February 27th, 2014
Jackie here. Like every internet trend, Flappy Bird has generated a trove of scams as scammers seek to cash in on the now forbidden app. Don’t find yourself a victim of a flappy bird scam and possibly identity theft; learn how to spot and avoid potentially dangerous apps. A few minutes of fun isn’t worth compromising your identity.
Released in May 2013 Flappy Bird was a hugely popular app until it was removed from the app marketplaces early this year. The controversy surrounding its removal made the app even more popular. In fact, some people who had the original app installed on their smartphones tried to sell them on eBay for thousands of dollars.
Now that the app is unavailable scammers are cashing in, creating look-a-like apps that secretly rack up phone charges and steal information. Be aware that the original Flappy Bird is no longer available; if you are downloading something called Flappy Bird, it is not a legitimate app. Flappy Bird has been removed by its developer and is not available for sale.
Spotting Malicious Apps
Before you install an app on your device make sure you know what you’re installing. Trend Micro has created a great guide for spotting illegitimate apps. Here are a few tips:
Check the Ratings
User ratings provide great insight into the legitimacy of an app. Popular apps should have many reviews and ratings, so if the one you’re considering does not, it might an imposter. Look at some of the reviews and look for potential problems before you install.
Before you select an app, check it out. Research the app not only in the marketplace, but also online. A quick search may reveal potential problems and scams you should be aware of.
Keep yourself safe from this Flappy Bird scam by choosing your apps carefully and by avoiding malicious ones.
February 20th, 2014
Jackie here. Be on the lookout for a new scam involving fake funeral notices. This scam preys on emotion by enticing victims to click on malicious links for more information about a departed family member or friend. If you see a notice like this one, play it safe and click delete. You don’t want to risk ID theft or computer viruses by indulging your curiosity.
Fake funeral notices are popping up in email boxes around the country. The notice usually bears a subject line with something like, “Funeral Notification”. Once they open the email recipients see an official looking email that looks like it comes from a funeral home. While the reported emails at this point all claim to be from a Texas funeral home, this could change as more people become aware of the scam. The email invites the viewer to a celebration of life for a dear friend (name not included in the body of the email) and encourages clicking on the link for more information.
If you receive an email like this one, don’t click on the link. It will direct you to a foreign website that will install malware on your device. The email is not what it seems and is just a clever trick to get people to click on the malicious links within.
February 18th, 2014
Jackie here. Several weeks back we shared an article with you on the AllClear ID blog about kids increasing the ID theft risk of their parents through unwise online behaviors. To help you protect yourself and your children, we’ve found a great new resource. The FTC just finished a revision of their guide “Net Cetera: Chatting with Kids About Being Online”. If you have kids, take a few minutes to review this guide with them and ensure the whole family is educated about identity theft and its dangers.
What Does the Guide Cover?
This informative guide from the FTC is packed with educational resources and is perfect for anyone that deals with children (parents, teachers, relatives, etc.). The new revision updates the information to make it more applicable to today’s online world (it was originally written in 2009 and a lot has changed since then).
Here are some of the sections you’ll find in the guide:
- Talking to Your Kids- How do you address the dangers of the internet with your kids? This can be a complicated topic to start discussing. This guide helps parents to broach online safety with kids, with tips for starting conversations and communicating clearly.
- Ages and Stages- At different ages children use the internet differently. The guide shares information about communicating risks for young children, tweens and teens. It also features advice on using parental controls wisely.
- Social Media- Children and teens often use the internet to interact with peers, family and others online. Learn how to use social media wisely and how to avoid some of the common risks of socialization in an online world.
- Mobile Devices- Do your kids have a smartphone or tablet? Learn how to protect them from online risks even when you can’t monitor their every move.
- Being Smart About Connecting- Just as adults can run into problems when using unsecure internet connections, kids can too. Learn how to teach your kids about smart connecting and sharing when using things like public Wi-Fi.
Keeping your kids safe online is just as important as protecting yourself from ID theft. Check out this new revision of the FTC’s guide and use it to teach your kids about online safety.
February 17th, 2014
Jackie here. Think about your online banking account for a minute. What is your user ID? If you are like many, it might be your email address, but according to an article from Consumer Reports, this can be a mistake. If you can, consider using a different user ID and a strong password to better protect your accounts.
Why Using Your Email is a Problem
Thieves use many tactics to obtain sensitive information. One trick they use is known as multi-purposing. This strategy is similar to social engineering; it uses one piece of known information to try and obtain other details. In the case of email addresses, this strategy takes a known email address and uses it to try and crack passwords on financial and other accounts.
When thieves get your email address, they then have one piece of the puzzle, making it that much easier to obtain your personal information like birth dates, SSNs, account numbers, etc. If the amount of spam I receive is any indication, scammers can get email addresses pretty easily. The more information thieves have, the higher your ID theft risk.
While there are certainly times when an email address is the only option for creating a user ID, try to use other alternatives when you can. Just like passwords, user IDs should be complex and hard to crack. The more complicated your login credentials, the less likely thieves are to have access to your personal information.
In addition you can better protect your information, even when you must use an email as a user ID, by creating strong passwords. We’ve talked about this many times here on the blog; if you need a refresher this article is a good one.
February 12th, 2014
Tamara here, AllClear ID Investigator. Identity theft is one of the fastest growing white collar crimes to date. It is very likely that you or someone you know has become a victim. There are many aspects of identity theft that are widely known, such as phishing emails, Nigerian scams, and card skimmers. Here I am going to touch on some of the lesser known areas of identity theft.
Military personnel and members are particularly vulnerable.
Every day, in a multitude of ways, members of the military use their Social Security number. The number is used for everything from labeling one’s laundry bag to checking out sports equipment. Being conditioned to provide one’s social security number can lead to inadvertently disclosing it to an unfavorable party. It also increases the risk of it getting into the hands of identity thieves.
Former Army intelligence officer, now West Point professor, Lt. Col. Gregory Conti called for a change in the policy regarding personal information use by service personnel in a report he coauthored, The Military’s Cultural Disregard for Personal Information. In December of 2010, the Department of Defense stated Social Security numbers would no longer appear on new military ID cards.
Medical identity theft is a reality.
Even if you haven’t had your personal information stolen and used to open fraudulent acounts, there’s another area where your information may be used: for medical treatment. A thief may make a fake ID and use it to obtain treatment, and you may not become aware of it until it hits your credit report or is reflected on an Explanation of Benefits. If you discover you have become a victim of medical identity theft, the FTC has a number of tips to help direct you on the path of clearing it.
Computer games and consoles are also susceptible to attack.
As the population becomes more aware of phishing attacks via email, the attackers are taking another route: video games and consoles. Be aware of notices claiming there are issues with your account information requesting you either click on a link, which may download malware, or provide your personal information. The best bet to avoid falling victim to a phishing attempt is to go to the legitimate compnay website if you need to interact with them and go from there.
Search engine poisoning is deceitful.
As you research what you suspect to be a scam or a phishing attack, be careful in your review of the results that are populated by your search engine. Identity thieves have been manipulating the search results so their fake site appears higher. There are a number of things to look out for to help determine whether or not the website is real, including spelling and/or grammatical errors, slight differences to the company’s logo, or an incorrect UR (hover your cursor over the URL to see where it routes you).
Fake Wi-Fi hotspots are a trap!
Generally, one should exercise caution when using public Wi-Fi hotspots, though they tend to be safe. But, there is a chance you could inadvertently be logging into a fake Wi-Fi hotspot that appears to be the airport’s, hotel’s, or coffee shop’s hotspot. Though it is not blaringly obvious as to whether or not it is fake, there are a few things to watch out for. One item to check for is the name of the hotspot. Make sure it matches the one the facility has advised you to use. Another would be to check the URL of the first page. If it matches the name of wherever it claims to be, it usually is safe.
These tips should help you avoid falling victim to ID theft from one of the less commone methods. As always, please contact us if you have a question or are in need of assistance.
February 3rd, 2014
Jackie here. Last year we warned you about a tech support scam that was going around. Scammers were contacting people by phone pretending to be from major companies like Microsoft. They would then remotely access the victim’s computer, stealing information and charging for their “services”. While this scam was scary, I recently learned of a new variation on the tech support scam that is even trickier and that has the potential to claim many more victims. Be on the lookout for this scam and never share your financial information or computer login credentials with an unknown caller.
This scam is a follow up to the tech support scam we saw in 2012 and 2013. This time the callers will ask if you’ve recently received tech support. They claim that if you received services you could possibly receive a refund. There are several variations to this scam, including ones where they offer to refund those that were unsatisfied and ones where they claim the company is going out of business and refunding those that have already paid.
The scammer claims they need bank account or credit card information to process the claim. They may ask for remote access to your computer, possibly under the guise of helping you fill out paperwork. This scam has the potential to create double the trouble for those who fell victim to the last scam, as well as reaching new victims.
Avoiding this Scam
Don’t fall victim to this scam or ones like it. If you have paid for phony tech support services, file a complaint with FTC and dispute the charges with your credit card company. Legitimate companies will not call and offer to reverse the charges for you. Never provide your bank account or credit card information to an unsolicited caller.
January 31st, 2014
Jackie here. We’ve talked a lot about protecting your kids from identity theft. Have you ever considered the impact your kids might have on YOUR credit score? Children and teens use the internet a lot and if they aren’t careful they could potentially expose people in your house to identity theft. Teach your kids how to stay safe online. This important lesson won’t just protect them, but will protect your identity as well.
To keep your identity safe and teach your kids good online behavior, make sure they understand these essential internet safety rules:
Do your teens know how to create a password? A strong password should be a combination of letters (upper and lowercase), numbers and symbols. Teach your kids to avoid words found in the dictionary, names of pets and nicknames. Any ‘common knowledge’ information that can easily be discovered online by a savvy ID thief (think birthdays and maiden names) should also not be used as passwords. For more password tips, check out these articles on our blog; we talk about password safety often.
Never Download Without Approval
That free game might be a lot of fun, but it could be exposing your computer to spyware and capturing sensitive important entered on your computer. To help you kids to master the art of smart downloading, have them ask you for approval first. You can teach them which downloads are safe and which are identity theft traps—reading the data usage policies of the apps is a good place to look for information about if and how your personal info will be tracked.
Be Careful Who You Friend
Facebook and other social media sites are big draws for teen users. Make sure your children only accept friend requests from actual friends they know in-person. Accepting friend requests from unknown people can expose personal and family information to strangers. Take time to go through your children’s social media accounts with them, making sure that they are using good practices when selecting friends. You may also want to review privacy settings with your teen occasionally.
Don’t Share Personal Information Via Email
Does your child know how to identify a phishing email or a scam? Teach your child how to recognize email scams as children may be more likely to fall victim or to share personal family information that could lead to identity theft.
Teaching your teen good internet practices won’t just protect them; it could also keep you safe from identity theft.
January 30th, 2014
Jackie here. Are you a victim of identity theft? While ID theft is a growing problem, it isn’t one that you have to suffer alone. Whether you are having problems with financial identity theft, tax identity theft or have general questions, help is available. One great resource to turn to is the National Identity Theft Victim Assistance Networks Program (NITVAN), a new organization started by the federal Office for Victims of Crime. With trained professionals working in coalitions around the country, this organization is focused on getting identity theft victims the help they need.
What is NITVAN?
Every ID theft victim has a different story. Financial ID theft can devastate finances, making it difficult to obtain loans and pay bills. Criminal ID theft has resulted in false arrests and legal battles. Tax ID theft can create problems with the IRS that include lost refunds and false employment records. With many different types of identity theft, there is no one simple way to resolve the problem. NITVAN understands that identity theft is a complex and growing problem and seeks to help victims receive better support.
Coalitions across the country coordinate with the National Network to provide victims with the help they need. Their website has a rich assortment of tools for identity theft victims. Use their Resource Map to find local resources that may be available in your state.
Identity theft is a growing problem, a fact that isn’t likely to change anytime soon. Do your best to protect your information and catch the problem early and remember if you need help, NITVAN is a valuable resource to all identity theft victims.
January 28th, 2014
Jackie here. Happy Data Privacy Day! How will you celebrate this year? Data Privacy Day is today (January 28th); it serves as an excellent reminder to take back control of our data and find ways to limit and control what we share. There’s nothing wrong with sharing data, but we do need to know what we’re sharing and make sure those we trust with our information will properly protect it.
The annual Data Privacy Day celebration is stacking up to be a good one this year. In addition to local events held across the country, there are several great (many free) webinars scheduled to help you learn more about privacy and what you can do to protect yourself and your family. Check out the list of events and attend one if you can.
If you can’t attend one of the Data Privacy Day events, you can still get in on the fun. At the Stay Safe Online Privacy Library, you’ll find privacy resources, videos and information. Learn why privacy matters, find out about cookies or study up on identity theft.
A fun way to help your kids celebrate is to send them a link to this Privacy Quiz. After they’re done, review their responses with them and take a few moments to teach your children about how to safely share online. (The quiz can be fun for adults too!)
To round out the celebration, check up on your privacy settings. This helpful guide will teach you to manage your privacy on top websites like Amazon, Pandora, Flickr and more.
Let’s make today the day we protect our privacy. Get in on the fun and share with friends so they can celebrate too!
January 22nd, 2014
Jackie here. Here on the AllClear ID blog we talk a lot about ID theft including ways to protect your family, trends, scams and identity theft resources. On other sites, though, ID theft isn’t as big of a focus. While you might not be seeing identity theft news on CNN or Yahoo! every day, it’s important to remember the problem still exists. Each year, ID theft generates economic losses similar to those incurred with natural disasters (Hurricane Sandy caused $20 billion in damage; ID theft creates losses of about $20.8 billion annually). While laws are being enacted to better protect us and law enforcement is getting better at catching thieves, identity theft still wreaks havoc on lives every day. If you haven’t been a victim, you probably know someone who is.
We talk a lot about data breaches, a problem that seems to be getting worse. For the last nine years there has been an average of more than one breach each day. Due to this increase in the availability of stolen information, it is estimated that the price of an identity is just $25, less than the cost of a steak dinner.
ID Theft is Changing
While ID theft is still a big problem, it is changing. Once credit card fraud was the big worry, now tax identity theft is rising and medical records are becoming a hot target for thieves. Enforcing the law is getting more difficult too, as thieves use the internet to hide their activities and identities.
The changing landscape of ID theft makes this problem no less disastrous than it once was, but much more complex. Will we someday see the same protections on our medical records as we have on our credit reports?
While identity theft is changing, it is important to realize that it is still a problem. What can we do? Remain vigilant. Check your credit reports and bank statements. If you find an inaccuracy, report it and correct it. Don’t think your children are immune from the problem; they are at risk too. Now is not the time to stop fighting against ID theft—just because it’s not making headlines every day, doesn’t mean the risk is no longer there.
January 20th, 2014
Aaron here, AllClear ID Investigator. Becoming a victim of identity theft is not just something that happens to adults; children are heavily targeted as well. Recently, the Florida state legislature met about a new bill that they hope will prevent child ID theft, called the KIDS Act (S.B.242). Adam Putman, the Agriculture Commissioner of FL testified in favor of the S.B.246, bringing with him a former foster child who was a victim of identity theft, Ashtavia Maddox.
“I came here today to share my story with you because I want to help prevent other children from going through what I’m going through,” said Ashtavia.
“It is estimated that more than 50,000 children in Florida become victims of identity theft every year,” said Commissioner Putnam. “Identity theft can have a devastating impact on their futures. Bad credit as a result of identity theft will keep someone from gaining employment, obtaining a school loan and accessing credit. To think about the opportunities Ashtavia Maddox has missed out on because of what has happened to her is heartbreaking. The KIDS Act can prevent identity theft from destroying the lives of others.”
Ashtavia Maddox, now 22 years old, found out there was a problem with her identity when applying for her first apartment when she was 18. She filled out her application and found out she was denied. She also applied for other lines of credit onyl to be denied for those as well. She and her guardian found out this was because she was a victim of identity theft.
It is hoped that the KIDS Act, which will allow the parents or guardians of a child under the age of 18 to create a credit file, will help catch any cases of child ID theft before they get out of control. Once the file is set up, it can be frozen indefinitely, preventing thieves from gaining access to the stolen identity.
In Florida, it is estimated that more than 50,000 people fall victim of identity theft each year. It’s recorded that over a $100 million dollars is taken every year from children whose identities have been compromised.
While adults are able to protect themselves from identity theft by monitoring their credit or ordering a fraud alert or freeze on their credit, there are currently no proactive measures to protect minors from identity theft in many states. The KIDS Act could be a first step toward that sort of protection in Florida.
January 17th, 2014
Jackie here. As Tax Identity Theft Awareness week comes to a close, I wanted to share a few of the things I learned this week with you. The FTC and the Identity Theft Resource Center co-hosted a great Twitter chat this week; check out the hashtag #IDTheftChat for more great tips!
Don’t Carry Your Social Security Card
We’ve told you before not to carry your SSN in your wallet, but many people still do. I thought this was a great reminder to check my wallet for things that shouldn’t be in there. Other things you shouldn’t carry include bank PINs, account numbers and passwords. If you’re a business, safe guard your EIN just like you would a SSN.
Shred. Shred, Shred
The three items thieves need to commit tax ID theft are your SSN, your birth date, and your name. If you don’t shred your trash and personal information some of these will surely end up in the trash. Shredders are relatively inexpensive and are a priceless tool in fighting all types of ID theft. If you don’t have a shredder of your own, check with your local Better Business Bureau; they often host shred days with free shredding services.
Watch for Scams
All year round, but especially during tax season, thieves impersonate the IRS to get information. Watch for websites, emails, tweets and phone messages that claim to be from the IRS. If you don’t know whether something is legitimate, double check before you share personal information.
Keep Important Documents
When filing taxes you may need to hang on to some documents for several years. If you’re storing these digitally make sure they are encrypted. If you store hard copies, keep them in a secure place away from prying eyes. This neat chart was shared during the chat to help you know how long to keep each record.
Businesses Fall Victim Too
Consumers aren’t the only ones that are at risk for tax related ID theft. Businesses have risks too. The FTC shared a blog post they’ve created to help businesses understand tax ID theft. If you own a business or help manage one, this post is a must read.
Tax season is upon us so start gathering those records and file early. The sooner you file, the lower your risk for tax ID theft. When you do file use a secure connection if you file online, never public Wi-Fi. If you mail in your taxes, take them to the post office directly.
The FTC’s Twitter chat for Tax Identity Theft Awareness week was a great one. Check it out now!
January 16th, 2014
Jenna here. Tax identity theft is a topic that has recently become important to me after falling victim to it last year. You may be wondering how someone with so much knowledge of identity theft fell victim to the crime and the answer is that it can happen to anyone, regardless of their level of knowledge.
How It Happened
With the help of an accountant, I prepared all of the necessary paperwork to file my tax return, and left the office feeling very accomplished—I had knocked a huge item off my to-do list. A day or two later, I received a call from my accountant to tell me that he received word from the IRS that someone had already filed a tax return under my name. Initially, I couldn’t believe this happened to me. I was aware of tax identity theft, but thought I had taken steps to prevent it by safeguarding my personal information, filing early, and using a trusted accountant.
After the initial shock wore off, I began to worry about sorting things out. How was I going to file my return? What if the issue couldn’t be resolved? How did someone get my SSN and other personal information?
Getting Things Resolved
I am happy to report that the resolution process went much smoother than I expected it to. The first thing I did was to call the IRS Identity Protection Specialized Unit at 1-800-908-4490 to see what steps I should take. The steps were surprisingly simple. I went online and downloaded the IRS Identity Theft Affidavit, Form 14039 and filled it out. Next, I made a copy of it and mailed it in to the specified address. Within a week or two, I was notified that my identity had been restored with the IRS, and I was able to file my return successfully.
While I was waiting for the news, I made sure to pull copies of my credit report (full disclaimer, I use our service, so I was able to get assistance from a colleague) to see if there was any suspicious activity—someone did use my SSN to file the return, so I wanted to be sure I was safe. Fortunately, no other activity was detected, and things are back to normal for now. Just to be safe, I did change my bank account passwords and PIN numbers.
What I Learned
This experience taught me that no one is immune to identity theft; even someone who is surrounded by it every day isn’t immune. In addition, I learned that in some cases, identity theft can be resolved successfully by taking the proper steps to detect, report, and resolve the issue. The IRS has great identity protection resources on their website that I found very helpful.
January 15th, 2014
Jenna here. As this is Tax Identity Theft Awareness Week, and as we head into tax season, we think it’s important for you to know how to spot tax-related identity theft.
How to Spot It
Fortunately, tax identity theft isn’t like traditional identity theft in that it is usually discovered fairly quickly. In most cases, consumers don’t have to play detective in order to discover tax ID theft—The IRS will contact you via letter if they notice an instance of more than one person using the same SSN. Please remember that they will not contact you via email, text, or social media and that this sort of communication is likely a scam.
If someone else uses your SSN to get a job and their employer reports their income to the IRS using your SSN, the situation is a bit more complicated. Chances are, when the IRS notices that you filed your own return (which didn’t contain the fraudulent income), they will send you a letter stating that you received wages that you failed to report. If you ever receive one of these letters, do not simply disregard it and think it is a mistake—contact the IRS immediately via a verified number on their website. Be sure you keep record of your communication with them (date, time, name of the person you spoke with) to ensure the issue is resolved.
For more tips, visit this helpful FTC page.
January 14th, 2014
Jenna here. The IRS shed some light on the steps they are taking to crack down on tax identity theft last week and we found some of the information very interesting. Here are some key highlights from 2013:
- The IRS launched 1,492 criminal investigations into identity theft in 2013, up 66% from the number of investigations in 2012
- Prosecutions and indictments more than doubled
- The IRS blocked more than $50 billion in fraudulent tax refunds
- The IRS currently has more than 3,000 agents working to prevent tax identity theft
You can read the full article here.
January 13th, 2014
Jenna here. Each week, we will be posting an intersting video clip. In honor of Tax Identity Theft Awareness Week, we chose a video that offers a sneak peak into just how easy it is to steal a tax refund.
Stealing Your Tax Refund Is Easier Than You Think, USA Today
January 13th, 2014
Jenna here. This is our first post for Tax Identity Theft Awareness Week, so we wanted to start with the basics. Tax identity theft may seem like a simple topic to understand, but there can be a lot of misinformation out there and we don’t want anyone to fall victim simply because they didn’t get the right info. The following information was disseminated by the FTC specifically for this event, so rest assured it is reliable. Be sure to check back each day for a new tax identity theft post.
What Is Tax Identity Theft?
Tax identity theft happens when someone files a phony tax return using your personal information — like your Social Security number — to get a tax refund from the IRS. It also can happen when someone uses your Social Security number to get a job or claims your child as a dependent on a tax return. Tax identity theft is the most common form of identity theft reported to the Federal Trade Commission. The IRS says tax identity theft is a top priority and says it has hired new staff, explored new technologies, and adopted new procedures to fight it.
What You Can Do
- File your tax return early in the tax season, if you can.
- Use a secure internet connection if you file electronically, or mail your tax return directly from the post office.
- Shred copies of your tax return, drafts, or calculation sheets you no longer need.
- Respond to all mail from the IRS as soon as possible.
- Know the IRS won’t contact you by email, text, or social media. If the IRS needs information, it will contact you by mail.
- Don’t give out your Social Security number (SSN) unless necessary.
- Research a tax preparer thoroughly before you hand over personal information.
- If your SSN has been compromised, contact the IRS ID Theft Protection Specialized Unit at 1-800-908-4490.
- Check your credit report at least once a year for free at annualcreditreport.com to make sure no other accounts have been opened in your name.
What To Do If You Do Fall Victim
Tax identity theft victims typically find out about the crime when they get a letter from the IRS saying that more than one tax return was filed in the their name, or IRS records show they received wages from an employer they don’t know. If you get a letter like this, don’t panic. Contact the IRS Identity Protection Specialized Unit at 1-800-908-4490.
More information about tax identity theft is available from the FTC at http://www.ftc.gov/idtheft, the IRS at http://www.irs.gov/identity-theft. We’ve also talked a lot about tax identity theft on our blog. You can find your state/local office contact information here: http://www.irs.gov/uac/Contact-Your-Local-IRS-Office-1
January 9th, 2014
Jenna here. We have exciting news! The FTC is hosting their first ever Tax Identity Theft Awareness Week January 13th-17th. That’s next week! To do our part to raise awareness about this growing issue, we will be posting helpful information and links on our blog, Facebook, Twitter, and Google+ pages every day, so be sure to check them out for great information. To make the most out of next week, here are some helpful resources you should take a look at to ensure you don’t miss out on the action:
FTC Press Release about the event:
FTC’s Tax Identity Theft Awareness Week website:
Regional Events for Tax Identity Theft Awareness Week:
Check back next week to learn all about tax identity theft just in time for tax season!
January 8th, 2014
Jackie here. As we roll into the New Year, our thoughts turn to getting things in order for taxes. As tax identity theft is a big problem, it’s important to always turn to trusted sources when looking for tax information. Did you know the IRS has several different resources for you to use? Whether you like Tumblr, YouTube, iTunes, or Twitter, there’s an official IRS resource to help you get through tax season successfully. Which of these resources will you check out? Let us know which is your favorite!
- Official Smartphone App- Interact with the IRS using your Android or IOS smartphone via the IRS2Go V3 app. With the app you can check refund status, get tax receipts, tax tips and advice and stay up to date with the latest IRS news.
- Tumblr- If you’re on Tumblr, be sure to check out the IRS’ official page. The page was new for 2013 and already has received more than 200,000 views. One identity-friendly feature is the scam alerts and warnings posted on the site.
- YouTube- Need help with your taxes? The more than 130 videos on the IRS YouTube channel might help. There’s even a video specifically created to help victims of ID theft.
- Twitter- With five official IRS Twitter accounts, there’s one for every situation. For IRS news and tax related announcements follow @IRSnews or @IRSenEspanol. Tax preparers might also be interested in @IRStaxpros and job seekers can find information at @RecruitmentIRS. The final Twitter page is devoted to the IRS Taxpayer Advocate Service and is found @YourVoiceAtIRS.
- iTunes- Love Podcasts? Check out the IRS collection of helpful audio files. We recommend “Protect Yourself from Identity Theft” and “Are You a Victim of Identity Theft?”
- Facebook- Although not commonly updated, the IRS official Facebook page is available for those that want to interact with the agency; you’ll likely get more information, however, by accessing some of their other informational channels.
As you get ready for tax season, check out these helpful IRS resources; be on the lookout for ID theft warnings and scam alerts from us as well!
January 7th, 2014
George here, AllClear ID Investigator. In October 2012, the U.S. Secret Service detected a security breach at the South Carolina Department of Revenue. The attack exposed 3.6 million Social Security numbers and 387,000 credit and debit card numbers. The stolen data also included consumer tax return information and businesses’ Tax ID numbers. South Carolina hired a cyber-security firm to stop the attack and install new hardware and software at the Revenue Department to strengthen their security. The state also paid for one year of credit monitoring and identity theft protection for those affected.
Consumer Affairs documented 84 security breaches before the DOR breach in October 2013, affecting more than 1 million state consumers, and 36 more security breaches since, affecting 77,000 South Carolinians. Consumer Affairs officials said South Carolina ranks 17th in the nation for identity theft complaints, it was ranked 36th in 2005.
After the attack, legislation was proposed to revamp security procedures at state agencies to prevent it from happening again. Lawmakers authorized and funded a new identity theft division at the Department of Consumer Affairs; the unit was officially announced on October 1st 2013. The four person team will educate South Carolinians in preventing ID theft, enforcing state identity theft laws, and guiding consumers through credit restoration. The Consumer Affairs ID Theft unit will help anyone in South Carolina, not just those affected by the DOR breach. Unit director Marti Phillips says, “We’re going to provide education and outreach to consumers across South Carolina about what identity theft is, the steps that consumers can take to protect themselves, and then what they need to know if they’re the victim of identity theft.” More information can be found at http://www.consumer.sc.gov/. The website also provided a toll free number, 1-800-922-1594.
January 3rd, 2014
Jackie here. If you think Twitter is only a place for celebrity selfies and favorite quotes, you’re missing out on some great identity theft advice. Recently, the Identity Theft Resource Center partnered with other organizations to put on an ID theft Twitter chat. Keep reading for some of our favorite tips from the event.
- Trusted Devices- One topic of conversation during the chat involved trusted devices for online shopping. The experts recommended using devices that you know and trust, and that others don’t have access to. One went so far as to say, “Personal devices only for me.” When you get ready to make a purchase, make sure you know the device you’re using is secure.
- Keeping Your Digital Wallet Secure- Shopping with your smartphone has risks, but there are ways to make your shopping experience safer. During the Twitter chat a link was shared to this slideshow presentation titled “Securing
Your Digital Wallet”. This is a must-watch for all of you with smartphones. It has great tips about choosing mobile payment options and protecting yourself when shopping online.
- Look for HTTPS- An easy way to stay safe when shopping online is to check for https in the URL. This indicates a secure connection.
- Online Shopping Credit Card- Another helpful tip was to use a low limit credit card just for online shopping. If the number is compromised it is easier to find problems and the amount lost will be much lower.
- Use Verified Apps- The experts agreed that telling which sites are secure can be tricky on smartphones. Their solution? Use verified apps instead. This makes it easy to shop while knowing you’re at a secure, legitimate site.
- Think About Security- I thought this tip from the chat was priceless: “Think about security proactively rather than reactively, more often than not you won’t find it as an inconvenience.”
Check out the Twitter chat yourself (you’ll find it on the ITRC Twitter page on December 5) for more great tips on safe online shopping. Also check out these ID theft tips from the FTC’s Twitter summertime Twitter chat.
January 1st, 2014
Jackie here. As we say goodbye to 2013 and welcome in the new year, it’s always interesting to look back on ID theft trends and make a few predictions for the coming year. Let’s take a quick look at our list of threats and predictions
for last year… did they pan out? Then I’ll give you a few predictions for the ID theft trends that may be coming in the future.
- “Child ID Theft Will Continue to Rise”- Although the numbers aren’t out yet showing the number of child ID theft victims in 2013, a 2012 report found that the problem was certainly prevalent. The study found that 2.5% of U.S. households with children had experienced child identity fraud at some point. Legislators have been passing child ID theft laws as well. This year, several states either passed or are working on laws to allow parents to freeze their children’s credit, requiring foster agencies to help clean up children’s credit reports and creating child ID theft prevention programs.
- “Monetization of Social Networks”- Social networks certainly expanded their money making efforts this last year. Twitter went public with their stock, generating a few IPO related scams along the way. Social media scams are still big business for scammers, so keep an eye open for offers of fake gift cards, airline miles, etc. in the coming year too.
- Tax ID Theft- Tax ID theft continues to be a problem. As the numbers roll in for 2013, we are seeing fairly large increases in the tax ID theft rates across states. In all of 2012 there were 1.2 million taxpayers with tax id theft problems. In just the first 6 months of 2013, there were 1.6 million victims.
Now that we’ve reviewed a few of last year’s predictions, let’s move on to what we see coming as we roll into 2014.
- More Companies Shift to the Cloud- Industry leaders predict that companies will continue to shift their data storage needs to the cloud. What does this mean for you? It means increased risk. When information is stored online it can be accessed from anywhere, both by the companies themselves and by hackers. Sure, it’s convenient, but it also means an increased risk of data breaches and security incidents related to data stored in the cloud.
- Mobile Malware- The days of not having to worry about viruses on your mobile phone are coming to an end. It’s likely that we will see increases in mobile malware, especially on Android phones. If you haven’t secured your phone yet, do so. Thieves always like an easy target. This fact sheet from the Privacy Rights Clearinghouse has some great tips for securing your smartphone.
- Passwords That Aren’t Passwords- People are notorious for creating bad passwords (think “password” or “1234567”). As companies seek to create more secure devices and accounts, this means finding solutions to the password that aren’t as easy to compromise. Biometric technologies are one possible solution. Maybe in 2014 we will see a smartphone that uses a heartbeat for identification or an online bank account that uses fingerprints to log you in.
- Increased Medical ID Theft- As medical records continue to shift online, the odds of a medical record breach continue to increase. Medical professionals have been warned to expect increased data security risks for 2014.
- Increased Mobile Payment Fraud- It is expected that the mobile payment industry will grow by more than 30% a year for the next several years. As this payment method grows, thieves will likely get in on the action too, leading to an increase in mobile payment fraud.
May your 2014 be filled with health and happiness and, of course, be ID theft free.
December 31st, 2013
Jackie here. We’ve warned you numerous times not to click on links in unknown emails (here, here and here recently), but this scam proves that phishing doesn’t always involve email links. Emails can still be malicious even if there isn’t link in the text. Keep on the alert for link-free phishing and protect yourself from ID theft and fraud.
We’re all familiar with the traditional phishing scams. You receive an email that appears to be from a legitimate company or person that encourages you to follow a link contained in the email. Some phishing emails promise a great deal on a new TV, others alert you to a problem with an account, but they all lead to malicious content. Some lead you to look-alike websites that get you to enter usernames and passwords, while others lead to malware that will track and capture your personal information.
This twist on the traditional phishing scam doesn’t include links in the email body, but instead hides them in unexpected places. When checking your email, remain alert. Scams can be lurking in places other than the email body.
Beware of Attachments
One new tactic is to embed malware in email attachments. You click on the attachment and the file causes your browser to crash while installing malware. This approach is fairly common, and you may already be aware of it.
If the attachment opens successfully however, most people assume they’re safe. But, danger can be lurking inside of the attachment—some scammers use innocent looking attachments to hide malicious links. That link in the PDF file you just opened is just as risky as a link inside of an email.
Don’t click on links in emails, even if they come hiding inside of an attachment. As always, we will keep you updated with any new scams that pop up!
To learn more about this scam and to see some examples of the scam in action check out this article.
December 30th, 2013
Jackie here. I recently learned of a new scam fraudsters are using to steal personal information. This scam is a tricky one and could easily fool even the most cautious of consumers into sharing information they shouldn’t. Be on the lookout for spammy emails and remember that banks and credit card companies won’t typically use email to messages that ask for sensitive information.
This scam uses excitement to draw victims in by sending an email indicating they are eligible for a credit line increase. This offer can be especially exciting around the holidays when a little extra spending power is certainly welcome. The email encourages the recipient to click on an email link to activate the new spending limit. Don’t do it; clicking the link could lead to malware, requests for personal information, and a host of other problems.
Avoiding the Scam
While this scam might seem convincing at first, there are ways you can protect yourself. Here are some tips:
- Be Cautious of Emails- Banks, credit card companies, and other financial institutions rarely send account-related information via email. Usually they’ll send an email notification of an update to your account which you can view by logging into their website. If you have questions about your accounts, contact the company directly. They can tell you if you’ve received a credit line increase, etc. without you having to follow a fishy email link.
- Common Signs of Spam- Another way to avoid scams is to look for signs of spam and fraud. Does the email use your name or does it simply address you by email address? Most reputable companies will use your name in an email while scammers may only use your email address. Misspelled words and awkwardly worded text are other common signs of scam emails. In addition, reputable emails will often contain links to the company’s full site, social media accounts, and other legitimate resources.
- Skip the Spam Folder- My email accounts are quite adept at finding and moving scams to the spam folder. While this isn’t a surefire method for identifying scams, I know to be extra cautious of emails I find in my spam folder. Take a look at your spam filter settings to make sure you are making the most of this resource.
Learn more about this scam from the Better Business Bureau.
December 27th, 2013
Jackie here. We talk a lot about social media scams here on the blog. Often it’s spam Facebook or Twitter accounts that are involved in the latest scams. This new scam really stood out since it uses Instagram to trick unsuspecting consumers into sharing personal information. Be on the lookout for this Instagram scam and protect yourself from the potentially devastating consequences.
This scam involves fake Instagram accounts. While many teens and young adults use the site often, businesses may not. This leaves scammers with lots of opportunities to create phony business pages and build up followers. Often, the scammers will create a page (it usually looks legitimate) and host some sort of giveaway to begin attracting followers.
While giveaways are common on social media, you can often spot a phony one by huge prizes, especially if they promise lots of recipients. For example, an offering of a free $250 gift card just for following an Instagram page is probably a scam.
Once the Instagram page has followers they start sending out spam messages asking you to share personal information or click on links. Those that are tricked into doing this may inadvertently load malware to their computers or expose passwords, financial, or personal information.
How to Protect Yourself
While this scam is new to Instagram, it is one you’ve probably seen countless times before on other social media accounts. Protect yourself with these tips:
- Beware of Free- Businesses may do promotions on social media, but odds are they don’t have a specific page solely devoted to freebies. If a page has free or giveaway in its name, it might be a scam. If a giveaway seems too good to be true, it probably is.
- No Photos- Instagram is a photo sharing site. If a business page doesn’t feature unique photos, it’s worth looking twice before following.
- Guard Personal Information- Don’t share personal information like your password with anyone. A legitimate business will never ask for passwords, bank information, etc. in a message.
- Double Check- If you want to interact with a specific business on Instagram, but are unsure if an account is legitimate, call and ask. They’ll be able to direct you to the company’s official pages on all your favorite social media sites. Often businesses will link to their official social media pages from their website.
December 26th, 2013
Jackie here. What would you do if you received an e-receipt from a retailer where you hadn’t shopped lately? Would you contact your credit card company to report fraud? Would you call the retailer to dispute the purchase? E-receipts are convenient, but if you aren’t careful they have the potential to increase your ID theft risk. Make sure you keep your information protected and that you know what problems to look out for when choosing an emailed receipt over a paper one.
Ask Questions- Before signing up for an e-receipt program you should carefully review the company’s privacy information. How will they keep your information secure? A company should have a concrete plan in place for keeping your email address and credit card information secure. You may also want to find out if signing up will put you on their promotional email list. Sometimes you can opt out of promotional emails at sign up if you ask.
Watch for Spam- E-receipts can lead to more spam emails, so be on the lookout. You may want to create a separate email address just for receipts so you can easily monitor for spam without filling up your regular inbox. Be cautious when reading emails, clicking on links, etc.
Update Your Computer- Keep your anti-virus and other software up to date. This is important whether you receive e-receipts or not.
Contact Companies Using Known Numbers- If you receive an e-receipt for a purchase you didn’t make and you want to contact the company, call a known number for them, not the number listed in the email. A phony e-receipt could potentially be a phishing attempt searching for your personal information.
Learn more about the danger of e-receipts from the Better Business Bureau.
December 23rd, 2013
Jackie here. When a debt collector comes calling, it doesn’t always mean you have a debt to collect. Some debt collectors use deception to try and trick consumers into paying debts they don’t owe. The FTC recently reported about this phantom debt on their consumer blog. Be aware of the problem and if you worry a debt isn’t yours, ask questions before you pay.
The FTC indicates that they have received more than 3000 recent complaints regarding phantom debt. They offer a few tips for protecting yourself from scams like this:
- Ask for Information- Don’t simply trust that a purported debt is legitimate. If you think a caller may be a fake collector, ask for their name, company name, address and phone number.
- Get a Validation Notice- Before you discuss the debt, ask for a written validation notice. This will include information like the amount of your debt, the name of the creditor and more information about your rights regarding debt collection. If a debt collector won’t provide this information, don’t pay and report the problem.
- Don’t Share Personal Information- If you are worried about a fake debt collector don’t share personal or financial information. Some will use this information to commit ID theft. If you’re worried a debt isn’t real, verify before you pay.
- Paying Might Not End the Problem- Some people think that paying a phony debt will make the problem go away, but this isn’t always the case. Sometimes a new debt will then be created, leaving you out the initial payment you made and struggling to fight the problem yet again. Worse is the potential for thieves will use the information you shared to pay the debt (credit card or bank account numbers) to commit ID theft.
Some debts are real and others are not. Before you pay, make sure that your debt is one you really owe.
December 21st, 2013
Tamara here, AllClear ID Investigator. The holidays are here, and even the Better Business Bureau is getting into the spirit by re-creating their annual warning list about common scams during this season, The BBB’s “12 Scam of Christmas.”
BBB’s 12 SCAMS OF CHRISTMAS
On the twelfth day of Christmas,
The scammers gave to me:
Twelve malware e-cards,
Eleven stranded grandkids,
Ten counterfeit gifts,
Eight stolen gift cards,
Seven fake coupons
Six Santa scammers,
Five fake charities,
Four bogus websites,
Three travel scams,
Two phony loves,
And a totally fictitious puppy.
To help you avoid these scams, here are some tips to heed.
• Malware e-cards: That email you got claiming you were sent an e-card, but from someone you don’t know? That’s most likely malware or a virus, which would download itself upon clicking on the attachment or link contained within.
• Stranded grandkids: There are instances where a scammer will hack into an email or other type of social media account and contact the hacked family members and friends claiming to be stranded while traveling and need money. Check with other sources before sending money!
• Counterfeit gifts: So, you found an excellent price on that brand name item for your loved one. Before spending your money, there are a number of ways to ensure the item is legitimate. One of which is making sure to shop at reputable stores and websites.
• Pickpockets: Ensure your pocketbook, wallet, or purse is with you at all times! Even if for a second, do not turn away from your wallet.
• Stolen gift cards: There are a number of ways scammers can get you with a stolen gift card. One way to ensure you’re purchasing a legitimate card is to obtain them from reputable dealers.
• Fake coupons: Every penny counts, but it doesn’t count as much as having your personal information compromised by giving it to a scam artist. Be sure you’re obtaining the deals from the retailer themselves.
• Santa scammers: Before you enter your personal information into a website claiming it will send a letter to your child from Santa, ensure the site it legitimate. It’s probably best to skip any site that asks for an abundance of personal information.
• Fake charities: This time of year charities are included in many people’s gift list. But, be careful. Scammers are aware of that, and will attempt to clone a charity or create a fake charity to finagle the funds from the well intended source.
• Bogus websites: Ensure the site you’re using is legitimate. One way to determine it’s more secure is to look for the “https” in the address bar.
• Travel scams: This time of the year is one of the busiest in terms of travel. When searching for deals, as always, be sure to use a reputable site and ask for references. A quick check of the airline, hotel, or car rental company on the BBB website is always a good step.
So, there it is folks. These tips will help prevent you from being victimized by fraudsters or scammers. Have a good holiday season!
December 19th, 2013
Jackie here. While I hate the inconvenience of lost keys (which happens all too often at my house), a lost wallet or purse is when the real panic sets in. The thought of all that personal information in the hands of someone else can be downright terrifying. What do you do? Where do you begin? To help you start the process of securing your identity once again, here are some simple steps to take after losing a wallet or purse.
Write Down an Inventory
To start repairing the damage caused by a lost wallet, you first need to know what needs protecting. Grab a notebook and jot down everything that was in your purse or wallet. You list should include things like keys, checks, credit cards, health insurance cards, etc. Try to take this step sooner rather than later so the contents are fresh in your mind.
Contact Credit Card Companies
Thieves often start using credit cards as quickly as possible since they know they are likely to be canceled soon. Contact your credit card company as soon as you discover the missing wallet. Your
legal protections are tied to how quickly you report the loss. Most credit card companies will cover all fraudulent charges as long as you report them quickly.
Get a Police Report
A police report can be a valuable tool in resolving ID theft. Contact your police department and file a report immediately. Get a copy of the report (it may take a day or two for it to be available) and keep it for your records. You’ll probably need to provide copies of this report to your credit card companies, the credit bureaus, etc. Always send copies, never the original.
Freeze Your Credit
Next you’ll want to contact the three credit bureaus and put an alert or freeze on your files. There is a small fee for those that aren’t ID theft victims (the fee is waived for victims with proper documentation). You’ll need to register for a freeze from all three credit bureaus. Learn how on their websites:
Replace Your Driver’s License
If your driver’s license or state issued ID card was in your wallet (and it probably was) you’ll need to replace that as well. Find out the requirements for a new card online and bring the proper identification with you when you head to the local offices. Many states let you make an appointment beforehand which can save you from having to wait in long lines.
Contact Your Health Insurance Company
Medical ID theft is becoming more common and medical identities are often more valuable than financial ones to thieves. If your health insurance card was in your wallet you’ll need to get a new one. Contact your health insurance company and report the loss. Often, they’ll issue a new card number for you and cancel your old cards to ensure that thieves can’t use your insurance to obtain medical services. If you have pending claims you may need to submit your new insurance information to providers.
Change Your Locks
Do you keep a key in your wallet? Were your keys in your lost purse? If so, consider changing your locks. Anyone that ends up with your keys will also have your address, increasing the potential for a home break-in as a result.
What About Your Social Security Card and Passport?
Hopefully you’ve taken the advice about not keeping your Social Security card in your wallet. If not, you’ll need to replace your missing card (and hopefully vow to keep your new one in a safer place). You can get a new Social Security card by following the instructions at the Social Security Administration website.
If your passport is missing, report it to the government. Once a passport has been reported missing it is invalidated and can no longer be used for travel. Even if you find it, it cannot be re-validated so make sure it is really missing before you file a report. Get the instructions for reporting and replacing a missing passport here.
Keep an Eye Out
ID theft doesn’t always happen instantly. After cleaning up the aftermath of a lost wallet, keep an eye on your credit to make sure you don’t notice any problems. Look for signs of ID theft so you can fix any problems quickly should they occur.
While a lost wallet is traumatic, it doesn’t have to result in ID theft. Make sure you act quickly to keep yourself safe should your wallet go missing.
December 18th, 2013
Jackie here. Have you finished your holiday shopping yet? If you still have to hit the stores for that last pre-holiday shopping spree, bear in mind that shopping can increase your risk of ID theft. A little caution now can save you from a lot of hassle later. These holiday shopping tips (and the the ones we posted a few weeks ago) will help keep your identity safe while you search for the perfect Christmas gifts for friends and family.
Online shopping is convenient, but it carries a unique set of shopping risks. Be on the lookout for scams and only shop from reputable companies.
- Head to Sites Directly- Rather than following a link in an email, head to stores directly by typing in their web address in your browser. Scammers can embed false links into emails, sending you to malware infested and other harmful sites instead of the legitimate website.
- Skip the Scams- While you can score some amazing deals this holiday season, be careful of bargains that sound too good to be true. A free flat screen TV with purchase or an all-expense paid cruise for $10 should set off some warning bells in your mind. If a deal seems like a once in a lifetime offer, it might be a scam.
- Update Your Software- Is your firewall up to date? What about your anti-virus software? Scan and update your computer (and smartphone and tablet, etc.) often. The most recent versions of operating systems, browsers, etc. will better protect you from known vulnerabilities.
- Skip the Wi-Fi- Don’t use public Wi-Fi for online shopping; that deal can wait until you get to a secure connection.
Many people associate online shopping with an increased risk of fraud and identity theft, but there are risks with heading to the store too. Stay alert and aware at all times; theft increases each year during the holiday season.
- Take It Out- Do you keep your Social Security card in your wallet? If so, take it out. We’ve talked about the dangers of keeping your SSN in your wallet before, but it’s always a good time for a reminder. In addition, you may want to leave your checkbook at home when holiday shopping. A stolen checkbook could give the thief access to your bank accounts; instead take checks only if you plan to use them and then limit yourself to just one or two. You may even want to write the retailer’s name on the check before you leave the house.
- Save Your Receipts- I have a hard time remembering how much I spent and where I spent it when it comes time to review my credit card statement. Save your receipts; it makes the process a lot easier. Often, ID theft and fraud can be stopped early on if you’re paying attention to your bank statements and looking for signs of a problem.
- Shield your PIN- If you choose to pay with a debit card (credit cards offer more fraud protection by the way), shield the keypad as you enter your PIN. Also be aware of where you’re flashing your credit card number. Don’t leave the number exposed for long periods of time; thieves may snap a picture or quickly write it down.
For more holiday shopping tips check out this article from the Wall Street Journal. Hurry up; the holidays are almost here and it’s time to finish up that last minute shopping!