Want to read Slashdot from your mobile device? Point it at m.slashdot.org and keep reading!

 


Forgot your password?
Close
typodupeerror
×
Privacy Security

Identity theft Happens Predominantly Offline 326

Posted by timothy from the life-imitates-dilbert dept.
prostoalex writes "Worried about identity theft online? Relax, say the Feds. You're much more likely to have your identity stolen offline (72% of the cases). In half of all the cases, it's the friendly relatives, neighbors and friends who steal the identity of the victim. Moreover, those watching their financial accounts online lose approximately $551 per incident. The average rockets to $4543 for those relying on paper statements from their banks and credit card companies."
This discussion has been archived. No new comments can be posted.

Identity theft Happens Predominantly Offline More

Identity theft Happens Predominantly Offline

Comments Filter:

  • this is why (Score:5, Insightful)

    by greechneb ( 574646 ) on Wednesday January 26, 2005 @06:09PM (#11485487) Journal
    The best purchase you can make is a paper shredder, preferably a cross-cut model. When you get your mail, either shred it, or file it right away. A pile of mail sitting around is an easy target, especially if it isn't opened - you probably won't miss it if you haven't opened it. Shred everything, even those credit card applications. You don't want any information easily available!!!

    • Re:this is why (Score:5, Funny)

      by Rosco P. Coltrane ( 209368 ) on Wednesday January 26, 2005 @06:13PM (#11485520)
      The best purchase you can make is a paper shredder, preferably a cross-cut model. When you get your mail, either shred it, or file it right away.

      You're so right! I do that with email too: print them, then shred them thin. No more spam or viruses, nosiree.

    • Re:this is why (Score:4, Insightful)

      by ad0gg ( 594412 ) on Wednesday January 26, 2005 @06:13PM (#11485525)
      Problem isn't people going through trash, its people stealing your mail from the unlocked mailbox most people have. Best solution is getting a lock for you mailbox.

      • Re:this is why (Score:2, Funny)

        by Anonymous Coward
        I tried that, but it didn't work out right. I locked my mailbox shut, but the mail carrier hasn't delivered any of mail since then. Strange...

      • Re:this is why (Score:2, Interesting)

        by nikai ( 614442 )
        Haha, where I'm living (Austria), everyone has locked mail boxes at the moment. Only the mailman has got a second key to the box.

        However, our mail system is getting privatized, and the new mail services demand access to these locked boxes, so they can deliver mail as well. Now legislation has RULED to replace our locked mail boxes with UNLOCKED ones, in order that everyone can access them.

        May those idiot politicians rot in hell.

    • Re:this is why (Score:5, Informative)

      by Peyna ( 14792 ) on Wednesday January 26, 2005 @06:16PM (#11485546) Homepage
      The two times I've had my credit card number stolen it was traced to a clerk or cashier at a location I had used my card. When it comes down to it, your information is only as secure as the people you give it to, and in most cases, it's the person standing behind the counter that you hand your card to that becomes the liability.

      Which is why I now always pay at the pump, and try to avoid any situation where my card will be in the hands of someone else. Most places where you swipe the card yourself, the cashier does not have access to that information. Although, I used to work a grocery store, and while the receipt didn't contain the full credit card number, the roll that kept the transaction log at the register did, and it would have been very easy for myself or any other employee to simply take the roll when we were heading to count our cash drawer and pick a few names and numbers to use.

      I imagine that most cases of "identity theft" are simply credit card fraud, and usually is not the result of someone dumpster diving for information.

      • Re:this is why (Score:4, Informative)

        by Peyna ( 14792 ) on Wednesday January 26, 2005 @06:20PM (#11485604) Homepage
        As a follow-up to this; I've also found that having online access to my account information (something many people are weary of due to supposed security issues), enabled me to catch the unauthorized charges almost immediately (in one case, before the charge had even cleared). If I had to wait around for a statement in the mail, I imagine they would have been able to charge a lot more to my account.

        Another thing is that you should never use your debit card at a retailer, only at an ATM ran by your bank (unless you're really desperate for cash.) Very few banks offer the same sort of protection against fraud that credit card companies do. Most credit card companies will excuse any liability for any charges that you did not make.

        • Re:this is why (Score:3, Informative)

          by afidel ( 530433 )
          The only time I was the victim of credit card fraud my bank caught it before anything happened. They called me up to ask if I was attempting to make such and such large transaction, I stated that I was not, they said that they had thought not. Their fraud detection computer had flagged my account after another small value transaction had been recorded for a specific amount, aparantly the theives had starting making large numbers of purchases for small values and the repetition of those values had tipped th

        • Re:this is why (Score:3, Informative)

          by damiangerous ( 218679 )
          That was somewhat true when debit cards were first introduced (there was $50 or so liability then), but hasn't been the case for a very long time now. Any debit card with the Visa or MC logo has the same level [visa.com] of fraud protection as a credit card.

          • Re:this is why (Score:3, Insightful)

            by gellenburg ( 61212 )
            Yes, but the difference is with a CC the funds aren't immediately taken out of your checking account if there's fraud.

            Weouldn't it suck if you bounced your rent or mortgage payment because someone racked up fraudulent charges against your DEBIT card dropping your bank balance to near zero?

            And, have you ever tried to get your money back in that case? It can take upwards of sixty days with some financial institutions.

            The parent poster is right. NEVER use your debit card unless you absolutely have to.
          • If you lose your credit card and someone charges 10k on it, Visa doesn't make you pay it unless they find out you're defrauding them.

            If someone steals you debit card and charges 10k of your money, Wells Fargo doesn't give your money back untill they prove you aren't defrauding them.

            The rules are the same and you are at the same risk, but in one case Visa is out the money during the investagation and in the other you are out the money.

      • Re:this is why (Score:5, Insightful)

        by Xzzy ( 111297 ) <sether@@@tru7h...org> on Wednesday January 26, 2005 @06:39PM (#11485807) Homepage
        > Which is why I now always pay at the pump, and try
        > to avoid any situation where my card will be in
        > the hands of someone else.

        There's another option: pay in cash. People that try to steal that stuff generally get caught a lot quicker, and even if they don't get caught it doesn't hurt you in the slightest.

        Credit cards are handy things, but using them to replace cash for day to day purchases is asking for trouble.

        I suppose if one is constantly getting mugged the above may not be sound advice. For the rest of us, it's much safer.
        • I AGREE!!! I use cash when I buy gas & groceries. I only use my CC for online purchases, and large (over 100 bucks) purchases.
      • There was a fear-mongering news item on late night local news recently claiming that terrorist groups had installed "black boxes" at gas stations that read the credit card information after you swiped it at the pump and saved it for them. (This is here in Texas, so I'm sure we're just swarming with terrorists all out to get us)
        • People have been doing this for a long time, although the readers on gas pumps would be more difficult. That's why we don't have the things that hold your card anymore, by the way.

          Naturally, though, it's not plain old American criminals, it's Evil Nasty Terrorists(tm).

      • Re:this is why (Score:3, Interesting)

        by ikkonoishi ( 674762 )
        Thats why I think the credit cards should work with a preapproval system.

        Basically for any purchase larger than say $50 you have to call the company and get the purchase approved. The company then gives you a transaction number that will charge to your card number once, but then never work again.

        The phone system could have a voice identifier and maybe a limit to what numbers could call to approve things. (Home phone only so people would have to break into your house or at least hack your lines to accompl

  • Now is the time.. (Score:5, Funny)

    by Norgus ( 770127 ) on Wednesday January 26, 2005 @06:09PM (#11485488)
    To start stealing IDs online, you guys are WAY behind your quota!

    • Phishing? (Score:2, Insightful)

      by homer_ca ( 144738 )
      Do they count phishing as online identity theft? That's really taken off the last year, and it's a lot more efficient than dumpster diving.
      • Cleaner too. I don't have to shower nearly as often now that I've switched fo phishing. Highly recommended.

      • Re:Phishing? (Score:3, Informative)

        by null etc. ( 524767 )
        Phishing will really be a threat once phishers become more sophisticated. I receive about 10 phishing attempts per day, and almost always the scam is given away by one of the following:

        1. The phishers attempt to scare me by saying if I don't respond within 24 hours, my account will be disabled. No financial institution would impose a deadline like this, since it's not guaranteed that people check email every day.

        2. The phishers have atrocious spelling, like "we noticed some unnusual activity on your acc

  • It amazes me how bad retailers are (Score:5, Interesting)

    by hsmith ( 818216 ) on Wednesday January 26, 2005 @06:11PM (#11485505)
    I worked in retail for awhile, I learned a trick for myself. I write "ASK FOR ID" on the back of all my credit/debit cards.

    RARELY do i have someone ask to see my identification, no matter where I go. it amazes me how easily it is to get away with small things like this.

    But I do urge everyone to do that with their credit cards, it may not always be checked, but it is better than a scribble on the back. But while in london, I almost had a pub owner take my CC because my name was't "ASK FORD ID", arg.

    • Re:It amazes me how bad retailers are (Score:5, Funny)

      by Rosco P. Coltrane ( 209368 ) on Wednesday January 26, 2005 @06:16PM (#11485545)
      I worked in retail for awhile, I learned a trick for myself. I write "ASK FOR ID" on the back of all my credit/debit cards. RARELY do i have someone ask to see my identification, no matter where I go. it amazes me how easily it is to get away with small things like this.

      Personally, I write "THIS CARD IS STOLEN!" on the back of mine. That way, I'm extra sure it'll be reported the very minute it's used after it's stolen.

    • Re:It amazes me how bad retailers are (Score:5, Insightful)

      by kaustik ( 574490 ) on Wednesday January 26, 2005 @06:25PM (#11485676)
      I've worked in retail before and have seen many people do this. Personally, I find it amusing. Nowhere in either the store policy, or state law, did it mention anything about following cutomer direction on the back of a credit card. You are not only wasting your time, you are causing potential confusion for the poor $5/hr kid behind the counter.
      Maybe I should start writing things on the back of my card - "Give 5% discount", "Shake hands and smile", or "I'm 17, too babe, it's legal".
      • You do not have to ask for id just because it says to on the card, but every credit card merchant account agreement I've ever been part of (as a tech consultant for several clothing stores) states that we must verify that the signture on the back of the card matches the one on the receipt and/or check for proper identification. It might not be store policy, but the store did agree to do either check the signature or id and as a consumer, I'd like to do all I can to ensure that the store lives up to their p
      • It's not an order to the shopkeeper; it's in the shopkeeper's best interests to avoid credit card fraud. If a shopkeeper sells product and it turns out the charge was fraudulent, the shopkeeper gets no money and is out the product.

        There's no law saying that the shopkeeper has to follow my orders if I wear a shirt that says, "Videotape me to make sure I don't shoplift," but they seem to do it alot anyways.
      • Nowhere in either the store policy, or state law, did it mention anything about following cutomer direction on the back of a credit card.

        There is a thing called common sense.

        I put in big capitol letters with a marker SEE ID on my credit cards, and I don't tell retailers its the law or store policy or anything else for that matter if they don't check it. I will say that I have noticed a much greater likelihood of the retailer checking my ID. I will also bet my signature on a napkin that the odds of a "b

    • Re:It amazes me how bad retailers are (Score:4, Interesting)

      by hal2814 ( 725639 ) on Wednesday January 26, 2005 @06:30PM (#11485726)
      I sign my name and then put ASK FOR ID next to it. Interestingly enough, I was in London on vacation back in 2000. I had one shop (or is it a "shoppe" over there?) request that I write out ASK FOR ID next to my signature so it matched what was on the card. Are the credit card companies just stricter over there or something?

    • Re:It amazes me how bad retailers are (Score:5, Informative)

      by damiangerous ( 218679 ) <1ndt7174ekq80001@sneakemail.com> on Wednesday January 26, 2005 @06:33PM (#11485753)
      A card that says "Ask for ID" is treated as an unsigned card [visa.com]. A merchant should make you sign the card before accepting it. Otherwise they're not eligible for "Card Present" protection.
    • Is the point of the signature bar on a card not so you can compare the signed reciept to the (supposed) signature of the holder? Leaving a card unsigned makes it extremely easy for someone to just sign the back with the name on the front and go to town.

      On the other hand if you ask for ID you can usually go "oh, crap, i don't have it on me" and 9 times of 10 if you don't make an immediate move to go back out to the car to get it, the person will ring the card up as usual.

      Someone else commented that Post of
    • I was an assistant at a company, and spent a lot of my time running around buying things with the company credit card. I'm very clearly male, and the name on the card was very clearly female. No one EVER questioned it, and i used it daily for over a year.
    • Actually, stores are not supposed to accept a visa card (not sure about the others) unless it is signed on the back. I used to do what you said, but I have had stores refuse to accept my card because it was not signed. So now I just leave it blank. No ones refused to take it, and they ask for ID more often than when I had "Ask for ID" written on the back. Weird, weird, weird.
    • See here [zug.com]. It is a test to see if anyone would notice the fake signatures/drawings/scribbles on the credit card receipts/transactions? It was funny to read and see the scanned images (love those drawings and unreadable scribbles).

    • True Story (Score:5, Interesting)

      by temojen ( 678985 ) on Wednesday January 26, 2005 @07:32PM (#11486357) Journal
      A guy came up to the counter where I was working at (big chain convenience store) and asked for 6 cartons of cigarettes. Each of them a different brand, and all of them were brands the teenagers smoke. The total would be just over $300 CDN.

      I began to get them together (under the counter -- we'd had people grab & dash cartons off the counter the week before). Then the guy handed me a visa card. I read the card, looked at him, and said:
      "So Susan, have you got any ID?"
      His response was something along the lines of "It's because I'm black, isn't it?". Ummm, no, it's because I just saw you talking to those kids outside, and these are the brands they smoke, and this is not your credit card. He insisted that it was his wife's card; I insisted his wife could pick it up from the RCMP then (an RCMP car pulled up coincidentally), and he ran off.

  • Yes but... (Score:5, Insightful)

    by kawika ( 87069 ) on Wednesday January 26, 2005 @06:14PM (#11485531)
    Identity theft was ALL offline 10 years ago. So are we supposed to ignore the phishing problem until it reaches 50 percent? The rate of growth in the crime is no doubt much higher online, the same way that the growth in Internet ecommerce was much higher the past holiday season.

    Plus, there are some sorts of identity theft that really only make sense online, such as eBay and PayPal scams.

    • Re:Yes but... (Score:3, Interesting)

      by Ayaress ( 662020 )
      The point they're trying to make in the article is NOT to ignore the problem. RTFA, mayhap? Meh, what was I thinking?

      Anyway, the point they're trying to make is that the leading reason people who don't shop online give for not shoping online is that they're credit card will be stolen. Consumer's Power says that the reason few people use their online payment system is that they're afraid their credit cards will get stolen. The reason so many people say they won't use online banking is that - suprise suprise

  • with friends like those... (Score:5, Interesting)

    by ScentCone ( 795499 ) on Wednesday January 26, 2005 @06:14PM (#11485532)
    friendly relatives, neighbors and friends who steal the identity of the victim

    I suppose that relatives that dumb aren't smart enough to sit down and use those browser-cached passwords to access your PayPal account while you're in the bathroom and send themselves some money anyway.

    I'm actually surprised that co-workers aren't a bigger piece of the statistical pie on this one. They often have access to records, PCs, the all important "work number" and so on. I've run across those incidents, and am amazed they're not more common.
    • > I'm actually surprised that co-workers aren't a bigger piece of the statistical pie on this one. They often have access to records, PCs, the all important "work number" and so on. I've run across those incidents, and am amazed they're not more common.

      You forgot the most important factor: cow orkers overhear everything within a 3-cube radius.

      With the web, it's not too bad -- but sometimes you have to deal with IVR (interactive voice response) systems, and that's when you get into trouble.

      I can't

  • Stats and FAs (Score:3, Insightful)

    by bartok ( 111886 ) on Wednesday January 26, 2005 @06:15PM (#11485544)
    Yeah but if it's 20 million people who lost money enough to average 551$ and onlt 500 000 people who lose a few grand, there's still cause to worry. Statistics can mean anything... especially if like me, you haven't RTFA.
    • The article states that 72 percent of the thefts of personal information for scams last year was done offline. That suggests that the number of thefts that occured is very heavily weighted to the side of "happened offline." :)
  • *phew* Finally, someone states the fact that the Internet is not a big scary netherworld full of monsters like some would like to have us believe.

  • Irrelevant statistics. (Score:5, Interesting)

    by physicsphairy ( 720718 ) on Wednesday January 26, 2005 @06:17PM (#11485564)
    The types of scam and identity theft are different. The comparison means nothing. "Don't worry about leaving stacks of money on your lawn! 99.9% of thefts are of a different type! Leaving your retirement fund in $20 wads on your front porch is completely safe!"

    Consider that an online banking site may *not actually* be an online banking site. A physical bank, on the otherhand, is without fail, a physical bank. However, I don't have to worry about someone rooting through my garbage to find bank statements if all my data is online.

    So both systems have their inherent vulnerabilities. The fact is that you are really paranoid, you are ultimately safest doing everything in person and taking proper measures to destroy relevant documents.

    All this study says is that there is a higher incidence of paper based identity theft. Which is to be expected: how many low-level criminals do you think know javascript, for example?

    • I don't save any money. Therefore I have nothing to steal of value at the bank!

      If they want to steal from me, they have to steal my investments, and most of the time, I mix them in with Coke and down them at nights! No whisk(e)y for you!
    • "A physical bank, on the otherhand, is without fail, a physical bank."

      This reminds me of stories about ATM thefts.

      1. Someone places a fake front over a real ATM and collects deposited cash.
      2. An "Out of Order" sign is placed on the ATM, while someone, dressed as a guard, stands by the machine and helpfully takes deposits.

  • I blame lazy CC industry (Score:5, Insightful)

    by Ars-Fartsica ( 166957 ) on Wednesday January 26, 2005 @06:17PM (#11485565)
    Are you telling me the best they can do is a card with my password embossed right next to my name? As fas as I am concerned the CC number is a password since that and the expiration date are all that are needed to pilfer funds.

    The CC industry needs to create a secure credit card. Until they do, fraud cannot be stopped.

    • My new one has TOTAL SECURITY PROTECTION printed on the mag stripe. I'm sure that must mean something.
    • I'm with you, I've had a smart card for the past 5 years yet I have had a total of 3 places use it in their smartcard CC reader, this is with using my CC as digital cash for everything possible every day. Add to this the fact that we don't have photo's as standard features on all CC's and I've concluded that the credit card companies just don't care. It must not be a big enough problem for them to worry about. Amex's net profit for the fourth quarter of 2004 was nearly $1 Billion, and they are the smallest
      • Bank of America took my photo. TWICE.

        4 weeks later, I finally got my new ATM/Check Card. With no photo on it. Man, I was bummed. :( it was the first time I didn't look like a crazed serial killer in a polaroid shot, too.
    • Are you telling me the best they can do is a card with my password embossed right next to my name? As fas as I am concerned the CC number is a password since that and the expiration date are all that are needed to pilfer funds.

      The CC industry needs to create a secure credit card. Until they do, fraud cannot be stopped.

      The minute it is profitable for them to do something they will. Otherwise, they will sit back and collect the 18-20 someodd interest rate on the average person's CC balance of what is it $

  • has your social security number been stolen? (Score:5, Funny)

    by peter303 ( 12292 ) on Wednesday January 26, 2005 @06:18PM (#11485582)
    Type your social security number here: _________________ [den-of-thieves.com] and see if it is on the stolen number list.
  • I am very prone to this type of identity theft. I frequently have bank statements, credit cards, etc laying around my home desk, kitchen counter (I have a bar room style kitchen counter), etc.

    When say the people who I play DnD with come on over they can easily get my statements...hmm especially since some of them i only just met... Oh well :)
    • Elf you enter a poorly lit room, you see a stack of documents on the table, you detect the musty smell of stale pizza towards your left.
      I'll look through the documents *rolls die* You are only able to decipher that the papers are accounting documents
      I use my counterfeiting skill to create a new identity
      *rolls die* You may now use the identity of Larry Smith, my... err his social securit... errr Royal Identification number is 555-42-2005.
      Out of character, Wow I like how you use actual things to make the

  • ID theft through the mail (Score:5, Interesting)

    by Jere H ( 220274 ) <{slashdot} {at} {jeremyhipp.com}> on Wednesday January 26, 2005 @06:22PM (#11485633) Homepage
    My brother had an incident of identity theft which happened through the mail. A gang drove around and picked up envelopes containing payment for bills and had checks printed using the correct checking account information. They even printed drivers licenses with their own picture and changed the birthdate to about 10 years older than my brother's age.
    He caught the unauthorized activity by chance when he deposited a check at the bank and they told him he had a negative balance. Around $480 of unauthorized activity had taken place. They froze the account at that moment, he went and filed a police report, and the bank canceled payment of all of the fraudulent items.
    He received calls and letters for months saying he had written bad checks and that he would have a warrent put out for his arrest if he did not pay. He had to mail dozens of copies of the police report and a copy of the notarized statement he made saying he did not write the checks or authorize electronic payment of the items purchased on the internet. The postage totaled about $30. The money from his account was eventually all returned to him, but all of the time spent on the phone with companies trying to get the issue straightened out is a huge hassle, and the money for postage and telephone calls to various out-of-state companies comes out of your own pocket.

  • Are they really "friendly" relatives? (Score:5, Interesting)

    by hal2814 ( 725639 ) on Wednesday January 26, 2005 @06:22PM (#11485634)
    I had a friend in college whose dad opened up a credit card account in my friend's name, charged it up, and let it default. My friend talked to legal services on campus (I'm not sure how good our campus legal services is but our law school is pretty good for a public school). They basically told him that he sould either pay it off or claim fraud and let the credit card company haul his dad off to jail. I can't imaging putting my child in that situation. He asked me what he should do but I didn't know what to tell him. That's a pretty sorry situation for a relative to put you in, especially your own father.

    • I had a friend who told the judge at his dad's sentencing to "lock that man up". Course this dad was a pedophile, not just into a little fraud. Still sometimes you have to face the facts: someone you love doesn't deserve love, and needs to be locked up.

  • Right now it's way too easy for identity theft to happen. Even if they make harsher laws to deter and punish bad guys, victims are still screwed long after the theft.

    If your identity is stolen, it ruins your credit rating for the rest of your life. Why? Because no financial institution will trust that it's really you wanting to finance the furniture or buy the house.

    What we need is some kind of system involving cryptographic key exchange between buyers, sellers, and their banks. Sellers should make an o

    • It's not as bad as you state. I've been a victim of identity theft / credit card fraud / check fraud on several occasions. Each time, I was able to straighten things out without the gigantic hassle the urban myth pushes. My credit remains as stellar as it was before the incidents.
      • Oh, well it sounds like things have changed since I last heard an author promoting a book on a radio show ;)

        Anyway, I still would like to see a system like the one I proposed above implemented. It would reduce costs dramatically, help with record keeping, and prevent nasty service companies from repeatedly charging your card even if you've called them several times to cancel the service.

    • What we need is some kind of system involving cryptographic key exchange between buyers, sellers, and their banks.

      Or we could build actual reputations within the community where we live. We could deal with people we know and who know us, or at least with whom we have mutual acquaintances.

      Of course this would require us to *gasp* settle down and possibly start thinking of our communities as more than stepping stones to be trod over and left behind.

      Which one do you think is easier for me to make use of?

  • Typical. (Score:2, Funny)

    by Spy der Mann ( 805235 )
    In half of all the cases, it's the friendly relatives, neighbors and friends who steal the identity of the victim

    Hey!!! I didn't order a collection of XXX-videos - now wait a minute...

    SCOTT!!!!!

  • Take steps to prevent it (Score:3, Informative)

    by superid ( 46543 ) on Wednesday January 26, 2005 @06:24PM (#11485653) Homepage
    Our identity was stolen to the tune of $13K. Apparently the trail started with an inactive discover card account. Somehow the first person (there were eventually many) phoned discover and got them to change the billing address from my house to some place on staten island. As far as I knew this card was inactive and unused.

    One thing all the credit card companies and bureaus (Equifax, etc) told us to do is to call their fraud hotlines and put a block on each card that keeps anyone from changing the mailing address. ( no I don't remember what happens if I actually DO want to move...I've been here 20 years and I aint movin...con sarn it)

  • 28% Is Still Online (Score:3, Interesting)

    by Plake ( 568139 ) <rlclark@gmail.com> on Wednesday January 26, 2005 @06:28PM (#11485708) Homepage
    You're much more likely to have your identity stolen offline (72% of the cases).

    Well, 28% is still ALOT for identity theft. I'd still be careful of what you do on the internet that involves personal data.

    Also, it's it kinda ironic that the top thread right now had one of those "Click for a free Mac Mini" sigs which are one of the main portals for this kind of stuff.

    • Re:28% Is Still Online (Score:2, Informative)

      by Ahnteis ( 746045 )
      28% of identity theft happens online.
      NOT 28% of online transactions result in identity theft.

      The first statistic is pretty much completely meaningless unless you put in other facts.

  • Experience with a Canadian government contractor (Score:5, Interesting)

    by westendgirl ( 680185 ) on Wednesday January 26, 2005 @06:32PM (#11485745) Homepage
    Following the dot-com bust, my husband and I both lost our jobs. We enrolled with an agency that has been hired by the Canadian government to help IT industry professionals find work. Three years later, we both received emails from that agency. Someone had broken into their office, stealing their computer, which had thousands of applications, resumes, social insurance numbers (social security), and other details. The agency claimed that the server was stolen for resale value only and not for the data on it. They said that there was no reason to change your SIN or do anything other than watch your bank and credit card statements. To top it off, the agency's emails to me and my husband said "Dear " -- and the names belonged to other people, so they had further compromised privacy. After talking to police and federal fraud investigators, I pushed the Canadian Privacy Commissioner and Human Resources Development Canada to force the agency to act responsibly. The agency had no right to tell people that their data was safe or that they only had to watch their bills. The police and fraud investigators recommended monitoring social insurance number data and credit reports and putting fraud alerts on our credit files. Of course, this was a real pain for us -- we were in the midst of buying our first home and all of our financial applications were delayed by the credit alert -- but better safe than sorry.

    It irks me that the agency is still under contract to the government. The privacy policy they had us sign when we applied actually said that our data would be totally safe and secure. (Of course, that's an insane promise, but they shouldn't put it in writing!) And the agency completely bungled the way they told people about the data theft -- even counselling people to do nothing, which conflicted with the government/police recommendations. Thousands of people were affected, but I bet my husband and I were the only ones who knew to check with police, instead of doing nothing.

  • Hey /.tters
    Sorry to go off on a tangent.

    But when they say "offline" does that mean "not on a computer" or "not on the internet"?

    Because the other day I was at a public terminal and I noticed someone had installed a keylogger. Guess they wanted to collect everyone's information (i.e. passwords and usernames) and return for them at the end of the day.

    Technically, that is not online. Is it?

    Correct me if I am wrong

    Thanks :-)

  • Prevent fraudulent use of your Credit card (Score:5, Funny)

    by servognome ( 738846 ) on Wednesday January 26, 2005 @06:44PM (#11485857)
    Keep them maxed out. Sure they can have my credit card number, but just wait until they get that look of shame when they try to use it.
    • I had a similar idea: a credit card with a spending limit adjustable online (or via telephone). You can safely give it to sites that need it to "check identity," sign up for a "free" trial, etc., and it will verify as valid, but they won't be able to charge more than, e.g., ten cents. If you need to use it, you can raise the limit temporarily.

      Or a credit card that's actually a debit card ($0.00 charging limit) but reports as a credit card.

  • I agree... (Score:5, Interesting)

    by Anita Coney ( 648748 ) on Wednesday January 26, 2005 @06:45PM (#11485865) Homepage
    In work in a Court and every ID theft case I've seen in the last five years were committed by co-workers.

  • I just got TWO seemingly-identical eBay spoof messages to my eBay-registered email address (which contains 'ebay', but which doesn't otherwise collect spam). There is one difference between the messages, namely the URLs they point to:

    http://d280599.u36.fast-host.com/ws/aw-cgi/verify . php [fast-host.com]

    http://d281000.u36.fast-host.com/ws/aw-cgi/verify. php [fast-host.com]

    The directory the php files are in is interesting. The whole thing is laid out in there. The email actually points to login.php, which brings you through a coupl
  • Shread your papers, or better yet, if you have a fireplace, burn them. That's if you don't need them anymore, and this is about financial papers.

  • Reduce Junk Mail.Reduce the Risk of Identity Theft (Score:4, Informative)

    by $criptah ( 467422 ) on Wednesday January 26, 2005 @08:12PM (#11486692) Homepage

    1. Take out every credit card and call every agency. Tell them that you do not want your information to be shared with anybody. That will reduce the risk of id theft due to less junk mail.

    2. Get a good shredder. Shred every piece of useless mail with your address on it.

    3. Sing up for paperless delivery of credit card statements and loans. Most companies use secure servers and if your ISP uses SSL then you can safely get mail in your inbox. The inbox can be archived and encrypted in the future.

    4. Sign up for electronic bill pay through your credit card. Your bills will be paid on time and you will get less mail. Remeber, somebody can get your address w/o taking your mail.

    5. Inspect your credit reports from three major agencies at least 2 times a year.

    6. Call credit report agencies and tell them not to share your info with any other institutions. CC agencies love to do that, especially if you have loans.

    7. If you get junk mail, see if you can opt-out. If you can, do that; otherwise, the companies who send you this shit can be in trouble.

  • my ID theft merry-go-round (Score:4, Interesting)

    by peter303 ( 12292 ) on Wednesday January 26, 2005 @08:32PM (#11486857)
    A "wife" I never met put her name on my checking account some years ago. I had to file a police report before the bank would cancel the bad checks. I lived in city #1, my bank was in city #2, and the band checks were passed in city #3. You wouldnt believe how hard it was to get oneof these three police stations to take a report. Forged checks are so commonplace that no one wants to bother.
    I'd hate to multiple this by many accounts, if a larger identity was stolen.

  • Lemme do the math (Score:5, Informative)

    by Dark Coder ( 66759 ) on Wednesday January 26, 2005 @09:29PM (#11487371)
    Lets count the times that an identity theft occurred NOT by your close ones (relatives, neighbors, friends).

    28% is on-line
    39% is off-line by strangers (78%/2)
    equals
    67% by strangers.

    So, 1/3 of the ID theft is by someone you know. 2/3 is strangers.

    Tips to safeguard yourselves:

    1. Look in your wallet/purse and remove SSN# from all ID cards
    a) Medical card
    b) Dental card
    c) Old-man fraternity lodge
    d) Military ID
    e) and yes, your state drivers license (in dumb states only)

    You can verbally give your SSN# to the cop/doctor/guard if and when you get challenged. And no, you won't be fined for tampering with the license. Three Federal Statues will protect you on this formerly malicious act (IANAL, but I did it).

    2. Use shredders on the following containing account numbers, ID# or SSN#
    a) bank statements
    b) loan offers
    c) utility bills
    d) FAXes
    e) virtually anything with your SSN# (and account #)

    3. Perform lockout of your credit history. It is free to do. $10 to unlock it (how often do you apply for credits?)

    4. Religiously apply for opt-out with insurance and financial institutions for your rights on Privacy Act. This hopefully eliminates sharing of your information.

    Above steps goes a LONG WAY to drastically minimizing your vulnerability level and will go to bolstering your legal case against the identity theives, if and when, they get caught.

    Carpa Diem!

  • spin it the other way (Score:3, Interesting)

    by nothings ( 597917 ) on Wednesday January 26, 2005 @11:02PM (#11488101) Homepage
    Ok, so if half of ID theft is friends & family, then half of it isn't. Friends & family probably do 99% of their theft offline, so let's call it 100%. What does that leave us for stranger-theft?

    Friends & family theft: 50% of all theft; 100% occurs offline
    Stranger theft: 50% of all theft; 44% occurs offline, 56% occurs online

    (Why? Because 72% of all theft occurs offline, and friends and family accounts for 50% of the total. Given 100 thefts, 50 of them are friends and family, and (72-50) are offline non-friends non-family, or 22. That leaves 28 thefts to occur online.)

    If that conclusion is really true, then you can spin these numbers in the entirely opposite direction; the headline could be More Identity Theft By Strangers Online than Offline.

    However, the article also says that online theft of bank and CC information is only 12% of all identity theft. 72% + 12% = 84%; who knows where the other 16% really are (maybe they're online theft but not bank/CC). Ain't lying with statistics grand?

Slashdot Top Deals

He has not acquired a fortune; the fortune has acquired him. -- Bion

Close