Cybersecurity Tips for Holiday Shoppers

Cybersecurity Tips for Holiday Shoppers

Recommendations for safe online holiday shopping - a cybersecurity perspective.

Online shopping will continue to dominate the way shoppers procure gifts for friends, family and the like this holiday season. According to data from Salesforce, e-Commerce revenue is expected to grow 13 percent in 2018 over the previous year with mobile devices accounting for 46 percent of purchases, 44 percent on desktop computers and nine percent for tablets.

Consumers are expected to spend about $1,250 each on gifts this year. With that much money and the outcome of your family holiday on the line, we talked with a cybersecurity expert about how to expertly shop online without putting your finances, identity or data at risk.

Here are the top five recommendations for safe online holiday shopping from Chris Duvall, the senior director at The Chertoff Group. 

Beware of clicking on links delivered to your email.

During the Holiday season, a phishing attempt may come via an email with a link to a fake website built to steal your personal information. Exercise caution in refraining from clicking on such links and downloading files from unknown sources --- also beware of emails or websites with typos and grammatical mistakes, which are common characteristics of phishing attempts.

Prioritize shopping at trusted sites and do your research when purchasing from a less-familiar site.

On the internet, some websites are created by people just wanting to steal your information. To avoid this pitfall, shop at retailers you are familiar with and have used before.

If you want to purchase an item from an unfamiliar retailer, do some research first. Consider checking out the company’s social media following, customer reviews, its record at the Better Business Bureau, and even contact the business directly.

When buying from online marketplaces like eBay, thoroughly review the seller’s reputation, assess the item description carefully, read comments, and even ask the seller direct questions before buying.

Be skeptical of suspiciously low prices.

While big sales are a holiday trademark, if a price seems “too good to be true,” then it probably is. Compare prices for the same items on other websites. If the price is drastically lower, then it is probably a scam designed to acquire your information.

Be on the lookout for fake shopping apps.

Hundreds of fake retail apps designed to steal your credit card information are popping up in Apple’s App Store and Google Play. Make sure to download the legitimate version of retail apps by downloading it directly from a store’s website, or by thoroughly checking user reviews if downloading from an app store.

Assess website security.

Look for the padlock symbol in the address bar, or a URL that begins with “https” as opposed to “http,” with the “s” standing for “secure.” Some browsers will even indicate whether it’s safe for you to give out your credit card information by showing you a green address bar, while unprotected ones will be red.

About the Author

Sydny Shepard is the Executive Editor of Campus Security & Life Safety.

Featured

  • Pragmatism, Productivity, and the Push for Accountability in 2025-2026

    Every year, the security industry debates whether artificial intelligence is a disruption, an enabler, or a distraction. By 2025, that conversation matured, where AI became a working dimension in physical identity and access management (PIAM) programs. Observations from 2025 highlight this turning point in AI’s role in access control and define how security leaders are being distinguished based on how they apply it. Read Now

  • Report: Cyber Attackers Continue to Turn to AI-Based Tools to Avoid Detection

    Comcast Business recently released its 2025 Cybersecurity Threat Report, a comprehensive analysis of 34.6 billion cybersecurity events detected between June 1,2024 and May 31, 2025. Now in its third year, the report offers business leaders a unique perspective into the evolving threat landscape and provides actionable insights to help organizations strengthen their defenses and align cybersecurity with business risk. Read Now

  • Axis Communications Creates AI-powered Video Surveillance Orchestra

    What if cameras could not only see the world, but interpret it—and respond like orchestra musicians reading sheet music: instantly, precisely, and in perfect harmony? That’s what global network technology leader Axis Communications set to find out. Read Now

  • Just as Expected

    GSX produced a wonderful tradeshow earlier this week. Monday was surprisingly strong in the morning, and the afternoon wasn’t bad at all. That’s Monday’s results and asking attendees to travel on Sunday. Just a quick hint, no one wants to give up their weekend to travel and set up an exhibit booth. I’m just saying. Read Now

    • Industry Events
    • GSX
  • NOLA: The Crescent City

    Twenty years later we finds ourselves in New Orleans. Twenty years ago the aftermath of Hurricane Katrina forced exhibitors and attendees to look elsewhere for tradeshow floor space. Read Now

    • Industry Events
    • GSX

New Products

  • FEP GameChanger

    FEP GameChanger

    Paige Datacom Solutions Introduces Important and Innovative Cabling Products GameChanger Cable, a proven and patented solution that significantly exceeds the reach of traditional category cable will now have a FEP/FEP construction.

  • QCS7230 System-on-Chip (SoC)

    QCS7230 System-on-Chip (SoC)

    The latest Qualcomm® Vision Intelligence Platform offers next-generation smart camera IoT solutions to improve safety and security across enterprises, cities and spaces. The Vision Intelligence Platform was expanded in March 2022 with the introduction of the QCS7230 System-on-Chip (SoC), which delivers superior artificial intelligence (AI) inferencing at the edge.

  • AC Nio

    AC Nio

    Aiphone, a leading international manufacturer of intercom, access control, and emergency communication products, has introduced the AC Nio, its access control management software, an important addition to its new line of access control solutions.