we need to pay something just transfer funds from the main bank account to card for online buying.

Regarding SSL, this should not be an indication that the site from which we are purchasing something or leaving the data is secure, any web site today can have SSL, and it can be obtained for free.
legendary
Activity: 2268
Merit: 18711
Change password regularly.

Look for “https” in the URL when you click the “lock” icon it will display that site is using secure socket layer of or “SSL”
Changing your password regularly doesn't achieve very much if you use weak, human-generated passwords, and reuse the same password across multiple sites (as most people do). Instead use a password manager such as KeePass to generate and store a different high entropy password for every login you have. Do this once, and provided you don't get hacked, you will never need to change your password again.

Similarly, rather than looking for https and being prone to forgetting, everyone should be using the extension HTTPS Everywhere at all times. There is no reason not to:

https://www.eff.org/https-everywhere
https://addons.mozilla.org/en-GB/firefox/addon/https-everywhere/
sr. member
Activity: 1330
Merit: 326
This security awareness for online payment is intended for beginners and other members who are not still aware of this

  • Protect your Personal Information.
  • Don’t share your personal information to untrusted online web transactions.
  • Clear the cache memory, temporary files, and browsing history from your computer or mobile devices.
  • Change password regularly.
  • Share personal information only through reliable online banking features.
  • Look for “https” in the URL when you click the “lock” icon it will display that site is using secure socket layer of or “SSL”
  • Don’t disclose your login credentials to unauthorized requestor.
  • Use two factor authentication.
  • Ensure authentic application are downloaded for payment from AppStore or GooglePlay.
  • Download legitimate mobile application from official listed sites Google Play or AppStore.
  • Look for “authentication tags” such as top developer badge from app listing.


Keep safe always fellas.

Code:
Reference:
https://bitpinas.com/feature/cybersecurity-awareness-safety-tips-online-payment-transaction/
Jump to: