First thing's first: Look for the letters "HTTPS" -- S for "Secure" -- at the beginning of the URL, or web address.
Second: Also look for a closed yellow padlock icon, either next to the URL box, or at the bottom of your browser window, says Eva Velasquez, CEO of the Identity Theft Resource Center. (Note that the 'S' may not appear until you move to the "order" page on the website.)
"They offer better fraud protection than debit cards, plus they are not usually linked directly to your bank account," says Bill Carey of RoboForm, a password management system. Debit cards used as credit cards are fine, too, but you need be positive it's being run as such. No matter which you choose, always review your statements regularly for unauthorized purchases.
Too often, this simply lets spammers know that your e-mail address is active, and so they send you more, Carey says. More spam means more potential security problems.
It may be convenient, but the more places you have your financial information saved online, the more vulnerable you are.
Rather than giving them your mother's true maiden name, pick a nonsensical standby answer, such as "Tablecloth." No one can find that by combing your background information!
Especially that for antivirus programs and your browser, such as Internet Explorer or Google Chrome, says Neal O'Farrell of The Identity Theft Council. "Many of today's attacks take advantage of security vulnerabilities in your software that you never got around to fixing," he says. "Accept all legitimate updates immediately, and if your device allows for automatic updates, make sure that's switched on, too."
It's called phishing: Phony e-mails designed to trick you into opening links and attachments, which then help cyberthieves steal personal information off your computer. Clues include poor spelling, threats of account closures, false receipts and shipping confirmations, and slightly "off" representations of major companies. Unless you are completely sure a link or attachment is genuine, delete. Unsure? Open a separate browser to search for the company's customer service information, then call them directly.
Don't forget that identity theft can still begin on paper. In fact, O'Farrell warns that it's still one of the top favorites for identity thieves. He recommends collecting your mail as soon after delivery as possible, and sending anything containing sensitive information from a post office or mailbox, rather than leaving it out to be collected.
The sooner you stop it, the less damage you'll need to repair. Contacting the nonprofit Identity Theft Resource Center is a great place to start: (888) 400-5530; idtheftcenter.org.