The Dallas Independent School District has been making up fake Social Security Numbers for foreign hires for years, even after being told in 2004 by the state’s education board to stop because it’s illegal. The numbers were meant to “expedite” the hiring process and get the employees on payroll, but they found their way onto Department of Homeland Security and IRS forms (which are kept in-district but shared with feds upon request), were used for criminal background checks, and in at least 26 cases were numbers in use by real people.
identity theft
Can I Change My Social Security Number?
By 11.3.08
Concerned about a recent incident in which his wife’s social security number may have been exposed (by a Bank of America employee, but that’s another story), Christian wants to know if you can change your social security number. In special circumstances, yes, the Social Security Administration will change your number. You need to show proof that 1) you’ve suffered harm from someone misusing your ss# and 2) you’ve made all reasonable efforts to otherwise solve the problem i.e. credit report freezes, closing accounts and changing account numbers, etc. If both of these apply, then you can simply visit your local SSA office, call, or visit www.ssa.gov/reach.htm.
500,000+ Banking Passwords Stolen By Sinowal Trojan Horse, So Far
By 11.1.08
Security researchers uncovered over half a million bank account logins stolen via a sophisticated trojan horse known as Sinowal. The data goes back to 2006, an unusual longevity for a trojan horse. Not mentioned in the news reports: who’s to say this is the only cache? [NYT] (Photo: Darcy McCarty)
How Outsourced Call Centers Are Costing Millions In Identity Theft
By 10.27.08
A former Chase call center rep tells the story about this one thief who was able to rip off one customer for over $40,000, thanks to his constant outwitting out the internationally out-sourced security department. It wasn’t that hard. Over and over again, he was able to commit credit card fraud just knowing the guy’s name, social, and mother’s maiden name.
French President's Bank Account Hacked
By 10.20.08
While French President Nicolas Sarkozy has been posturing as an international leader during this time of global financial crisis, thieves have been raiding his online bank account, withdrawing small amounts over an extended period of time. Just goes to show that identity theft can happen to anyone, whether or not you’re important enough to have people Photoshop your love handles away. For best protection, install and keep up to date a good security program, like ESET. Only log into your bank from the main URL, never click on a link in an email that appears to be from your financial institutions. Use usernames and passwords that are a string of random letters and numbers. Write them down and hide it in a secure place, not inside of a fresh hot pain au chocolat.
What Are The Latest Fraud Stats?
By 10.19.08
Looking for stats about how fraud has risen over the past year. I was able to find a few data points:
Fake IRS Fax Demands Your Bank Account And Passport
By 10.10.08
Nick has written in to warn us about a fake IRS scam that lately has been targeting nonresident aliens (e.g. teachers and researchers) working in the U.S., as well as American citizens working abroad. In the scam, which has been going on since at least 2002 (pdf), the target receives a faxed request from the IRS to provide his name, SSN, and pretty much every other bit of data you’d need to take over a person’s financial identity.
The Idiot-Proof Way To Securely Use Public Wi-Fi
By 10.6.08
We talk a lot on this blog about personal data and privacy, but not so much about how to secure that data on your own computer. That’s because a.) we’re not Lifehacker and b.) the solutions frequently bloat into crazy, jargon-filled recipes that scare away the non-IT crowd. Not this time! For all you novices, here is a single idea you should consider that will help keep your personal data personal, and make your identity that much harder to steal.
By 9.19.08
../../../..//2008/09/19/this-saturday-september-20th-is/
This Saturday (September 20th) is the Better Business Bureau’s “Secure Your ID” day: in select cities, “bring up to three boxes or bags of paper documents that contain your personal information and we’ll shred them.” Or, you know, just do it yourself all year long. [BBB]
'Identity Theft-Proof' Wallet Blocks RFID, Goes In Front Pocket
By 9.18.08
If you’re concerned about your RFID-chipped credit cards being skimmed, you might want to consider shielding them. DIFRwear makes a wallet with the shielding already included, and now roguewallet in Maine has introduced its own RFID-shielded version, with a fin-shaped design so it fits better in your front pocket to thwart pickpockets. Unfortunately, it’s also $50, compared to $20 for the more conventional looking DIFRwear hip-pocket design. (Both are FIPS 201 compliant, if that means anything to you.)
Forever 21 Aftershocks? Citibank Cancels Cards Due To Retailer Security Breach
By 9.17.08
We’ve received queries from readers telling us that their Citibank cards have been replaced, and asking whether we’ve heard about any new security breach. Other than Forever 21 we haven’t, so we’re wondering whether they’re responsible for the stories below.
Capital One Mails Fraud Claim To The Person Committing Fraud
By 9.17.08
“Lisa” writes, “I recently found out that I was a victim of identity theft.” What shocked her, and us as well, is that after Capital One notified her that they’d approved the card with another address, they followed up by sending their fraud claim to the criminal’s address instead of Lisa’s.
Steve Jackson Disses Lameo Free Credit Report Monitoring Service
By 9.16.08
Steve Jackson, a well-known game designer, got an offer for free credit report monitoring from his bank. When he called up the monitoring company, Intersections Inc, the customer service rep rattled off a boilerplate agreement and asked for his assent. When he asked if they would send him a copy, she said they don’t send out copies. When he asked then how he would have a record of what they agreed to, she got huffy and said, “This is free. You don’t need to worry about it.”
98,930 Affected In Forever 21 Data Breach
By 9.15.08
Forever21 announced Friday that the Secret Service told it criminals had jacked 98,930 credit and debit card numbers from its computers. Based on their forensic analysis, your digits could be in the hands of unsavory individuals if you shopped there on…
Former Best Buy Manager Arrested For Stealing Identities From Mailboxes
By 8.27.08
It’s always fun when you spot people you know in the paper. Like when one reader saw an article about his former Best Buy manager, charged with seventeen counts of third-degree identity thief. Mariusz Paliwoda of Conneticut was arrested recently for stealing over 100 pieces of mail from rural folks’, then using the information to create credit card accounts. Only the cream of the crop, or former Domino’s managers, make it to the top of Best Buy!
Milford man charged in ID theft operation [New Haven Register] (Photo: Getty)
WHH Ranch Company Uses Shredded Checks As Package Cushioning
By 8.24.08
A Texas cannery has been using shredded checks from the local bank as packing materials for the past twenty years. The WHH Ranch Company claims that Michelle McBride of Kansas is the only customer to ever complain about the checks, which plainly displayed routing and account numbers for hospitals, medicare, schools, businesses, and personal accounts.
Aflac Accidentally Introduces 624 Strangers To Each Other Via Mass Email
By 8.22.08
We’d hoped that Activision’s blunder would be the last one, but it turns out the HR department at Aflac can’t find the BCC field either. Reader Corey writes in to let us know he just received an email addressed to him and 623 other people who were interested in jobs with the insurance company. Our guess is some of the recipients won’t be so interested in a career with a company that doesn’t care about the privacy of its employees. After the jump, a quick guide to obscuring other recipients’ email addresses so this doesn’t happen again.
TJX Credit Card Theft Crew Busted
By 8.5.08
The world’s greatest bank thief is in custody. For ripping off over 45.7 million consumer’s credit cards from TJ Maxx, and other retailers, authorities pressed charges on Miami mastermind Albert Gonzalez and 11 others. The stolen numbers were sold to other scammers who manufactured fake debit cards and drained their victims’ accounts. The breach stemmed mainly from TJ Maxx stores using an unsecured wireless router.
