![[H]ard|Forum](/styles/hardforum/xenforo/logo_dark.png){kind=logo}
This. Downside is that you may be using older (possibly outdated or insecure) web browsers out of the box. So update them prior to going to your financial websites.
Get rid of Windows first off. Microsoft couldn't be trusted with a needle and thread much less their massive consumer base. Here are my general opinions on setting up an extra secure browsing experience. The paranoid need only apply
Linux box , either Live or installed. If its Live I recommend : https://tails.boum.org/about/index.en.html , relies on encryption , uses some pretty clever software in the backround and is great for anything you deem "mission" critical important. If its installed .. well that's largely up to your personal taste. I would the bigger ones that incorporate cloud options (do not trust the cloud with sensitive personal information) so any of the lesser distro's should be alright. Check around and see what you might be into , trying them out doesn't hurt.
Next you'll need a VPN. I HIGHLY recommend you use a VPN NOT based in the western world , somewhere in Asia right now seems like a safe bet. I use Torguard and they do not keep logs of their customers and so far have been easy to work with. AirVPN is also great , well run site that heavily encourages its consumers to take all steps to stealth their activities online. Its important to remember that even if you use a VPN server in a different country that the VPN's site of origin is still subject to that countries governmental activities. So if you use a VPN based in the US but use a server in the Netherlands , its still not fully trust worthy anymore. Assume anything in the states is compromised and that should keep you out of trouble.
If you wanna be super paranoid then use TOR. It's slow as fuck but almost everyone recommends it continuously. DO NOT use TOR for anything like P2P , mixing TOR + VPN equals a very decent setup as well but it won't be something you'll use 24/7 due to the speed impact.
Its going to take more than just a different OS and proxy type connection , you need to also be careful of what kind of software you trust. If you are using Chrome , kiss it good bye. Google is way under the sheets with the US Government , from just about all the way top to bottom so its not a trust worthy browser anymore plain and simple. Firefox is the best option because its so well supported with a huge community of open source and trust worthy developers who strive to prevent intrusive predators like governments , hackers and the like. Don't use Gmail either , Google actively scans every piece of email that comes in and happily admits it. After the recent events of Lavabit , an off shore email provider might be a good idea , just remember ..location.. location... location.
You need to get into the habit of making intelligent passwords and changing them frequently. You need shed all those lazy habits of surfing , you know the kind I'm talking about as we've all developed them under a security blanket that encryption was safe and sound across the net. But we know the truth now , every tech company is scrambling to close its backdoor access and do an about face on its internal policies regarding ass kissing the international intelligence community abroad (make no mistake the US is far from the only one doing this kind of intrusive behavior). Use thing's like Https Everywhere , Noscript and of course turn off any and all cookies/tracking options. Also consider your smartphone , there isn't much you can do to secure it even with a VPN client and TOR on it as both major mobile OS's are pretty well compromised constantly. I highly recommend doing ZERO sensitive activities on smartphones , use your smartphone for chatting about anything but sensitive topics and never for anything really private or about your money (savings or stock holdings).
In the end being overly paranoid will help but honestly with a $150 million dollar yearly budget to throw at breaking encryption (for the NSA at least) there just might be jack shit you can do about it. GPU's have changed the decryption game so massively over the last 6 years its not even comical and in fact about a week or so ago there was a piece of software updated to support GPU's to break passwords over 55 characters now so even small time criminals are getting more and more powerful (of course its generally software targeted to databases so it isn't likely to be applied to you directly). Its only going to get easier the types of bodies of power to break into various forms of security as time goes on.