It can be difficult for parents and carers to keep up with online technology because it changes so quickly, but it’s something that children and young people deal with every day.
There’s been lots of news about the metaverse being the next big development in online technology, but it’s important to know exactly what it is, and what risks it could pose to children and young people.
The metaverse is an online environment where users can take part in activities which they might already enjoy offline or in the ‘real world’. For example, people can go shopping, have dinner, or watch a film at a virtual cinema. Some experts call it a ‘3D internet’.
Companies use technology to allow users to access the metaverse using a headset to create a more immersive ‘real-life experience’.
The NSPCC is concerned that there’s no age-assurance in the metaverse, so anyone can go online and pretend to be younger or older than they really are. This makes it easier for children to access inappropriate material or digital environments where they could be at risk, and easier for online offenders to groom, bully or abuse children.
When it comes to ensuring your child is safe online, talking with them regularly about their online life means they will feel relaxed about telling you if they do have any worries. You can also ask them who they are talking to online. If it’s people they don’t know offline, don’t get angry, just remind them that not everyone online is who they say they are and they should never arrange to meet someone offline without telling you first.
Using parental controls and, for younger children, keeping gaming devices and computers in family spaces will also help to keep them safe.
For more information visit the NSPCC website. If you are concerned about a child, contact the NSPCC Helpline on 0808 800 5000 or email help@nspcc.org.uk. Children can contact Childline on 0800 1111 or visit www.childline.org.uk.
The charity’s analysis of Police Scotland crime data found that online child sexual abuse offences had more than doubled over the last decade.
The data shows 1,298 Indecent Image offences and crimes of Communicating Indecently with a Child were logged in the year to March– up from 543 just ten years ago.
The NSPCC said the growth in crimes and the scale of abuse taking place against children should serve as a wake-up call for the next UK Prime Minister to make the Online Safety Bill a national priority.
The charity said it underlines the urgent need for Liz Truss and Rishi Sunak to commit to passing the legislation in full and without delay.
The NSPCC first secured the commitment to regulate social media four years ago in a bid to combat the inaction of Silicon Valley to abuse taking place against children on their platforms.
The legislation would put a duty of care on companies for their users and mean they would have to put measures in place to prevent and disrupt child abuse on their sites and protect children from harm.
“Being groomed has had a horrific impact on my life and I want no other young person to endure that. I know this delay to the Online Safety Bill will see more young people like me experience harm when it could have been prevented, and that is devastating.”
The NSPCC has written to both Conservative leadership candidates saying, ‘delay or watering down of the Bill will come at considerable cost to children and families. It would represent the reversal of an important manifesto commitment that commands strong levels of public support’.
During the summer holidays, children will inevitably have more access to screen time, especially in the form of the internet. Internet safety has become an increasingly worrying problem amongst parents.
Internet expert Allison Troutner from VPNOverview.com has listed the best ways to keep your child safe online:
1. Consider a family ‘tech agreement’
One way to set ground rules with your child is to create a Family Tech Agreement. A family tech agreement answers as many questions as possible about internet and device use so boundaries are clear to all family members. It’s a good way for the whole family to talk about safe and responsible online behaviours.
To create a family agreement, discuss topics like:
What apps, games, or sites does the family use most?
What rules do we want to include in our agreement?
How long should we spend on our devices?
What information is safe to share (or not)?
What do we do if we see something inappropriate?
What email address do we use to sign up for accounts?
Do we know how to use in-app safety features like blocking and reporting?
Who can we talk to if we feel uncomfortable with something online?
Who is safe to talk to?
What happens when someone breaks the agreement?
When might parents be forced to break the agreement for safety?
This is a starting point: your family may discuss more topics on internet safety for kids depending on the ages of your child or teens and what devices you use.
2. Report any harmful content that you see
Flag or report all harmful content or contact you or your child experiences using social media apps using in-app reporting features. For cybercrimes, cyberbullying, or harmful content, use in-app features like Twitter’s safe mode to report it. Most social media companies have their own safety and privacy policies and will investigate and block content or users. Apps geared towards kids, like Facebook Messenger Kids, have clear guidelines and safety features so that users can block content or contacts and have a safer experience in the app.
3. Balance safety with independence
Technical controls can be a useful way to protect your children online but they can’t solve all your problems. Children need a certain amount of freedom and privacy to develop healthily. They need their own free space to learn by trial and error what works and what doesn’t. So keep balancing, it’s part of it. Having open and honest conversations with your children can be the best way to balance this safety.
4. Keep the computer in a common space
If possible, keep computers and devices in a common space so you can keep an eye on activity. It prevents children from doing things that might be risky. Also, if harmful or inappropriate content appears through messages, you can address it with your child straight away.
5. Password-protect all accounts and devices
From phones to computers to apps, put a password on it. That way, no one without the password can access you or your child’s device. Keep track of passwords by using a password manager.
6. Update your operating systems regularly
All of your devices from mobile phones or tablets to computers and smartwatches receive important updates in response to security issues on a regular basis. Be sure to install them regularly so you have the most up-to-date security fixes and remain safe online. Our recommendation is to set updates to install automatically so your device is less vulnerable to known attacks. Usually, you can find this feature in Settings, then select Automatic Updates, but it varies between devices.
7. Install security or antivirus software programs and a VPN on your computer
Additionally, cybersecurity or antivirus software programs prevent spyware or viruses that may harm your computer if your child visits a malicious site. Using these programs, parents can also set up regular virus checks and deep system scans to make sure there is no harmful activity happening under your nose.
A VPN hides users’ internet activity from snoops and spoofs your location. This protects your kids by making sure hackers or predators can’t detect their actual location. You can install a VPN on your router so that the location is spoofed on all connected devices.
8. Set parental controls
It may seem obvious, but parental controls are crucial to your child’s safety online. Parent controls are built-in features included on devices and apps. With these features, parents customise their child’s online experience. What parental controls are available on each device or app varies, but in general, they limit screen time, restrict content, and enhance user privacy.
Features of parental controls:
Limit screen time.
Turn off in-app purchasing.
Prevent inappropriate or mature content.
Limit website access.
Play, message, or send/receive content with approved contacts only.
Monitor device location through GPS.
Take time to look at what parental controls are available on your child’s commonly used apps. Then, set them to reflect the type of experience you think is best for your child or teen’s online safety.
Bill strengthened with new list of criminal content for tech firms to remove as a priority
List includes online drug and weapons dealing, people smuggling, revenge porn, fraud, promoting suicide and inciting or controlling prostitution for gain
New criminal offences will be added to the bill to tackle domestic violence and threats to rape and kill
Flagship UK laws to protect people online are being toughened up with new criminal offences and extra measures to force social media companies to stamp out the most harmful illegal content and criminal activity on their sites quicker.
Digital Secretary Nadine Dorries has announced extra priority illegal offences to be written on the face of the bill include revenge porn, hate crime, fraud, the sale of illegal drugs or weapons, the promotion or facilitation of suicide, people smuggling and sexual exploitation. Terrorism and child sexual abuse are already included.
Previously the firms would have been forced to take such content down after it had been reported to them by users but now they must be proactive and prevent people being exposed in the first place.
It will clamp down on pimps and human traffickers, extremist groups encouraging violence and racial hate against minorities, suicide chatrooms and the spread of private sexual images of women without their consent.
Naming these offences on the face of the bill removes the need for them to be set out in secondary legislation later and Ofcom can take faster enforcement action against tech firms which fail to remove the named illegal content.
Ofcom will be able to issue fines of up to 10 per cent of annual worldwide turnover to non-compliant sites or block them from being accessible in the UK.
Three new criminal offences, recommended by the Law Commission, will also be added to the Bill to make sure criminal law is fit for the internet age.
Digital Secretary Nadine Dorries said: “This government said it would legislate to make the UK the safest place in the world to be online while enshrining free speech, and that’s exactly what we are going to do.
“Our world leading bill will protect children from online abuse and harms, protecting the most vulnerable from accessing harmful content, and ensuring there is no safe space for terrorists to hide online.
“We are listening to MPs, charities and campaigners who have wanted us to strengthen the legislation, and today’s changes mean we will be able to bring the full weight of the law against those who use the internet as a weapon to ruin people’s lives and do so quicker and more effectively.”
Home Secretary Priti Patel said: “The internet cannot be a safe haven for despicable criminals to exploit and abuse people online.
Companies must continue to take responsibility for stopping harmful material on their platforms. These new measures will make it easier and quicker to crack down on offenders and hold social media companies to account.”
The new communications offences will strengthen protections from harmful online behaviours such as coercive and controlling behaviour by domestic abusers; threats to rape, kill and inflict physical violence; and deliberately sharing dangerous disinformation about hoax Covid-19 treatments.
The UK Government is also considering the Law Commission’s recommendations for specific offences to be created relating to cyberflashing, encouraging self-harm and epilepsy trolling.
To proactively tackle the priority offences, firms will need to make sure the features, functionalities and algorithms of their services are designed to prevent their users encountering them and minimise the length of time this content is available. This could be achieved by automated or human content moderation, banning illegal search terms, spotting suspicious users and having effective systems in place to prevent banned users opening new accounts.
New harmful online communications offences:
Ministers asked the Law Commission to review the criminal law relating to abusive and offensive online communications in the Malicious Communications Act 1988 and the Communications Act 2003.
The Commission found these laws have not kept pace with the rise of smartphones and social media. It concluded they were ill-suited to address online harm because they overlap and are often unclear for internet users, tech companies and law enforcement agencies.
It found the current law over-criminalises and captures ‘indecent’ images shared between two consenting adults – known as sexting – where no harm is caused. It also under-criminalises – resulting in harmful communications without appropriate criminal sanction.
In particular, abusive communications posted in a public forum, such as posts on a publicly accessible social media page, may slip through the net because they have no intended recipient. It also found the current offences are sufficiently broad in scope that they could constitute a disproportionate interference in the right to freedom of expression.
In July the Law Commission recommended more coherent offences. The Digital Secretary today confirms new offences will be created and legislated for in the Online Safety Bill.
The new offences will capture a wider range of harms in different types of private and public online communication methods. These include harmful and abusive emails, social media posts and WhatsApp messages, as well as ‘pile-on’ harassment where many people target abuse at an individual such as in website comment sections. None of the offences will apply to regulated media such as print and online journalism, TV, radio and film.
The offences are:
A ‘genuinely threatening’ communications offence, where communications are sent or posted to convey a threat of serious harm.
This offence is designed to better capture online threats to rape, kill and inflict physical violence or cause people serious financial harm. It addresses limitations with the existing laws which capture ‘menacing’ aspects of the threatening communication but not genuine and serious threatening behaviour.
It will offer better protection for public figures such as MPs, celebrities or footballers who receive extremely harmful messages threatening their safety. It will address coercive and controlling online behaviour and stalking, including, in the context of domestic abuse, threats related to a partner’s finances or threats concerning physical harm.
A harm-based communications offence to capture communications sent to cause harm without a reasonable excuse.
This offence will make it easier to prosecute online abusers by abandoning the requirement under the old offences for content to fit within proscribed yet ambiguous categories such as “grossly offensive,” “obscene” or “indecent”.
Instead it is based on the intended psychological harm, amounting to at least serious distress, to the person who receives the communication, rather than requiring proof that harm was caused. The new offences will address the technical limitations of the old offences and ensure that harmful communications posted to a likely audience are captured.
The new offence will consider the context in which the communication was sent. This will better address forms of violence against women and girls, such as communications which may not seem obviously harmful but when looked at in light of a pattern of abuse could cause serious distress. For example, in the instance where a survivor of domestic abuse has fled to a secret location and the abuser sends the individual a picture of their front door or street sign.
It will better protect people’s right to free expression online. Communications that are offensive but not harmful and communications sent with no intention to cause harm, such as consensual communication between adults, will not be captured. It will have to be proven in court that a defendant sent a communication without any reasonable excuse and did so intending to cause serious distress or worse, with exemptions for communication which contributes to a matter of public interest.
An offence for when a person sends a communication they know to be false with the intention to cause non-trivial emotional, psychological or physical harm.
Although there is an existing offence in the Communications Act that captures knowingly false communications, this new offence raises the current threshold of criminality. It covers false communications deliberately sent to inflict harm, such as hoax bomb threats, as opposed to misinformation where people are unaware what they are sending is false or genuinely believe it to be true.
For example, if an individual posted on social media encouraging people to inject antiseptic to cure themselves of coronavirus, a court would have to prove that the individual knew this was not true before posting it.
The maximum sentences for each offence will differ. If someone is found guilty of a harm based offence they could go to prison for up to two years, up to 51 weeks for the false communication offence and up to five years for the threatening communications offence.
The maximum sentence was six months under the Communications Act and two years under the Malicious Communications Act.
Professor Penney Lewis, Commissioner for Criminal Law, said: “The criminal law should target those who specifically intend to cause harm, while allowing people to share contested and controversial ideas in good faith.
“Our recommendations create a more nuanced set of criminal offences, which better protect victims of genuinely harmful communications as well as better protecting freedom of expression.
“I am delighted that the Government has accepted these recommended offences.”
A new Report warns that draft UK Government legislation on online harms would fail to prevent the sharing of some of the most “insidious” images of child abuse and violence against women and girls.
Scrutiny by the DCMS Committee of the Government’s Draft Online Safety Bill has found that in its current form, the legislation is neither clear nor robust enough to tackle certain types of illegal and harmful content on user-to-user and search services.
In the Report published today, MPs call on the Government to address types of content that are technically legal – including parts of child abuse sequences like “breadcrumbing” and types of online violence against and women and girls such as tech-enabled “nudifying” of women and deepfake pornography – by bringing them into scope either through primary legislation or as types of harmful content covered by the duties of care.
MPs reject a recommendation made by the Joint Committee to include in the Bill the establishment of a permanent Committee of both Houses on the grounds that such a development would duplicate the existing constitutional role of the DCMS Committee.
Chair of the DCMS Committee Julian Knight MP said: “In its current form what should be world-leading, landmark legislation instead represents a missed opportunity.
“The Online Safety Bill neither protects freedom of expression nor is it clear nor robust enough to tackle illegal and harmful online content.
“Urgency is required to ensure that some of the most pernicious forms of child sexual abuse do not evade detection because of a failure in the online safety law.
“These are matters of important public debate to which we will return as the Bill makes its way through Parliament.”
DCMS Secretary of State writes about the importance of a free and diverse media
What makes a healthy democracy? The strongest and most progressive countries share lots of qualities, but they have two vital things in common: a free and diverse media and the right to dissent. This week, a vocal Twitter minority went after both (writes Department of Culture Media and Sport Secretary of State OLIVER DOWDEN) .
GB News had barely begun broadcasting when pressure group “Stop Funding Hate” tried to stifle it, piling the pressure on advertisers to boycott Britain’s newest current affairs channel for spreading “hate and division”. It came in a week when we had already witnessed free journalism under assault with the despicable harassment of BBC journalist Nick Watt.
It seems GB News’ biggest crime – or rather “pre-crime”, as it’s called in the dystopian Minority Report when people are proactively punished for wrongs they haven’t committed yet – was to signal that it might not always agree with the media consensus. When he launched the channel, veteran broadcaster Andrew Neil vowed that GB News would not be “an echo chamber for the metropolitan mindset”, and that it would “empower those who feel their concerns have been unheard”.
Rightly so. A free media is one that has a diverse range of opinions and voices – and as I said earlier this week, GB News is a welcome addition to that diversity. We need outlets and commentators who cover the range of the political spectrum; who can speak truth to power; and who are willing to challenge dogma or orthodoxy.
I’ve no doubt plenty of people will disagree with some of the things GB News commentators have to say – just as plenty of people disagree with the things they see and hear on the BBC, Sky News or any other media outlet. But if you don’t like those ideas, switch over – don’t silence. We shouldn’t be blocking people from the conversation simply because we disagree with them.
That is exactly why, when we were developing legislation to boost online safety and tackle social media abuse, I was determined to make sure it couldn’t be used to stifle debate. Every country is grappling with this – but I believe the UK has struck the right balance and carved a path for the rest of the world to follow with our Online Safety bill, which we published in draft form last month.
That bill will protect children online and help stamp out the vile social media abuse, including racism and misogyny. Crucially, though, it also includes strong safeguards for free speech and the freedom of the media.
There will be a new requirement for social media companies to protect freedom of expression. The largest social media platforms will need to be clear to users about what they allow on their sites, and enforce it consistently.
That means they won’t be able to arbitrarily remove content – and if a user feels they have, they’ll have a new right to appeal. Right now if content is removed there is no recourse to review or in many cases even get an explanation as to why material has been taken down. Our bill will enhance the protections in place.
We’ve also got special safeguards for journalistic and “democratically important” content. News publishers’ content won’t be in scope – whether it’s on their own sites or on other online services. Journalists will also benefit from increased protections when they post on social media. The largest platforms will also have to protect political opinions on their sites, even if certain activists or campaign groups don’t agree with them.
Those are the grounds of a functioning democracy. Sadly we can no longer take them for granted. Across the West, our values of tolerance and freedom of expression, for which previous generations have fought and died, increasingly risk being undermined by a small but vocal minority. For them, these are not absolute, but relative, concepts, ready to be bent to silence dissent from their world view.
Google and Facebook are failing to take action to remove online scam adverts even after fraud victims report them, raising concerns that the reactive approach to fraudulent content taken by online platforms is not fit for purpose, Which? research has revealed.
The consumer champion’s survey found that a third (34%) of victims who reported an advert that led to a scam on Google said the advert was not taken down by the search engine, while a quarter (26%) of victims who reported an advert on Facebook that resulted in them being scammed said the advert was not removed by the social media site.
Which? believes that the significant flaws with the current reactive approaches taken to tackling online scams makes a clear case for online platforms to be given legal responsibility for preventing fake and fraudulent adverts from appearing on their sites.
Which? is calling for the government to take the opportunity to include content that leads to online scams in the scope of its proposed Online Safety Bill.
Of those who said they had fallen victim to a scam as a result of an advert on a search engine or social media, a quarter (27%) said they’d fallen for a fraudulent advert they saw on Facebook and one in five (19%) said a scam targeted them through Google adverts. Three per cent said they’d been tricked by an advert on Twitter.
The survey also highlighted low levels of engagement with the scam reporting processes on online platforms. Two in five (43%) scam victims conned by an advert they saw online, via a search engine or social media ad, said they did not report the scam to the platform hosting it.
The biggest reason for not reporting adverts that caused a scam to Facebook was that victims didn’t think the platform would do anything about it or take it down – this was the response from nearly a third (31%) of victims.
For Google, the main reason for not reporting the scam ad was that the victim didn’t know how to do so – this applied to a third (32%) of victims. This backs up the experience of Which?’s researchers who similarly found it was not immediately clear how to report fraudulent content to Google, and when they did it involved navigating five complex pages of information.
Worryingly, over half (51%) of 1,800 search engine users Which? surveyed said they did not know how to report suspicious ads that appear in their search listings, while over a third (35%) of 1,600 social media users said they didn’t know how to report a suspicious advert seen on social media channels
Another issue identified by victims that Which? has spoken to is that even if fake and fraudulent adverts are successfully taken down they often pop up again under different names.
One scam victim, Stefan Johansson, who lost £30.50, told Which? he had repeatedly reported a scam retailer operating under the names ‘Swanbrooch’ and ‘Omerga’ to Facebook.
He believes the social media site has a ‘scattergun’ approach to removing the ads and says that a week rarely goes by when he doesn’t spot dodgy ads in his newsfeed, posted by what he suspects are unscrupulous companies.
Another victim, Mandy, told Which? she was tricked by a fake Clarks ‘clearance sale’ advert she saw on Facebook. She paid £85 for two pairs of boots, but instead she received a large box containing a pair of cheap sunglasses.
‘I’ve had a lot of back and forth with my bank over the past six months, trying to prove that I didn’t receive what I ordered,’ Mandy said. Facebook has since removed this advert and the advertiser’s account.
The tech giants make significant profits from adverts, including ones that lead to scams. These companies have some of the most sophisticated technology in the world but the evidence suggests they are failing to use it to prevent scammers from abusing the platforms by using fake and fraudulent content on an industrial scale to target victims.
The combination of inaction from online platforms when scam ads are reported, low reporting levels by scam victims, and the ease with which advertisers can post new fraudulent adverts even after the original ad has been removed, suggests that online platforms need to take a far more proactive approach to prevent fraudulent content from reaching potential victims in the first place.
Consumers should also sign up to Which?’s scam alert service in order to familiarise themselves with some of the latest tactics used by fraudsters, particularly given the explosion of scams since the coronavirus crisis.
The consumer champion has also launched a Scam Sharing tool to help it gather evidence in its work to protect consumers from fraud. The tool has received more than 2,500 reports since it went live three weeks ago.
Adam French, Consumer Rights Expert at Which?, said:“Our latest research has exposed significant flaws with the reactive approach taken by tech giants including Google and Facebook in response to the reporting of fraudulent content – leaving victims worryingly exposed to scams.
“Which? has launched a free scam alert service to help consumers familiarise themselves with the latest tactics used by fraudsters, but there is no doubt that tech giants, regulators and the government need to go to greater lengths to prevent scams from flourishing.
“Online platforms must be given a legal responsibility to identify, remove and prevent fake and fraudulent content on their sites. The case for including scams in the Online Safety Bill is overwhelming and the government needs to act now.”
Google responded: “We’re constantly reviewing ads, sites and accounts to ensure they comply with our policies. As a result of our enforcement actions (proactive and reactive), our team blocked or removed over 3.1 billion ads for violating our policies.
“As part of the various ways we are tackling bad ads, we also encourage people to flag bad actors they’re seeing via our support tool where you can report bad ads directly. It can easily be found on Search when looking for “How to report bad ads on Google” and filling out the necessary information. It is simple for consumers to provide the required information for the Google ads team to act accordingly.
“We take action on potentially bad ads reported to us and these complaints are always manually reviewed.”
“We have strict policies that govern the kinds of ads that we allow to run on our platform. We enforce those policies vigorously, and if we find ads that are in violation we remove them. We utilize a mix of automated systems and human review to enforce our policies.”
A spokesperson for Facebook responded: “Fraudulent activity is not allowed on Facebook and we have taken action on a number of pages reported to us by Which?.
“Our 35,000 strong team of safety and security experts work alongside sophisticated AI to proactively identify and remove this content, and we urge people to report any suspicious activity to us. Our teams disable billions of fake accounts every year and we have donated £3 million to Citizens Advice to deliver a UK Scam Action Programme.”
A Twitter spokesperson said:“Where we identify violations of our rules, we take robust enforcement action.
“We’re constantly adapting to bad actors’ evolving methods, and we will continue to iterate and improve upon our policies as the industry evolves.”
As the coronavirus pandemic continues to fuel a perfect storm in digital risk to children in Scotland, the NSPCC and O2 are now delivering virtual online safety talks for parents.
Some security advice to help protect British shoppers against cyber-crime has been released as we head online for the basics:
Internet shopping specialists from NetVoucherCodes.co.uk have revealed their 13 top tips to help UK consumers stay safe when shopping on the web in the wake of the coronavirus pandemic.
From using a credit card and keeping software up to date, to writing down complicated passwords and making up answers to security questions, online shoppers could avoid becoming a cyber criminal’s next victim by following the guidance.
A spokesperson for NetVoucherCodes.co.uk said: “With more and more Britons heading online to shop for the essentials, it’s important to take online security even more seriously.
“Browsing the web can be a security minefield for consumers – a computer virus, hacker or fraud could be just one click away.
“So to help Brits shop online with greater peace of mind, we’ve revealed the different measures you can take to stay safe when buying something on the internet.”
If you purchase online using a debit card and it turns out to be a scam there’s usually no way to retrieve your money, but fraudulent charges must be reimbursed by credit card companies.
Check your statements regularly, just in case a purchase you didn’t make gets through the card provider’s safety net and you need to dispute it. This could also help if a purchase is shows up different to what you ordered, damaged or doesn’t arrive at all.
2. Make up security answers
When creating an account with online shopping sites, you might be asked to set up password reset security questions to confirm your identity.
Rather than entering the real town you were born in or mother’s maiden name, enter false answers and write them down if you can’t remember. This makes it much harder for cyber criminals who might be trying to gather information on you.
3. Only fill out required fields
Don’t offer up any more personal information that is necessary to complete an online purchase.
The required fields are usually starred or highlighted when checking out – it’s usually wise to leave the rest blank.
4. Never save information
Allowing even the most reputable of websites to store your payment or address information is unnecessary.
Don’t say yes when your browser suggests saving any passwords either and always log out when you’ve finished shopping.
5. Change passwords often
Regularly change between complicated, hard to guess, alphanumeric passwords that also contain symbols, even if you have to write them all down somewhere secure at home. Keep them different for each site you use too.
Using the same, simple but memorable password for every website for years, such as a pet’s name, is asking for trouble when online shopping.
6. Look for security indicators
A web address (or URL) that begins with ‘HTTPS’ are secure – those without the ‘S’, ‘HTTP’, may not be.
Other signs of shopping site security to look out for could include a closed padlock or complete key, possibly green, alongside the URL, next to the search bar or elsewhere around the screen.
7. Avoid public Wi-Fi
Entering personal information such as credit card details, passwords or home address while using free public Wi-Fi hotspots is dangerous as your data won’t be protected by encryption and could vulnerable to hackers.
8. Update your computer
Using an older version of a popular internet browser, operating system or anti-virus software on your computer means that you’ll be missing out on important security updates, which could leave you exposed when browsing the web.
9. Be extra careful on mobiles
Most mobile phones won’t have the same level of anti-virus protection as laptop or desktop computers so extra vigilance is required, particularly around shortened mobile-friendly URLs.
Mobile devices are also more likely to be stolen, so make sure any payment details are passcode or fingerprint protected.
10. Avoid email links
Rather than clicking on potentially suspect links to shopping sites that you see on social media, other websites or in emails, search for the website yourself.
This helps to make sure you browse the authentic site. If you’re getting a lot of spam emails, consider setting up a dedicated online shopping only email address.
11. Leave badly designed websites
If a shopping site appears to be out of date, has a strange URL, comes with lots of pop ups, or is dominated by cheap, irrelevant or overseas adverts, the page could be dodgy and worth exiting before it’s too late.
12. Research and read reviews
When considering spending on a new site that you haven’t used before, it can be useful to browse forums and social media to see what experience others have had of shopping there.
If you can find a real physical address and verifiable contact details for the company you intend to make a purchase from, they’re probably legitimate.
13. Trust your instincts
Just as you would when shopping on the high street, if you feel like a website is requesting too much personal information or could harm your computer with viruses, close it.
If in any doubt, stick to shopping with sites you know and trust.
Remember, if a deal looks too good to be true, it probably is.
Which? – Coronavirus email and text phishing scams
Phishing and smishing emails and SMS messages are already being sent out to trap the unwary into giving up login details.
One we’ve seen is an email that claims to come from the World Health Organization. It’s short and sweet, asking that you click on a link to what it says is a PDF offering advice on how to stay safe during the outbreak.
Security firm Sophos has a detailed breakdown of what happens if you click on that link, but broadly it shows you a pop-up in front of what looks like the WHO’s actual website asking you to input your email address and password so that you can receive the non-existent PDF.
Other phishing emails and SMS messages (known as ‘smishing’ texts) are also doing the rounds: Action Fraud has warned that emails purporting to be from organisations including the US Centers for Disease Control and the WHO are being sent with the aim of tricking you into opening malicious attachments or giving away your passwords.
The latest email and text phishing scams:
Fake lockdown fines
People have been warned not to fall for a bogus text message saying they have been fined for stepping outside during the coronavirus lockdown. The scam message claims to be from the Government, telling the recipient their movements have been monitored through their phone and they must pay a fine or face a more severe penalty.
HMRC goodwill payment
The MET police are warning of a fake message designed to steal your account details that says ‘As part of the NHS promise to battle the COV-19 virus, HMRC has issued a payment of £258 as a goodwill payment’.
Free school meals
The Department for Education has issued warnings about a scam email designed to steal your bank details saying: ‘As schools will be closing, if you’re entitled to free school meals, please send your bank details and we’ll make sure you’re supported.’
Conspiracy theories and misinformation
Another email we’ve seen is full of doom-laden warnings that ‘There is no vaccine for coronavirus’ and that ‘the US government, like the Chinese government, isn’t telling us the truth about how many are infected’. That email is full of links. While we’ve only seen screenshots of this, it seems likely that these links will lead you to either phishing sites or, worse, sites that can infect your computer with malware.
Sophos has also reported on emails that – for now – are targeting Italian email addresses and which include a Word document that purports to offer guidelines for preventing infection, but which in fact harbours a malicious script that infects Windows computers with a banking Trojan, i.e. malware that aims to steal online banking credentials.
So watch out for emails that include attachments.
Read the Which? guide on how to spot a phishing scam for more information:
Poll shows majority of adults believe Facebook is failing in its duty of care to protect children
Three out of four don’t think Facebook is safe for children
NSPCC urges Facebook to rethink encryption plans or face tough sanctions from new regulator
The NSPCC has slammed Facebook’s encryption plans after three out of four adults polled in Scotland said they didn’t think the site was safe for children.
Out of 180 adults in Scotland, just one in five (22%) said the tech giant took the safety of children using the site seriously and two thirds (66%) believed the platform was failing in its duty of care to protect children.
The results for Scotland were similar to those of the whole Great Britain sample, which consisted of 2,070 adults.
The claims came in an NSPCC/ Savanta ComRes poll following the tech giant’s announcement that they will encrypt messages on Facebook and Instagram.
The charity previously revealed that one in 25 young people (11 to 17 year olds) who used Facebook or Facebook Messenger had sent, received or been asked to send sexual content to an adult.
It is now warning the tech giant not to create hiding places for abusers by pressing ahead with encryption plans that don’t have strong safeguards in place.
Facebook CEO Mark Zuckerberg, who admitted that his plans would protect the “privacy of people doing bad things”, has failed to give any clear answers in how he intends to stop groomers preying on children on his site.
The NSPCC is calling for supporters to sign an open letter to Facebook demanding they put children first as part of its Wild West Web campaign.
Andy Burrows, NSPCC head of child safety online policy, said: “Facebook has been called out for its abject failure to make their platforms safe, yet their encryption plans will give offenders a free pass to abuse children while they look the other way.
“This cavalier approach risks creating a one stop grooming shop if Facebook don’t include strong safeguards that protect children in their encryption plan.
“Boris Johnson must make it clear that upcoming regulation will force Facebook to guarantee children’s safety on its messaging services or be hit hard in the pocket for failing in its duty of care.”
The NSPCC is calling for:
No end-to-end encryption for messages going to or coming from children’s accounts on Facebook apps
Adults accounts not to be encrypted until and unless Facebook has solutions to ensure child abuse can be detected and that children safety won’t be compromised
The Government to push ahead with introducing an independent Duty of Care regulator to keep children safe online
The Government to warn Facebook that encryption breaches the incoming Duty of Care and pressing ahead will mean tough consequences
