Repost and discussion thread: Online shopping 101

[ingerri]

Thanks for the bump
I wanted to post a question, but I didn't want to be known as that newb who bumps old topics.

Which pre-paid credit card do you guys recommend? All vendors need an address, zip code, exp date, etc associated with that card, and prepaid cards aren't associated with those. I've seen people recommending Vanilla Visa. Anything else to look into? I do not have Bank of America, so their one-time use feature isn't available for me.

I have used vanilla visa, you go to their site and register card with ur zip code and you can use it for online purchases

 

[retired1]

Secure your PC
It's true that having a secure PC is also important. You should use a good anti-malware app and firewall that are proven in benchmark testing to score very highly, and ABSOLUTELY NOT base your choice on advertising or image. Good software is often available free, only missing the support option and extra widgets that most people don't need anyway. For example Avast and AVG score very well as an anti-malware choice, and Online Armor is a real firewall that actually works in both directions. A one-way firewall is not as good because it cannot stop the malware 'phoning home' with your data. These apps are all free; or you can upgrade and get support plus extra bells and whistles.

The drawback to good security is that it involves extra work and hassle. But it's your credit card, and your choice. Just please don't blame everyone else until you have locked down your own system. Spyware is a major industry and they want YOUR data, off YOUR PC.

This can't be emphasized enough. Before pointing fingers at the vendor, you need to ensure your own computer is malware free. Today's malware is very, very good at getting onto your computer. Some malware packages and root kits look specifically for anti-virus packages installed on your computer and deactivate it so the malware can be written to your PC. Just because you have an anti-virus program does not mean you're bug free. Scan often with different tools. Do not rely on your installed anti-virus software to protect you.

Security is something that takes work on the part of the user. And that work should be done often.

 

[Mdsujaan]

The original thread is in the ECF Library: http://www.e-cigarette-forum.com/fo...s-how-works-how-you-can-protect-yourself.html

I have also posted it here in general discussion so that you may post questions and comments and to allow our suppliers a place where they can respond to this subject without breaking any forum rules. As always please keep the thread civil and on topic.

This thread is intended to educate our members on how your credit or debit card is processed and how you can protect yourself from fraud. Much of the information here is basic but we have also received input from several sources, including our ECF Suppliers. Please take the time to read it all because it is an important subject and ECF is attempting to address the subject as a whole here, instead of just bits an pieces of the process.

Lets start off with a flow chart to show the transaction cycle assuming that you are ordering from a supplier that has a properly configured shopping cart on a secure (https://www.cigarsmokes.com/montecristo-edmundo-box-25.html) connection:

As you can see at no time does the supplier have your full credit card information as can be seen by these sanitized screenshots provided by several of our suppliers. As you can see though each is different due to the processor and cart they have something in common, only the last four of your credit card are actually given to the vendor, this is so they can help you identify which card you used.

More screenshots in link form:
imgur: the simple image sharer
imgur: the simple image sharer
imgur: the simple image sharer
imgur: the simple image sharer

Thanks for this valuable information... I really appreciate all the info you share here at ECF provide for us... Thank You again

 

[Barto]

Separate debit card gets a transfer infusion twice a month just for vaping and incidentals. This also serves to keep me on a budget.

Thank you for the wonderful information that really clears a lot of confusion for me!

Thanks for clarifying that

 

[Ipster]

Thanks for the Bump. There's other facets to shopping safely online.
I'm also grateful to ECF, recommending that consumers do what fits thier comfort level
to verify a vendor FIRST. This does become more difficult across intertnational borders.
Does the Website have a clearly posted Terms and Conditions? What type of "contact" information is available should you
require customer service or a return? There's groups of Consumer Advocacy organizations in the USA ranging from BBB to Consumer Affairs.org where a buyer can go to check the overall complaint levels and more.

http://http://www.safeshopping.org/tips.shtml

 

[Coastal Cowboy]

I've seen a lot of posts recently from people who have had their credit card numbers stolen after making purchases at various e-cig dealers. While no system is absolutely foolproof, I've found about as safe of a way to protect your credit and keep criminals from stealing you blind.

This method involves PayPal. Some financial institutions may offer similar (maybe even superior) methods of fraud protection, but this works for me and probably will for you, too.

We have three checking accounts at two different banks. The one at Bank #1 is the joint account used by my wife and I to conduct our routine family affairs (mortgage, groceries, utilities, tuition, etc). Another account at Bank #2 serves as my business checking account for my consulting firm. The third is also at Bank #2, and it is a personal checking account with the balance never climbing over $50. This is the Black Hole account. It's a basic, "free" checking account with no overdraft protection and no credit line attached. Get the cheapest account they offer, with no bells and whistles whatsoever. There will be a monthly service charge in many cases, but it's worth the price for keeping cheap.

I can fund the account via any of the normal means--cash deposits, check deposits, intra-bank transfers from Account #2, electronic transfers from other banks, etc. If at any time the balance exceeds $50, the excess is swept electronically into Acct #2, the business account.

You don't have to use PayPal, but doing so does make this a lot easier when dealing with retailers who accept that form of payment. Despite what you may have heard, PayPal is at least as safe as Chase, Citi, JP Morgan, et al. When linking PayPal to an account, always link it only to the Black Hole account. Go ahead and apply for Smart Connect, which is an online revolving credit line serviced by GE Capital. The rates are usurious, so make sure you pay the balance at the end of each month. You can also apply for a PayPal MasterCard Debit Card. I have that, too.

PayPal offers you the opportunity to link your debit card to your PayPal account or your credit line. Link it to the former, not the latter, and don't link it to any of your checking or other accounts. As long as your PayPal account is also kept to a minimum balance, then if the debit card number gets compromised, all they get is what's in your PayPal account.

If you don't want to use PayPal, you can still use the Black Hole account to make online purchases, using either the debit/ATM card that comes with the account, or by linking a "smart shopping" credit card to it. Again, the key is to keep balances in the most vulnerable accounts to an absolute minimum and not using your personal credit card or primary account debit/ATM's for online shopping.

The biggest threat to this method is your own computer security regimen. Do not use the same passwords for any accounts at financial institutions. If someone compromises your PayPal account password and you're using the same password elsewhere, the crook is sure to find out. Change your passwords frequently, and use mixed case letters with numbers. Download quality malware/antivirus software such as LavaSoft's AdAware (free for personal use; solid protection systems).

Do not conduct business with your bank, PayPal or online vendors using hotel or other WiFi networks, even if they say they're secured.

 

[Coastal Cowboy]

One other thing: If you use PayPal or your PayPal MasterCard for purchases, make sure you log out immediately afterwards, especially if you are dealing with overseas vendors. The same goes with any online banking services you use. Make your purchase, confirm the amount of the transaction, and log out.

At least once every few days (I do it daily), clear your cache and delete cookies. Let FireFox or Chrome keep up with passwords.

 

[vap2112]

Thanks. This is all very helpful info. And cleared up some questions I've always had.

 

[Rebelpunk10]

thanks man

 

[Heavyrocker]

For passwords i just use random 8 number out of the top of my head,if they can crack 8 random numbers i give up.

 

[Racehorse]

Great tutorial.

A lot of people do not understand how bank and CC processing works. (even people taking out loans).

Esp agree with this:

always insist that your personal information be transmitted over a SSL ( https:// ) connection. If your browser shows a warning that the page is only partially encrypted I would pass.

I would also pass on any site that has a "broken" ssl certificate. Sorry folks - if a business wants to be successful they need to pony up for a SSL certificate that matches their domain name

 

[Koman]

Great stuff, thanks for the tutorial!