(MONEY Magazine) -- Here are six steps consumers can use to protect themselves from scammers as the online buying season kicks into high gear:
Be leery. Don't open attachments or click on links if they seem at all suspicious. Doing so could let spyware or viruses in. "If you have a shred of doubt about the legitimacy of an attachment, delete it and call the friend who sent it," says Michael Kaiser, executive director of the National Cyber Security Alliance.
Invest in protection. Buy a full suite of security software ($30 to $80 a year; top brands include Symantec, McAfee, and Webroot), including antivirus and anti-spyware software. That should help keep out programs that log your keystrokes to steal passwords and financial info.
Stay up to date. Your web browser and operating system are also vital to protecting your information. Make sure both are configured to get updates from the manufacturer automatically. With a PC, look for a box to check in your preferences or control settings.
Go direct. To steer clear of websites that look like Amazon.com, say, or BestBuy.com but are actually fakes set up to steal your data, don't click on links to get to those e-commerce sites. Type the URL directly into your browser instead.
Scan for security. Once you're checking out, be sure that you're on a secure page. The address should begin with "https," not "http." The "s" indicates an encrypted connection, so even if your financial information is intercepted, it can't be read. A gold lock on the bottom of the page signals the same thing.
Never shop in public. Your computer is more vulnerable on a public wireless network -- you don't know what security is in place. Adds Murray Jennex, an information systems professor at San Diego State University: "I wouldn't do credit card transactions on a cellphone or via Bluetooth either."
Use the right card. Pay with a credit card, and by law you'll be liable for no more than $50 in fraudulent charges. Using a debit card is stickier. Though MasterCard and Visa match the liability cap, the overall legal protections aren't as strong. And once the money is gone from your bank account, you could face delays and hassles in getting it back.
Get a one-time number. Several credit card issuers, including Bank of America, Citibank, and Discover, will give you an account number that becomes invalid after one use. (Call customer service to find out more.) If anyone steals that number, it's useless.
Work with a middleman. You can store your credit card or bank account information with a third-party payment system and let that site deal with the store. PayPal is the most widely used; Google Checkout is similar, though fewer sites accept it.
|Overnight Avg Rate||Latest||Change||Last Week|
|30 yr fixed||4.41%||4.44%|
|15 yr fixed||3.33%||3.31%|
|30 yr refi||4.39%||4.41%|
|15 yr refi||3.31%||3.30%|
Today's featured rates: