At the end of each year, the Internal Revenue Service endeavors to alert the general public regarding identity theft scams. These regularly pop up and target those who will soon be emailed their job-related tax forms in order to file for income tax (to obtain a refund or pay additional taxes). The psychology behind this has to do with financial recovery after the holidays and, face it who wouldn’t like to get a cash windfall from the government?

In times of economical hardship, the identity theft scams increase proportionally in number [1]. The starting point of these scams can normally be found in your personal (and ofttimes work email addresses). The scam starts by getting the victim’s attention with a promise of a large sum of money that is waiting for them. According to the email, all that is needed is to transfer the money from a foreign bank account to the victim’s personal checking or savings account. What could be easier – right? The large sum of cash is supposedly from a lottery winning, or an inheritance. Some of the most insidious scams are those that appear to come from the IRS, itself. This may be from some bogus new policy or unclaimed tax refund based on an obscure technicality that the victim wasn’t aware of when they filed their taxes.

Scams based on religious beliefs.

Due to the poor economy, you will also see a large number of scams that rely heavily on the criminal element masquerading as extremely religious individuals. These scammers will use the name of God and attempt to get on the good side of the victim by pretending to be followers of Christianity. They will pretend to be involved with charities and ask for help to get money to those who are less fortunate. But they can be spotted if you know the “language” of the scammer [2]. The ironic thing about these identity theft scams is that, although the scams are being reported as “new”, they are, in truth, just variations of scams that were popular way back in 1920.

Government-related scams

Scammers posing as government related officials from the FBI, the Department of Justice or the IRS are common since they seem to have a certain amount of power over the victim’s circumstances. These scams can be based in either fear for the targeted individual or a sense of relief. This can appear to the victim that a financial problem may be readily resolved. The victim can be contacted and personal information acquired through telephone call, a phishing email or text and voice messages. In a more frightening variation, they may even knock on your door! Fake websites and bogus identification badges are also employed to “identify” the criminals. The phony websites will look just like the genuine article – but nothing is perfect. Incorrect spelling and suspicious URLs (website addresses will, in most cases, give them away. When English is not your first language, small things can be very noticeable – such as inappropriate humor on an official U.S. government website. The lack of understanding of a country’s customs and way of thinking can often be a glaring error to a genuine resident’s observation.

How to protect yourself

Some ways to protect yourself from this type of identity theft are, as follows:

1. Never send your personal information in a response to an unsolicited email.
2. Don’t click on links to other websites when giving out information. Pull up a genuine website located on a paid hardcopy bill.
3. Don’t respond to a promise of an IRS refund for answering a “survey”.
4. Watch out for long email addresses. This is especially true of addresses that don’t start with the organization’s name.

Visit websites that discuss how to protect yourself from identity theft scams and fraud. The more you know, the better able you will be to protect yourself!

As you surf the Web, you are not alone. As a result, many countries have declared March to be the month to bring awareness to consumers about the dangers of fraud, including Internet fraud. Cybercriminals are estimated to cost consumers in the United States 1.2 billion dollars annually, and the amount of time victims need to correct the problem each year is steadily increasing.

E-commerce is a worldwide-phenomenal growth industry, but some experts believe that it hasn’t yet realized its full potential because of consumer wariness over cyberfraud. The segment of the population that steers clear of e-commerce is a loss of revenue to Internet businesses.

Cyberfraud Is a Lucrative Business

Many criminals are pulling out of the drug trade and concentrating on making money through fraud, including Internet fraud. It is believed that these acts from fraudulent medical claims to Internet scams are beginning to rival the drug trade business in many countries.

Those who regularly shop the Internet can be complacent about cyber criminals. According to a study by the Organization for Economic Co-operation and Development (OECD), many consumers believe that they would never fall victim to an Internet scam, but a study of cyberfraud concluded “being fooled by a scam is not a reflection of the education, age, or background of a victim.” An informed consumer is the best defense against cybercrime.

Email Scams

The first cyber scams originated through emails when most Internet users were only concerned with an overload of spam. An early email one was dubbed the “Nigerian” scam, and was a request for money by a so-called government official or a royal family member from an African country. It was a plea for assistance in transferring money out of a country. The victim needed to send small advance payments to cover banking transaction fees, but never received the promised money.

Since then email scams have become more sophisticated, but any request for advance fees and promises of large payoffs is a neon sign for cybercriminals at work. The best defense is to set your email filters at a high privacy level and not open any unsolicited emails.

Common Online Scams

Various other scams are operated on the Internet. Consumers aren’t as gullible as in the early days of the Internet, so the cyberthieves have had to respond with every more sophisticated schemes. But spam is still a tool for ID thieves. Some common ones are travel and credit-related schemes, fake lottery ploys, web and modem hijacking, and identity theft. Many scams are frauds that have always existed in the real world, but are now transferred to the online community.

Cybercriminals can operate on the Internet under the guise of legitimate traders with professional-looking websites which offer miracle products, work-at-home jobs, rock-bottom prices on items, or “once-in-a-lifetime” investment opportunities. They are also becoming adept at scams through text messages on cell phones.

Internet users are usually aware of “phishing” scams, which trick victims into disclosing personal information online. But to raise the level of sophistication and entice more victims, phishing scams now often include more personal information in the email, leading the victim to believe in the authenticity of the message.

Another deception is using a VoIP phone as the contact phone from websites or text messages, which can record account numbers entered into it.

Prosecuting Cybercriminals

A problem with cyberfraud is that it is difficult for consumers to take legal action when they have been victimized. Consumers don’t have the investigative means to find and identify the cybercriminal, and establish proof of criminal activity.

Another drawback is that the consumer usually doesn’t have the financial wherewithal to take criminals to court. And to complicate the picture, many cybercriminals are in foreign countries as the Internet doesn’t recognize boundary lines.

The Federal Trade Commission collects information on identity theft and helps consumers who have been victimized. Their website is helpful to anyone who would like more information on identity theft or needs to report a crime: http://www.ftc.gov/bcp/edu/microsites/idtheft/.

Reference:
1. OECD, Protecting Consumers from Cyberfraud, October 2006, http://www.oecd.org/dataoecd/4/9/37577658.pdf

Conscientious people shred their bank statements and cut up their credit cards without a thought. But when it comes to disposing of their computer’s hard drive, they can be extremely careless. With computers constantly evolving and being made more powerful, people frequently upgrade to the newest models, casting aside millions of computers yearly. Many computer users leave sensitive information on their hard drives as they discard them at computer drop-off centers or in landfills, just waiting for an identity thief to come by. If you have a computer to dispose of, you don’t want to become a future statistic for identity theft.

Some people do not realize the process involved in removing data from a hard drive. Many computer users think if they move all their files to the trash or reformat the hard drive that the files are gone for good. Actually, those trashed files remain fully intact, unless they are rewritten. Rewriting only takes place if space is needed and most computers have ample space. In the case of reformatting the drive, data can be still retrieved with the right tools. If you are among the unaware, the Department of Defense has advice on how to remove information from a hard drive.  

Wiping the Hard Drive

You can buy programs, also known as shredders, which are relatively inexpensive, or find freeware on the Internet that will do the job. These programs cover the data with zeros or random characters to make them unreadable by data-restoration software. The Department of Defense recommends overwriting the drive sectors three times with different characters. Other experts recommend going over the data seven times to make it completely unrecoverable. Also, wiping just certain files may not fully protect your information, as copies of those files can be stored in other parts of your computer. It is probably best to use the wiping program on your entire hard drive.

Removing the Hard Drive

If you don’t want to use a wiping program, you can remove your computer’s hard drive. It is relatively small and will store easily in a safe or other secure location. If you aren’t sure where the hard drive is located on your computer, refer to your manual or manufacturer’s website. Once removed, some people resort to pounding the hard drive with a hammer, or using a magnet, or soaking it in water or acid. All these methods are ineffectual. The only method to guarantee the removal of your information is to sand the platters or use an industrial shredder which obliterates it.

Discard Wisely

The sheer amount of e-waste being generated each year is a threat to our environment. Federal regulations don’t cover e-waste, but some states have passed legislation dealing with the landfill problem. Yet, disposing of a computer is easier today than a few years ago as there are more options available. To help confront the landfill problem, some stores have unveiled take-back or buy-back programs. While online sites have also appeared to buy back old electronics, where they will revamp them to sell or recycle the components. You would be doing a great service if you consider other options rather than tossing your computer into a landfill.

Reference:

1. Department of Defense, Department of Defense Directive, October 24, 2002, http://www.acq.osd.mil/ie/bei/pm/ref-library/dodd/d85001p.pdf

Credit reporting agencies rely on credit issuers and other businesses to compile your credit history.  Although CRAs are federally regulated, they are not responsible for verifying the accuracy of information they receive.  Their basic function is to collect and supply credit information to businesses so that they can make decisions about you as a credit risk.

Credit reports are free from all three credit reporting agencies, Experian, TransUnion and Equifax, every 12 months.  You’re also entitled to free reports if you’ve been denied credit or if you think you’ve been a victim of identity theft.

Incorrect Information may appear on your report

Credit Reports have four sections: a header or identifying information, credit history, public records, and a section for inquiries.

Spelling errors or mistakes in processing an application can show up on your report.  It’s not unusual to see more than one social security number or misspelling of your name.  This generally happens when a credit issuer reported the information inaccurately, so variations are common.  You may also see your current address or previous addresses, date of birth, your spouse’s name, telephone numbers even your employer’s name.  This type of information is located in the header of the report, sometimes referred to as the personal identifying information section.

Credit History

Within the credit history section, you’ll find information about accounts you’ve held for seven years.  If you’ve closed any accounts within that period of time, it will be marked as “closed by consumer.”  This is the section to pay close attention to if there are accounts you’re unfamiliar with.  If there are accounts you don’t recognize or if accounts have gone to collection, you will need to contact the credit issuer and the collection agency for possible fraud.  See our website for more information about the steps to reporting identity theft.  Each account that appears in this section has the following data:

• Name of the company who is reporting the information.
• Account number with the company.
• Accountholder -   lists who’s responsible for the account.  The following abbreviations may also be listed beside this information:
• I – Individual
• U – Undesignated
• J – Joint
• A – Authorized User
• M – Maker
• T – Terminated
• C – Co-maker/Co-signer
• S – Shared
• Date the account was opened – Indicated by a month and year.
• Months reviewed – States the number of months the account history has been reported.
• Last activity – Lists the date of last activity on the account.
• Terms of payment – States the number of installments or the monthly payment for installment loans such as a car or mortgage.
• Balance – The current amount owed on the account at the time it was reported.
• Overdue notices, any late payments and associated dates.
• Status – Marked with a combination of letters and numbers to indicate the type of account and the payment activity.  The account may be listed as an Open, Revolving (credit card) or Installment (car loan or mortgage).  Abbreviations for timeliness of payments vary among agencies.  Numbers (0 to 9) are used to mark accounts as current or paid as agreed.  The larger the number the longer the account has been past due.
• Date reported – states the last time information was updated by the creditor.
• Collections actions

Public Records

The public records section lists judgments, bankruptcies or tax liens.  If you see information that is inaccurate you need to follow up with the credit reporting agency to adjust any inaccuracies.  For most consumers this section is blank.

Credit Inquiries

The last section of your credit report is credit inquiries and anyone that has asked to see your credit report is listed in this section.  Inquiries listed as “hard” are initiated by the consumer.  These inquiries are placed on the report when you complete an application for credit or when seeking dental or medical treatment.  “Soft” inquiries are initiated by companies that may want to send you marketing information or current creditors monitoring your account.

If there are “hard” inquiries listed that were not initiated by you, or an account you do not recognize you need to contact the creditor immediately.  Log all information when following up with credit issuers and reporting agencies, who you spoke with, dates, etc.  If at all possible send a letter with a return receipt requested to the creditor asking for more information in the event you do have a case of identity theft.   Lastly, see about filing a fraud alert with the three credit bureaus. A proactive stance can keep your identity safe and protect your financial reputation.

In this current economic climate it’s never been more important to circulate a resume, and cybertheives have never been more interested in finding your resume to make a profit rather than finding you employment. The key to attracting legitimate employers is to recognize when and where to post your resume, and what job offers to respond to and which ones to ignore.  Minimize your risks online by discouraging fraudulent businesses from approaching you.

Fact or Fiction – It’s OK to post your resume to a job site that does not have a privacy policy.

This is pure fiction. If the job bank or job site does not have a privacy policy, you may have no recourse if you run into problems.  Without it, employment websites can legally archive your information for years.  A privacy policy explains how the business plans to handle your personal data.  As you review the policy, look for how the company plans to store, use or share your information and find specific statements about registration and the length of time they keep your resume on file.  If the job site does not offer you the option to delete your resume, look elsewhere.  Your resume and personal information belong to you and not the site.  Most reputable employment sites have deletion instructions posted on their site.  In fact, employment sites do share resumes.  Job seekers have found that after posting to one site their resume mysteriously shows up at other job sites without the benefit of registration. So when in doubt always ask or consult a job site’s policy information.

Fact or Fiction – Posting your resume as “private” will hinder your chances employers.

Some applicants feel that by making employers take additional steps to obtain their resume, the company will quickly lose interest.  But the fact is your legal name, address, phone number, work history and even your references, when posted publicly, can potentially fall into the hands of identity thieves.  Most employment websites do offer a privacy feature that allows applicants to hide private information.  If you should decide to post to an employment site that does not offer this option, use a disposable email address and purchase a P.O. Box at your local post office.  Replace your current contact information with the disposable email and PO Box on your resume.  You’ll be avoiding possible risks should the online job site have a data breach.

Fact or Fiction – Including your references when posting your resume will increase your chances of getting the job.

While it may or may not increase your chances with potential employers, the fact remains that you need to consider that your reference’s contact information is available to everyone that views or downloads your resume.  You’re placing their private information at risk, which is not the best way to handle references should you need them in the future.

Fact or Fiction – Always disclose your education information.

This statement falls somewhere between fact and fiction.  As far as resume formats go, it’s an absolute necessity.  However, you do need to consider that anyone can call your school and request your personal information without your consent.  If you’re currently in college, request a FERPA (Family Educational Rights and Privacy Act) form from your school’s office.  Once they have it on file, only legitimate institutions and businesses can have access to your information.  Students under 18 will need their parents to sign the form.  For more information about FERPA forms, see the U.S. Department of Education’s website .

Fact or Fiction – Every job offer is legitimate.

The fact is online job sites have sped up the hiring process considerably, but that fact alone doesn’t necessarily make them legitimate.  Most businesses continue to move through the hiring process methodically, requiring one, two and sometimes three interviews before having potential employees complete a formal written application asking for personal information, work history and references.   If you feel rushed to supply the employer with your SSN or drivers’ license, then consider it a big warning to walk away.  Legitimate employers do not conduct background checks until the interview process is completed. Consider the following as signs or warnings that you may be looking at a fraudulent job offer.

• The employer requests your bank account numbers
• The position requires you to transfer money
• The position requires you to open accounts with e-Bay, Pay Pal or Western Union.

Now some of this information may seem obvious, but the cybercriminal’s key to success is to rush you through the entire process before you’re even aware that you’ve been an identity theft victim.  Before you give any personal identifying information, learn how to recognize the signs of identity theft.

Here are some other tips that may cause you to reconsider that too-fabulous-to-be-true, dream position:

• You receive an email about a job offer but the email address does not contain the domain name of the company.
• The fax or phone number does not have the same area code as the corporate phone number.
• Before giving any information whether through email or the phone, play Magnum PI and conduct an online search of the company making the job offer or the person who has contacted you.  If you’re still not satisfied, contact BBBonline.com or the State Attorney General’s office where the company is located.
• Call the company’s HR department and verify that the person who’s contacted you on the company’s behalf is legitimate.

Fact or Fiction – A vague email job offer is often a valid offer.

Unfortunately, this is more fiction than fact for many job seekers.  The rule to remember here is, if a job offer emailed to you seems very “general” or has a “vague” job description; it may not be a job offer at all.  The email might contain a link that redirects you to yet another job site inviting you to post your resume, or it might be an email marketing campaign for an employment conference, seminar or class attempting to solicit money from you.  Either way, it pays to think twice before replying to these responses.  

Some of the more common emails may include:

• Invitation to post to another job site and the invitee doesn’t bother to tell you they get a small referral fee when you do.
• Promises of a “dream job”, only after you paid their fee.
• Claims they have a great opportunity for you, only the recruiter can’t seem to remember the company or the job title to this spectacular position.
• Invitations to self-help seminars, promising a job only after you’ve purchased their seminar.

Some email job offers are actually valid.  In a recent World Privacy Forum job search study, the best job offers come within the first month of a resume being posted.  If responses seem scarce, you may want to take down your resume and start over.

For more information about online job sites, check out the Job Searcher’s Guide to Online Job Sites.  The information on this site lists and rates job sites according to a specific set of criteria including privacy policies and the use of tracking cookies.

At askidentitytheft.com we believe your personal identifying information is worth protecting.  See our other articles on how to prevention, report and recover from identity theft.

The social security administration, instructed by the IRS, began giving social security numbers to all children in the 1980s. As these young adults begin using these numbers for the first time, the FTC (Federal Trade Commission) has reported an increase of identity theft complaints from young adults between the ages of 20 and 29.

Children under the age of 18 cannot legally be held to a contract. In addition, some credit issuers do not require proof of age, or are given forged documents. Once a credit application is completed and the information verified a credit report is created with your child’s stolen social security number.

The after math of this crime is a young adult, who upon entering the workforce for the first time, cannot get a credit card, loses potential job opportunities, or even worse, faces bankruptcy because of debt they never personally acquired.

Any of the following can be signs that your child’s identity has been stolen:

• Calls from collection agencies
• Bills or credit cards sent in the child’s name
• An IRS notice that the child’s name or social security number is listed on another tax return.
• An individual, who knows your child’s SSN, has a history of financial problems and suddenly has a lot of money.

Contact the credit reporting agencies if you suspect foul play.

If you have reason to believe that your child’s social security number may be compromised, you must contact the three credit reporting agencies in writing. No minor under the age of 18 should have a credit report, and if one exists, it will not match the information you’ve given each of the agencies. The reports will simply indicate that your child’s social security number belongs to someone else illegally.

To order a child’s credit report, all requests should be mailed certified with a return receipt and should include the following information:

• A cover letter that includes the child’s full name, date of birth and the previous addresses for the last five years.
• A copy of the parent’s identification, such as a driver’s license or a military ID. (it must be a photo ID.)
• A copy of the child’s birth certificate.
• A copy of the child’s social security number.

Also if you are the legal guardian or have legal custody you will need to include the proper supporting documentation.

Allow 30 days, from the time you receive your return receipt, for the credit reporting agencies to respond. If you receive no response after the 30 days, you can file a complaint with the Federal Trade Commission.

The addresses for each of the credit reporting agencies are listed below:

Transunion
P.O. Box 6790
Fullerton, CA 92834

TransUnion has recently set up a special email for parents and guardians of child identity theft:childidtheft@transunion.com.

Experian
P.O. Box 9532
Allen, TX 75013

Equifax
Office of Consumer Affairs
P.O. Box 105139
Atlanta, GA 30348

Where to Start

If you find that your child has been a victim of identity theft, here are some suggestions to begin restoring your child’s identity:

1. If your responses from the credit reporting agencies show identity theft, file a police report with your local police department.

2. Consider bankruptcy. The fact is a bankruptcy never looks good on a credit report, but it may allow you to erase some of the debt, get rid of collectors and begin the rebuilding process.

3. Consider changing the child’s social security number. If the child is young enough this might be a solution, but for young adults it may not work if there is significant work or credit history involved. The Social Security Administration has information on their website.

4. Place fraud alerts with all three credit reporting agencies: Equifax, TransUnion and Experian.

Ask about placing a credit freeze. This will stop anyone from opening new accounts in your child’s name.

Wireless networks have their advantages, but they also come complete with some risks if you’re not willing to spend a few minutes configuring your security properties when setting up a wireless home network.

Below we summarize our recommendations which are necessary to protect your wireless network and any devices that may access it.

1. Be sure to purchase a router that has an encryption feature. Encryption simply muddles communications over your network so that users, neighbors, etc., cannot attempt to “piggyback” onto your network. Most wireless routers have an encryption feature built into the device and you may be able to choose between two types: Wired Equivalency Privacy (WEP) and WiFi Protected Access (WPA). The FTC or Federal Trade Commission recommends WPA for stronger protection. All the equipment including your laptop, desktops and router should be set to the same encryption, whether WEP or WPA. Windows XP users have WPA support within their systems. You can now find WPA support built into all modern wireless hardware and operating systems.

2. Change the default password on your wireless router. Most wireless routers have a default password that needs to change to provide your home network protection. Be sure to make a note of the password and place it in a secure place, so you can refer to it if you need to.

3. Disable the Router’s Broadcast Identifier. This feature found in your router broadcasts your network’s name or SSID (Service Set Identifier) continually by sending a signal to other devices within the area. Turning this feature off will make your home network invisible to other neighborhood networks and others passing by.

4. Enable the Media Access Control (MAC) address to identify those computers that have access to your network. By setting up your router with a computer’s or laptop’s MAC address, you filter out those computers not allowed on your network. While this additional step assists in blocking intruders, the FTC recommends that you do not rely on this method alone to protect your wireless network.

5. Change the ID on your router. Every router model from the manufacturer is assigned the same standard identifier. Just disabling the broadcast identifier isn’t enough to stop a hacker, if they know the default identifier of a particular router model. When changing the identifier, be sure to configure this same unique ID to other devices accessing your network.

6. Disable the auto-connect option to wireless networks. This setting is available for Windows XP users. However, if you’re using an older Windows OS, your computer may automatically connect to an available wireless network without notifying you. For your protection, this feature should only be enabled temporarily.

7. Ensure that your router’s firewall option is enabled. Most routers have a built-in firewall that should never be disabled. Also be sure to have a firewall installed and enabled for every computer or laptop that uses your network.

8. Disable your wireless network when not in use. This is simple. No one can intrude upon your network if you shut it down.

In March of this year, a press release from the Westin Bonaventure Hotel & Suites in Los Angeles announced that a data breach had occurred from April 2009 to December 2009. The hotel would not say how many people were affected, but it did acknowledge that the breach occurred at its restaurants and at the valet parking stand.

The one reason hotels are vulnerable are the number of employees with access to their company computer systems. Guests at most hotels are asked for credit card information on a daily basis at the spa, the pool bar or the golf course. Another reason is that travelers are easy targets if you consider how many times they’re asked to show identification for airport security checks, use a credit card for hotels, car rentals, restaurants, and visits to unfamiliar ATMs, not to mention access to the Internet in WIFI locations for business purposes. Across the US, there are over 68,000 Wi-Fi hotspots located at airports, cafés, hotels, etc. that may or may not be secure or encrypted. All of these actions and venues offer risks.

While there isn’t much you can do about data breaches, there are some rules of the road that can protect you or at least minimize your risk when you travel.

• Designate one credit card for traveling. Check the credit card bill when you leave the hotel, and then monitor it carefully after your trip for unauthorized charges. Leave your debit card at home, because once cyber thieves acquire this account, you can bet every last penny will be gone.

• Carry a second or backup credit card. Use it only if your first or primary travel card is closed by the issuer in the event of a data breach.

• If you have to check your credit card or bank activity, use a secure online connection from a Wi-Fi spot that has an encrypted wireless network.

• If you carry a laptop for business, be sure that your operating system, web browser, firewalls as well as your antivirus and anti spam software is current.

• Change the default setting on your laptop to manually select the Wi-Fi network, and always turn off the Wi-Fi features when you’re not using them.

Using Smartphones on the Road

The prevalent use of smartphones and their travel-related applications are making it easier for business travelers to change flights and reservations online, but they too, also come with some risks. If you plan on using these mobile applications, be sure that your phone is password protected.

Here are a few more mobile precautions to take before your next destination.
• Before downloading a Smartphone application onto your cell phone and entering your personal information, read its privacy policy to verify how your personal data will be used.

• Always record of your Electronic Serial Number (ESN) and/or International Mobile Equipment Identity (IMEI) number, in case you lose or someone steals your cell phone. To find your IMEI number, press *#06# on your phone’s keypad and it will display a 15 digit number. To find your ESN number, you can shut off your cell phone and then remove the battery to find the number printed on the back of the cell phone wall. You can also locate the ESN number by selecting the “Settings” option on your phone then selecting “Phone Info” and scrolling through the technical data for the “ESN.”

• If your cell phone is lost or stolen, report it to the local police department. If the cell phone is for business use, you may want to also inform your network administrator immediately.

While this thinking may seem naïve, college environments play a large part in this increasingly, high-risk scenario. Many students are living in communal situations where everything is accessible, specifically information, from social media sites to public computers and WI-FI hotspots. They may find themselves offering their most private information over and over to apply for loans, housing, financial aid, and insurance in an environment that continues to identify students with their social security numbers. Since most students have very little credit history they make unsuspecting targets.

According to a study completed by the Federal Trade Commission, 24% of identity theft complaints are from victims between the ages of 18 and 24. The report also found that this age group takes twice as long to detect fraud. According to a 2010 Identity Fraud report by the Javelin Strategy & Research Group, it takes this age group an average of 132 days, when compared to other age groups and, as a result, they’re more likely to be fraud victims for greater periods of time.

Suddenly the laptop, cell phone, and text books are not enough when sending your children to college. Here are some tips that can protect your student while they’re away at school.

• Talk to your college-bound students about identity theft and how they can protect themselves. The Identity Theft Resource Center and the Federal Trade Commission have resources and guides for students leaving for college. Take this opportunity to educate your children about identity theft. Think of it as a way to protect their financial future and their future careers. Do you want your child to have to explain their poor credit scores as part of their job interview?

• Purchase a cross-cut shredder. Students should be shredding all pre-approved credit card offers, and reconciling their bank account statements monthly. Monitoring all accounts will assist in identifying fraudulent activity quickly as well as any account overdrafts resulting in penalties and fees. Parents and students might want to consider setting time aside to go over their child’s credit reports together when they come home to visit. See http://www.ftc.gov/freereports for more information from the Federal Trade Commission about free credit reports.

• Purchase a safe for your student’s laptop and important documents. In fact, students may be better off to just leave their social security card and other documents with personal identifying information at home. As for the laptop, it goes without saying, password protect it and change it often. Students may feel that they can trust their roommates, their roommates’ friends and friends of friends even maintenance personnel, but statistics prove that in half of all identity theft cases the perpetrator is someone the victim knows. Also, have your child keep their computer’s antivirus, security, and browser software updated to ward off new technological advances from identity thieves.

• Use your home address as the permanent mailing address or purchase a PO Box. Use a US postal mailbox when dropping mail off to protect sensitive information.

• Avoid entering sensitive information into a public computer. Wi-Fi hotspots and public computers are everywhere and provide convenience when accessibility to a laptop isn’t possible. But before you log on consider that you may be vulnerable to spyware or some type of installed keying software that collects your keystrokes and then actually emails this information back to the criminal.

While erasing your history, temporary files, and cookies before you log off might protect you, it’s just better to avoid entering any sensitive information into a public computer, even log ins and passwords. Make a habit of using public computers for general surfing or just reading the news.

Education is power when protecting your identity, and we hope you pass this information on to your college-bound student because protecting your child now is an investment in their future.

Monitoring these reports can possibly deter both medical and financial identity theft, and under the FCRA, consumers are entitled to one free report per year from these consumer specialty reporting agencies. This extra measure of prevention can assist in correcting any possible errors reported by creditors or other agencies as a result of identity theft.
The Privacy Rights Clearinghouse recommends that if you have been a victim of identity theft to order as many of these specialty reports as possible. The following list provides agency descriptions and contact information for your free specialty consumer reports:

Medical History Reports

By requesting this report, consumers can monitor their medical histories for inaccuracies, bogus medical services obtained through theft or unexplained prescriptions requests made by someone else.

The Medical Information Bureau (MIB) – This specialty reporting agency gathers information regarding your health, long-term care and disability insurance. Consumers requesting this report may find that unless they have applied for insurance as an individual within the last seven years or have had a serious medical condition they may not have an MIB report on file. You can inquire about this report with MIB toll-free at (866) 692-6901. For more on free reports from MIB, see the company’s web site, www.mib.com/html/request_your_record.html.

Two other agencies that collect consumers’ medical information include Milliman IntelliScript and Ingenix MedPoint. Both agencies collect prescription histories from the last five years, including dosage and refills. Consumers who have applied for individual health, life, or disability insurance can request a copy of their prescription report with either company.

Ingenix MedPoint can be reach at (888) 266-0335 and additional information can be found at www.ingenix.com/ContactUs/

Milliman IntelliScript can be reached toll free at (877) 211-4816 or visit their website at www.rxhistories.com/how_it_works.html

Check Writing History Reports

Currently check writing history reports can be obtained from one of the following major consumer specialty agencies.

ChexSystems collects check cashing information from banks and credit unions for consumer reports. This information includes returned checks and overdraft fees. Monitoring this report can determine if fraudulent checks have been written against any financial accounts you have. The agency also offers a security alert on your ChexSystems consumer file if you suspect identity theft. You can call toll free at (800) 428-9623 or visit their website.

TeleCheck provides check authorization and verification to member retailers. It also maintains a database of returned checks and fraud histories. To receive their annual report, call (800)366-2425. At this writing, there were no services available for online requests.

Employment History Reports

According to the Privacy Rights Clearinghouse, there are currently 300 members listed with the Association of Professional Background Screeners. The need for employment verification has never been disputed, but information from these agencies can assist with pinpointing possible misuse of your personal identifying information, such as your Social Security number.

The Work Number is a service that provides a variety of human resource services including employment verification. Under the FCRA, you can request one free report every year. This report consists of employment and income data from employers and information about other verifiers such as lending and credit agencies. You also have the option to request alerts if you have been a victim of identity theft. Currently, all requests for the Employment Data report must be made through their toll free number at (866) 604-6570.

LexisNexis Screening Solutions Inc. offers a free copy of your Employment History report every year, but cautions that the information would only exist if your employer requested a background check, with your consent, through their organization. You can place your request toll free at (866) 312-8075. To save you even more time, you can also order insurance and rental history reports through them. Phone numbers are available on their website.

Rental History Reports

When the market is saturated with so many reporting and screening agencies, individuals may find that ordering a tenant history report “is easier said than done”. To save time, it’s best to simply ask the landlord for the agency contact information before doing the legwork. We’ve already mentioned LexisNexis® as one agency that can provide three specialty reports, including employment, insurance and resident histories, but we’ve provided contact information to other rental history reporting agencies for your convenience.

RentBureau provides a printable form which can be faxed or mailed. Both the phone number and mailing address appear on the form. You can also call them directly at (807) 704-4519.

CoreLogic SafeRent offers employment screening and other products and services to the rental markets. Contact customer service at (866) 654-9900.

Tenant Data Services offers information online about placing a request for your yearly free report. Consumers can download this form which they complete and return to the address given. If you need more information, call toll free (800) 228-1837.

Insurance Claims Reports

The CLUE or Comprehensive Loss Underwriting Exchange report is compiled using data from your claim history against auto and homeowner’s insurance policies. Potential thieves could be using your personal data to obtain insurance leaving you with correcting damaging information, or at worse negative information that can adversely affect your purchase of a house or automobile. LexisNexis, as mentioned previously, can provide you this report online.

ISO A-Plus also offers a yearly report for free. You can also reach them toll free at (800) 627-3487.

Under the Fair Credit Reporting Act, consumers are entitled to these reports and we encourage you to add this task to your to-do list whenever ordering credit reports. This list was compiled with help of these resources: PrivacyRights.org, , MyFico.com, ListSergeant.com, Bankrate and CreditBoards.com.