Prevent Identity Theft

More than 13 million people were victims of identity theft in 2015 in the United States alone.[1] While people are getting better at recognizing potential identity theft and minimizing the damage, it's better if you can prevent it from happening in the first place. By securing your data at home, online, and when you're out and about, you can eliminate many opportunities for identity theft to occur.

Steps

Strengthening Your Digital Security

  1. Use strong passwords and PINs. Your passwords and PINs shouldn't be something anyone could guess, even if they had access to some of your personal information. Avoid names, addresses, and birth dates.[2]
    • If you use words or numbers that are familiar to you, disguise them with hard-to-guess code, like the Vigènere Cipher.
    • You also might try online programs, available for free, that provide virtually unbreakable randomly generated passwords.
    • Make sure all passwords you use include both lower-case and capital letters, numbers, and other characters such as hyphens or asterisks.
    • Avoid using the same password for multiple accounts. Each of your passwords should be unique so that if one of them is compromised, the thief does not have access to anything else.
  2. Keep passwords and PINs safe. Never store passwords or sensitive information unencrypted on your computer. If you have a physical "cheat sheet" of log-in information, keep it locked up.[2]
    • If you need to keep passwords in a digital format, store them in a password manager program that is encrypted. You also can store them on an external hard drive that is only attached to your computer for offline backups.
    • Avoid using autofill, particularly for banking or credit card websites, unless your computer is secure or never leaves your house.
  3. Turn on two-factor authentication. Many email services and popular social media platforms allow you to log on using two-factor authentication, or 2FA. This enhanced security protocol adds an extra step to confirm your identity even after you enter your username and password.[3]
    • Typically you will get a text message with a code that you have to enter. Once you enter the code, you'll be able to access your account on the site.
    • With 2FA, a hacker would not be able to access your account, even if they gained your username and password.
    • Regardless of whether you enable 2FA or not, make sure you completely log out of any service you're not using – don't just close the window or tab on your browser.
  4. Create log-in passwords for all your devices. Whether you plan to take a device outside your home, all should have log-in passwords so the information cannot be accessed in the event someone gets ahold of the device.[4]
    • On most computers, you also can set up security so that the computer is completely disabled or the hard drive erased after a certain number of incorrect password attempts.
    • Change your log-in passwords on a regular basis, and don't write them down anywhere near your computer. For example, don't write the log-in password on a sticky note affixed to your computer case.
  5. Protect your computer. Identity thieves use complex software such as spyware and key loggers to obtain sensitive information. A strong and regularly updated firewall, anti-virus program and anti-spyware program will provide most of the protection you need.[2]
    • These programs often are provided as software-as-a-service, in which you download the application online and pay a monthly fee for updates.
    • If you're not sure what is best for your computer, contact your local computer retailer for advice.
  6. Beware of phishing scams. You may receive a seemingly harmless email asking you to verify certain things such as your password, account number, or personal identification information. Any email seeking this sort of information should be an immediate red flag for you. The best response is to contact the service provider directly and ask what's up.[2]
    • Keep in mind that most banks and credit card companies will not send unsolicited emails of this sort, or emails with internal links asking you to verify information. Save the email (the bank or credit card company may want to see it) and contact the company directly using a customer service number or by going directly to their website – do not click on any links in the email.
    • Other phishing scams include false lottery wins, requests for money to "help" people who have lost money/tickets/house, etc. and claims from Nigerian princes on-the-run.
    • Check the website of your country's government department that is responsible for updating on regular scams (consumer affairs and security agencies usually). Some non-profit consumer watchdog agencies also have similar information available online.
  7. Restore old computers to factory settings. Whether you're selling an old computer, recycling it, or throwing it away, make sure you get rid of it safely. Restoring it to factory settings ensures all of your information is gone. Do the same with mobile devices.[2]
    • Keep in mind that a tech-savvy person can even recover information that has been deleted from a hard drive. You can download free scrubbing programs online, or ask a trusted computer retailer or tech-savvy friend to help.
    • Information on how to restore your computer to its factory settings should be included in the manual that came with your computer, or you may be able to find a step-by-step guide online.
  8. Encrypt your hard drive. Most Apple- and Windows-based computers have an option that allows you to easily encrypt the information on your hard drive. Check the security tab in your settings and follow the prompts to activate encryption.[2]
    • If your hard drive is encrypted, the information on it cannot be used even if it is accessed by a hacker or would-be identity thief.
    • Observe the same caution when transmitting information online. You should see a little lock icon if the website you're using is secure. Don't enter personal information unless you see that symbol.
  9. Take care when posting on social media. Check your security settings on your social media accounts, and avoid posting personal information publicly, or publicly "checking in" to places. Identity thieves as well as burglars can use this information to identify targets.[2]
    • If you're going on a vacation, wait until after you return to post any pictures or stories about your trip online.
    • Avoid "friending" anyone you don't know "in real life." They may not be who they claim they are, and may be using your posts to gain information about you so they can exploit you or steal your identity.
  10. Check security when shopping online. When shopping online, verify security symbols and encryption before entering any credit or identification details. You also want to check the URL and make sure it's legit – avoid using links from an unsolicited email.[2]
    • Don't store information on any store's website. It may be convenient but it's also a possible loss to you if the site is hacked.
    • Keep a separate credit card just for online purchases. That way if your information is compromised, you can easily cancel that card and your bank account or other credit cards won't be affected. Never use a debit card linked to your bank account online.

Enhancing Home Security

  1. Shred sensitive documents. Old billing statements or any other documents that contain any personally identifying information (even if it's just your name and address) shouldn't be thrown away in the trash can.[2]
    • Keep in mind that there are "dumpster divers" who are willing to wade through old coffee grounds and rotten orange peels to get their hands on your data.
    • Invest in a cross-cut or diamond-cut shredder rather than one that shreds in strips that can easily be put back together.
    • If you don't have a shredder, at least tear the documents into small pieces and use the two-bag approach. Place part of the torn document in one bag and the rest in another bag.
    • Don't dispose of sensitive documents in public. Be aware of the information contained on items such as receipts. They can be dug out of the trash and used to steal your identity.[5]
    • If you don't want a receipt, tell the clerk you don't want one. Some cash registers won't print receipts unless requested. However, if the clerk has to print the receipt anyway, take it with you.
    • Don't throw away receipts or any other paper with any identifying information in public trash cans.
  2. Protect your snail mail. Mail services are common sites for identity theft activity. One of the most frequently used non-technological methods for identity theft involves rerouting your mail using a false change-of-address card.[6]
    • If you have a mailbox that can be easily accessed by others, consider getting a high-security locking mailbox or a post office box for financial mail.
    • Check your mail frequently so no one gets to it before you do.
    • Opting into "paperless" statement programs with banks and credit cards can reduce the amount of sensitive financial information being sent to you through the mail.
  3. Opt out of pre-screened credit offers. Many thieves will use offers to apply for credit in your name at a different address, or will try to use cash advance checks. In the US, you can eliminate this opportunity and help prevent identity theft by calling the opt-out number to stop receiving credit card offers.[2]
    • In other countries, check with your government's consumer protection agency to find out what options exist for reducing or eliminating your junk mail.
    • It can take some time for an opt-out notice to take effect. In the meantime, make sure you're shredding or otherwise securely disposing of any pre-screened offers you receive.
  4. Keep valuable documents locked away. Personal documents related to your identity, such as your Social Security or national insurance card, birth certificate, and passport, should ideally be stored in a fireproof safe.[2]
    • These documents are a potential gold mine for identity thieves, and should be treated as though they are more precious than anything you own.
    • Along with identity documents, you also should store financial documents and other paperwork, credit cards you're not using, and any other papers that include information related to your personal identification such as account numbers, identification numbers, or passwords.
  5. Secure your home wireless network. An open wireless network allows hackers to infiltrate your network and potentially gain access to your computer itself. Set up a network that requires a password for access, and change that password regularly.[2]
    • Most routers come with a default password to be used to set up the network. Once the network is set up, create your own password. The default passwords are not unique to your router and are commonly known.
    • If you don't feel comfortable setting up the network on your own, hire a licensed network technician to set up your home wireless network for you and walk you through the security settings.
  6. Avoid broadcasting personal information. Even when you're at home, you still need to be cautious when discussing sensitive matters over the phone. This is particularly true if you live in a densely populated area.[2]
    • If you have to make a phone call related to employment, billing, or financial information, go to a quiet, secure area of your house. Don't make that phone call out in the parking lot of your apartment complex, on your front porch, or on your patio or balcony. You never know who might overhear.
    • Likewise, don't leave any documents with your personal information lying around outside. For example, if you decide to do some online banking out on the porch on a nice spring day, bring everything back inside when you're done or if you have to step away.
  7. Get a house sitter while traveling. If you're going to be gone away for more than a night or two, having someone stay at your house or check in on it regularly can keep it from being obvious that you are out of town.[7]
    • Burglars and identity thieves will see a house with mail piled up or advertising circulars littering the front door as an easy target because it is obvious you are out of town. This is also true if the lights are out for an extended period of time.
    • Another option, if available to you, is to set your house lights on a timer that would mimic the movement of people.

Staying Alert Out in Public

  1. Watch out for "shoulder surfers." That person behind you in line at the ATM or the supermarket may just be another shopper, or they could be paying close attention to you in hopes of seeing your account balance or PIN.[8]
    • Shade the monitor area with your hand when typing in your PIN and try to block others’ view of the screen. Do this even when no one is around. Some thieves use binoculars or install cameras so they can watch you from far away.
  2. Carry only what you need. There typically is a lot of identifying information in your wallet or purse. If stolen, the person can use that information to steal your identity. For your protection and to help prevent identity theft, leave anything at home that you aren't planning on using.[7]
    • Don't keep all your credit cards in your wallet, if you have more than one. Keep them in a safe or other secure location in your home, and only take with you the card you're going to use.
    • Write "SEE ID" in your signature block on the back of the card rather than signing it. This provides you with an extra layer of protection should your card get stolen. You also can secure credit cards by changing them to a PIN-only option, if possible.
    • Avoid carrying blank checks, or any identification other than what you need. For example, if you're driving, you may need to carry your driver's license, but if you're in your home country you won't need your passport.
  3. Secure your bag or wallet. Even in relatively safe areas, pickpockets or purse snatchers look for easy opportunities. You can keep what information you are carrying secure by always keeping your wallet or purse close to your person and within your line of sight.[2]
    • Go for a cross-body bag, rather than one you merely dangle from one shoulder. Avoid allowing the bag to hang behind you, as someone could reach in without you even knowing. If you carry a wallet, consider attaching it to your body with a chain or bungee cord.
    • Never leave your wallet or purse unattended, such as at a restaurant or grocery store.
  4. Avoid using insecure public Wi-Fi networks. If you're out and about, it can be convenient to take advantage of the free public Wi-Fi available at many cafés, libraries, and public parks. However, if these networks are open to all, they come with risks.[8]
    • Even if the network requires a password, you should still consider that network open if the password is available to anyone. For example, a café that has a sign on the wall providing the password to its network is technically open and available to anyone, even though the network itself is secured.
    • Avoid doing any banking or transmitting any sensitive personal information when using these networks, and be aware that having your computer or mobile device on these networks provides an opportunity for hackers to access whatever information you have stored on your hard drive.
  5. Use only ATMs with adequate security. Ideally, if you want to get cash with your debit card, you should use an ATM located inside a bank branch – even if you have to go a little out of your way. Private ATM machines, particularly those outdoors, present a tremendous risk.[9]
    • Look for security cameras, and inspect the machine carefully for signs of tampering before you use it.
    • Avoid ATMs located in out-of-the-way places. At night, stay away from ATMs that aren't well lit. These not only put you at risk of identity theft, but also put you at risk of being assaulted or mugged.
  6. Inspect card readers before swiping. ATM skimming occurs when thieves put a device over top of an ATM card reader that steals the information from the card when you swipe. These skimming devices also can be found on unattended point-of-service card readers, such as those on gas pumps.[10]
    • Look carefully for signs of tampering. Many gas pumps, for example, have a tampering seal. Do not use the card reader if the seal has been broken, and alert store staff immediately.

Minimizing the Damage of Identity Theft

  1. Contact banks and credit card companies. If you believe someone has stolen your identity, or if your purse or wallet is lost and stolen, call every bank or credit card company potentially implicated as quickly as possible to get your cards cancelled.[11]
    • Not only will this help minimize the damage, but it is necessary that you notify them as soon as possible after you have knowledge that your account has been compromised if you want the full benefit of any legal protection.
    • Banks and credit card companies typically have a toll-free number you can call to report fraud or identity theft 24 hours a day, seven days a week. This number should be listed on the bank or credit card company's website. Tell the operator that you are a victim of identity theft and want your account closed or frozen. Note any suspicious transactions if any have already occurred.
  2. Put a fraud alert on your credit report. In the United States, a fraud alert requires any creditors to take additional steps to verify your identity before issuing any credit in your name. The fraud alert is free, doesn't impact your credit score, and can protect you if you're a victim of identity theft.[11]
    • You only have to call one of the three major credit bureaus. They are required by law to notify the other two.
    • Request a fraud alert by visiting one of the credit bureau's websites, or by calling Equifax at 1-888-766-0008, Experian at 1-888-397-3742, or TransUnion at 1-800-680-7289.
    • The initial fraud alert is good for 90 days. You can extend this period by providing an official identity theft report consisting of a police report and an FTC complaint.
  3. Change all passwords. As soon as you have reason to believe your identity may have been stolen, take precautions to minimize the damage and change passwords for everything, regardless of whether they contain any sensitive information.[11]
    • This is especially important if a computer or mobile device was stolen, particularly if you stored log-in information on the device.
  4. Order copies of your credit report. If you're concerned your identity might have been stolen, review your credit report and note any suspicious transactions or entries, such as requests for credit in your name or new cards for which you never applied.[12]
    • In the U.S., there are three major credit bureaus. You're entitled to a free copy of your credit report if you activate a fraud alert.
    • Read through the report carefully, and dispute any inaccuracies with the credit bureau itself.
    • If cards were opened in your name, you also may want to call the issuing bank or credit card company and explain the situation.
  5. File a complaint with the Federal Trade Commission (FTC). The FTC operates a Complaint Assistant website that will guide you step-by-step through the process of filing an identity theft complaint. You will need this complaint to prove your identity was stolen.[11]
    • Once on the website, click on the "identity theft" category to start the online form. Follow the prompts to enter information about your identity theft, including the types of accounts misused or opened in your name.
    • You also have the opportunity to list any suspects, if you have them. It's likely that you won't have any clue who is responsible for the theft – you can still file a report. Leave it up to law enforcement to track down the perpetrator.
    • Include as many facts and details as you know and can accurately remember. The more information you provide, the easier it potentially will be for investigators to track down the perpetrator.
  6. File a police report. In addition to filing an FTC complaint, you also need to file a report with your local police precinct (or the precinct where the theft occurred, if you're traveling). Call the non-emergency number and tell the operator you wish to file a police report for identity theft.[11]
    • Just as with the FTC complaint, give the officer taking your report as many facts and details as possible. Answer all questions thoroughly and honestly.
    • Make sure you get a copy of the written report for your records. You may want to follow up in a week or two to check on the investigation, if you haven't been contacted by an officer in that time.
  7. Maintain complete records. While you're dealing with the aftermath of identity theft, keep detailed notes of everyone you contact and everything that is said. Send follow-up letters confirming phone conversations so everything is in writing.[12]
    • It can take a lot of effort to restore your credit and reputation after falling victim to identity theft. Keeping adequate written records provides you with proof of every step you've taken, and keeps you from having to repeat efforts.



Tips

  • Check your credit report on a regular basis and act immediately if you see something on your credit report that isn't accurate.

Warnings

  • Anyone can possibly be a victim of identity theft, including young children and the recently deceased. If you have children, talk to them about safeguarding their personal information online and out in public.
  • This article deals primarily with how to prevent and minimize the damage of identity theft if you live in the United States. If you live elsewhere in the world, there may be other precautions you can and should take. Consult a consumer protection government agency or nonprofit organization near you.
  • Be careful when giving out your national insurance number, or Social Security number in the United States. If an identity thief gets ahold of this type of information, it becomes much easier for them to take out credit or loan applications in your name. Ask how the information will be used and how it will be secured.[2]

Related Articles

Sources and Citations

  1. http://www.bankrate.com/finance/credit-cards/2-ways-to-stop-identity-theft-1.aspx
  2. 2.00 2.01 2.02 2.03 2.04 2.05 2.06 2.07 2.08 2.09 2.10 2.11 2.12 2.13 2.14 https://www.consumer.ftc.gov/articles/0272-how-keep-your-personal-information-secure
  3. https://www.cnet.com/news/two-factor-authentication-what-you-need-to-know-faq/
  4. https://www.ndsu.edu/its/security/traveling_abroad_with_electronic_devices/
  5. http://www.nolo.com/legal-encyclopedia/preventing-identity-theft-30172.html
  6. http://www.usatoday.com/tech/news/computersecurity/infotheft/2007-10-22-id-theft-study_N.htm
  7. 7.0 7.1 http://www.nolo.com/legal-encyclopedia/preventing-identity-theft-when-travel-29922.html
  8. 8.0 8.1 http://www.dhs.gov/blog/2014/12/22/protect-yourself-identity-theft-while-traveling
  9. http://www.consumerreports.org/cro/news/2015/07/prevent-identity-theft-on-vacation/index.htm
  10. https://www.fbi.gov/news/stories/atm-skimming
  11. 11.0 11.1 11.2 11.3 11.4 https://www.identitytheft.gov
  12. 12.0 12.1 https://www.identitytheft.gov/know-your-rights.html
Retrieved from "https://kipkis.com/index.php?title=Prevent_Identity_Theft&oldid=360952"