Below are a number of general best practices for everyday life which everyone needs to be aware of. Further into our web site we have specific Best Practices concerning various areas of our lives. The items below should serve as a starting point. While many of these are common sense type items, if not followed creates easy targets for loss of data which leads to Identity Theft.
|
Buy a safe and secure it in place at your residence or place of business. Keep all important docs in there, i.e. checkbook & extra checks, bank account info, credit cards, bills,( also including bills that you are waiting to pay), social security card, health insurance cards, etc.
Review all bills for suspicious activity, especially credit card bills. Keep your receipts. All transactions that you do not recall or have receipts for should be investigated with your credit card company.
Shred all statements, bills, credit or insurance offers or other documents containing personal information, even those containing your address or phone number. Register with www.optoutprescreen.com
If you write checks make sure that you use a pen with dark pigmented ink (we recommend the Uni Ball Signo 207)
Retrieve mail from boxes quickly or better install a lockable mailbox. Never mail bills from your home mailbox. Always go to a US mail facility.One of the strongest defenses
Open all mail to view and destroy credit card or insurance offers.
Don’t give out personal information about yourself or family.
Never have your Social Security, Driver License, or phone number printed on your checks. You can add it if necessary. (Sometimes military commissaries and base exchanges require this information.) If these numbers are printed on your checks, anyone can have access to it.
Don’t give out your social security Number out without valid reason. If necessary to give out, ask these simple questions.
Why do you need it?
How will it be used?
How will you protect it from being stolen?
What will happen if I don’t give you my number?
If asked to give your number in a space where you can be overheard, try to write it down for the other party to read and take back the paper to destroy.
Never email your social security number online. If you absolutely have to transmit any personal info on line do it in multiple emails.
Do not carry your social security card on you.
Always know where your wallet, purse, briefcase, and phone are at all times. Do not leave in an unattended vehicle.
Inventory your wallet/purse contents. Know what is in there. Make photocopies of any items containing personal information (both front and back, if applicable) that are in your wallet/purse. and keep in a secure place.
Do not leave important numbers on a list that is not secure, i.e. in your wallet, purse, briefcase, on your phone, in your car, on your desk or in a drawer. These number include social security, driver’s license, credit card, PIN, employer ID, passport, Firearm Owners I D card, access code, birth date, mother's maiden name, current and past addresses to mention a few.
When shopping limit the number of cards you take with you-we recommend one.
When a clerk hands your card back to you after the transaction, immediately put them away, before you sign the receipt. If a clerk asks for your PIN, show them the back of your card if someone is within ear rather than being overheard.
Watch for "shoulder surfers" When using your credit or debit card in public, shield the entry of personal identification numbers (PINs), and be aware of people standing too close. Don't take your card out until the clerk asks for it or the scanner is ready to except it. With the advent of cell phone cameras, a shoulder-surfing thief can get your private information fairly easily.
|
When shopping online use only one card consistently, easy to track and easy to cancel if compromised.
Keep all credit cards in your safe when not in use.
Check your credit cards to see if they have RFID capability, if they do take steps to protect from illegal scanners.
Be particularly careful with debit cards and respective PIN’s. Once funds are withdrawn by a thief they are gone forever and the bank will not reimburse you unless they are in some way liable.
If you store personal information on a laptop, tablet, etc., make sure it is encrypted and/or password protected. Remember make your password complicated and store it in a secure place.
Always pay close attention to warning signs. Receipt of collection letters, unexpected bills, explanation of benefits statements listing medical services you didn’t receive, or a credit report with inaccurate data are obvious signs that there might be a problem. Act on these items to determine the situation - whether or not the item is related to an error, something legitimate, or identity theft - and do so sooner rather than later.
Never open emails for someone you do not recognize, regardless of the scary or threatening nature. Call the source to verify by looking up their phone or email address independently. Do not use numbers contained in the email itself.
Avoid suspicious web sites. Remember the old saying-If it sounds too good to be true??
Do not carry health insurance or medicare cards with you routinely. If you are going to the doctor for the first time make a copy of the card to give to them, ask they are going to want a copy.
Destroy or erase data on electronic devices before you discard or donate. If you recycle, toss, or donate your old electronic device, make sure you aren’t also giving away your data. Using the delete command just enables the computer to write over that space again; it doesn’t actually eliminate the original bits and bytes. Some programs use a multi-pass wipe system to wipe data away that is better than a simple delete. However, physical destruction of the device or a component such as a hard drive may be the best way to ensure you’re not tossing out or passing along your personal data. There also services available that for a fee will wipe hard drives clean. If you choose to do this, make sure the company you use cleans the system to US Defense Department standards.
Go to www.optoutprescreen.com and register everyone in your family. This site can reduce the number of unsolicited credit and insurance offers you receive.
Don't rely on fraud alerts or credit freezes alone. Fraud alerts are meant to stop an identity thief from opening new accounts in your name. Credit freezes let you restrict access to your credit report, which would also make it hard for someone else to open new accounts. But, neither one will stop a thief from trading your Personably Identifiable Information for cash or using it for tax fraud, criminal identity theft, or any of the countless other ways fraudsters exploit stolen identities. Also remember these credit alerts generally pertain to the 3 major bureaus. If a creditor uses one of the secondary credit services the freeze you placed may not be effective.
Always remember when using your caller ID service, the name on that appears may not be the person making the call.
Enroll you and your family in an Identity Theft protection program that not only has a monitoring service, but also has a full restoration as part of the service. Children of all ages need to be included.
Don't give out your social security number out without valid reason. If necessary to give out, ask these simple questions. Why do you need it? How will it be used? How will you protect it from being stolen? What will happen if I don't give you my number?
|
Always remember if someone has your cell phone number and it is active, it probably has value to some identity thief or scammer. Of particular interest is the recently created practice of Smishing and Vishing. Smishing is a form of fraud that uses text messages as the 'bait' which is designed to get victims to send personally identifying information. Vishing is a form of fraud that uses voicemail to obtain personally identifying information in an attempt to illegally achieve financial gain.
|
Register all your phones on the "do not call list"
Do not respond to smishing text or vishing phone messages. Even sending them a message to stop, remove, or advising them that you saw through their scam, tells them that the phone is active.
Do not download unknown apps or apps recommended by anyone including trusted sources without first checking out their validity.
Do not click on links sent to you by unknown parties.
Block suspicious numbers. Your cell phone provider may be able to help in this regard.
If you believe an alert may be real, look up the institution's phone number independently to verify and/or report the scam to them.
|
Do not store credit card numbers, account numbers, pins, login codes, etc. on your phone in emails or in notes. If you lose your phone those items can be retrieved by scammers or thieves even though your phone may be locked.
Set your phone to time out and lock after a short period of time. This will limit potential access by friends, family, coworkers, etc.
Install legitimate updates regularly. Remember verify these though your cell phone provider or app provider.
When given a choice between submitting a secure number via the key pad or voice, use the voice option, it is a little more difficult to track. However make sure no one can overhear you.
Install an app on your smartphone that checks for malware, spyware, and locks or disables your phone remotely if it is lost or stolen.
|
With the ever growing popularity of social media sites, below are items to be considered for both the novice and the experienced individual while posting information on these sites. Remember once it is posted, it resides on the internet forever. The information can be mined and stored by any number of individual or entities that may not have your best interests in mind when they decide to use your information. The effects can be devastating to you both personally and professionally.
|
Select a password that is easy for you to remember, but not for others to guess. Go long 10-12 characters alpha/numeric/symbol mix.
Find out where you are currently listed by doing an on line search. Search your name in both the popular search engines and in online directories.
Request that your name and or pertinent info be removed from these directories.
Limit your profile information. Listing information that maybe the answer to security questions can be easily mined by thieves to access accounts.
Use separate passwords for each site. Avoid the obvious one like street number, birth dates, initials of your name, etc.
|
Set up a separate email address for activities you do through these sites.
You need to keep record of what information you give or put on which sites or accounts.
Read the privacy policy of the site. You may be amazed at what rights you are giving up.
Limit the people that you friend and carefully set you privacy setting as to whom can see what information. Friends today may not be tomorrow.
When on these sites, be careful about clicking on images, ads, pop ups, etc. These clicks can take you off the site you were on and put you information as risk.
|
Be aware of social media scams
Here are several of the more popular ones
|
Fake chain letters- (click here and someone will do something outrageous)
Cash grabs- (A friend lost his wallet and needs you to send money so he can get home)
Hidden Charges-(Find out an interesting fact about yourself, all your friends have done it, enter you cell as instructed and see what new service is on your bill next month
|
Phishing Requests-(Someone has just posted some embarrassing pictures of you, click here to see. You click on the link taking you to your FB account and enter account info and it has just been stolen by a cyber-criminal)
Hidden URL's-(You click on a shortened URL and get redirected to a unintended site that captures your info or installs spyware/malware on your computer
|
Below are a number of safeguards for the average user for online use. We strongly suggest that you have new users review these items as they learn how to use the internet. We also believe that the seasoned user can learn or be reminded of some simple, but often forgotten practices.
|
Make sure your system has good and up to date virus protection.
Do not transmit or limit the amount of personal information you transmit over the internet. If you have to transmit on line check the security of the site. Also transmit key information in multiple emails, especially when transmitting social security numbers, DMV numbers, etc.
Don't post private info on public sites, regardless of the privacy settings and/or policies, they generally can be hacked.
Read the privacy policy.
Avoid suspicious web sites.
Never open emails from someone you do not recognize, regardless of the scary or threatening nature. Call the source to verify by looking up their phone or email address independently. Do not use numbers contained in the email itself.
Don't opening suspicious links contained in emails.
Don't open attachments from strangers.
Don't transmit personal information from public WIFI hotspots, i.e. internet cafes, etc.
Avoid opening links from friends when the only item contained in the email is a link to an unknown site. When this happens your friend's email has generally been hacked and acquired for non-legitimate purposes.
Buy from only trusted and secure web sites, even if it is the deal of the century.
For purchasing on the internet, use one credit card consistently.
|
Don't use the same password for more than one site or account.
Don't make financial transactions on public computers, especially when traveling. Make statement about VPN's not being safe if your system has key stroke spyware on it.
Don't be gullible regarding pop ups or adds, if sounds too good to be true, then it is probably a fraud.
Don't down load free software unless it is from a trusted secure site. Again always check the security of the site.
If you are asked to list personal information on a large internet site be very selective about what you list and make sure you are familiar with the site and their security practices.
If you must use a number of internet sites, consider setting up a special email address for that purpose. This is particularly important for shopping and newsgroups.
Don't click on the word close in a pop up; always use the X in the upper right corner of your screen to close out of the site.
With your new computer, don't necessarily rely on the browser that came with your computer, it may not have the safeguards you think.
If surfing the internet be careful not to blindly click on shortened URL's, you may not go to the intended site.
With regard to resumes on the web, only post them on prominent job sites.
Be careful of pop up ads that contain links to news stories with prominent headlines, i.e. assassination, kidnapping, war, bombing, earth quake, etc. If you want to check out a headline go to a trusted news source.
|
Seniors are easy and likely targets for Identity Theft. For the purposes of these guidelines we are generally talking about those individuals at retirement age. In cases where the individual has diminished mental and/or physical capacity, please also refer to seniors in assisted living environments. The following are practices to follow to help prevent Identity Theft and the negative effects it can have on the victim and the victim's family.
|
Select a password that is easy for you to remember, but not for others to guess. Go long 10-12 characters alpha/numeric/symbol mix.
Limit cash on hand for incidentals and/or shopping if shopping is available
Do not allow credit cards or debt card to be accessible
Do not allow driver's licenses, Medicare or Medicaid cards, social security cards, supplemental health insurance cards, etc. to be accessible. Take with you only when you know you will need to show them, i.e. when you go to a doctor for the first time.
Some credit and debit card companies offer a registry as part of their services. It may be worth the fee to call one number, and then have the registry notify all of your credit and debit card issuers about a loss or a theft. You may also want to carry a photocopy of your passport with you when you travel.
Check your receipts to make sure you have received your own and not someone else's.
Never have your Social Security or Driver License number printed on your checks. You can add it if necessary. (Sometimes military commissaries and base exchanges require this information.) If these numbers are printed on your checks, anyone can have access to it.
When you have a social event at your home with family or friends, make sure all items above are securely put away.
Monitoring bank accounts, investment accounts, retirement accounts on regular basis, generally once per week.
|
Open all mail and shread any unwanted mail immediately. Do not leave miscellaneous offers laying around to consider later. If you do not have time to review immediately put in a secure place for later review
If you have a cell phone, view detailed bill to check for usage abuse by 3rd party and/or any unwanted services that you may have inadvertently signed up for. If you have a smart phone also make sure to install a security application to protect and accidental loading of spyware and malware.
If you have access to a computer make sure it has an up to date security program installed and functioning. Also if you surf the web make sure the web site has adequate security. Also read Best Practices - Online
Social media sites. Monitor security settings, account setting, postings, pictures (of valuables), friends lists, etc. This is a hugh source of personal information that can be used against you, i.e. to case your house, figure out passwords or security questions to access accounts.
Sniffing is a practice where someone can listen in to cordless phone conversations from a nearby location. If you have a cordless phone, never to give out sensitive numbers while on the phone (i.e. pin, social security, credit numbers, etc) limit that phone communication to hard line phones. Yes a hard line phone may have a charge per month, but it is more secure.
Invest in an identity theft protection services that includes daily monitoring and full restoration services. With full restoration services done by a 3rd party you eliminate the multitude of hours you will need to spend correcting any issue that arises. Make sure the alerts are directed to your email address or texted to your phone. When receiving an alert, respond to it immediately
|
Seniors or disabled individuals living in an assisted living environment are easy and likely targets for Identity Theft. These living environments include but are not limited to assisted living facilities, rehab facilities, hospitals or where in home care providers are used. In cases where the individual has diminished mental and/or physical capacity these practices are vitally important, no matter how reputable the facility or service providers are. The following are practices to follow to help prevent Identity Theft and the negative effects it can have on the victim and the victim's family. In many cases the victims' families are charged with cleaning up the mess both during the victim's life and after their demise.
|
Select a password that is easy for you to remember, but not for others to guess. Go long 10-12 characters alpha/numeric/symbol mix.
Limit cash on hand for incidentals and/or shopping if shopping is available
Do not allow credit cards or debt card to be accessible
Do not allow driver's licenses, Medicare or Medicaid cards, social security cards, supplemental health insurance cards, etc. to be accessible.
Some credit and debit card companies offer a registry as part of their services. It may be worth the fee to call one number, and then have the registry notify all of your credit and debit card issuers about a loss or a theft. You may also want to carry a photocopy of your passport with you when you travel.
Check your receipts to make sure you have received your own and not someone else's.
Never have your Social Security or Driver License number printed on your checks. You can add it if necessary. (Sometimes military commissaries and base exchanges require this information.) If these numbers are printed on your checks, anyone can have access to it.
Arrange for online monitoring bank accounts, investment accounts, retirement accounts by trusted family member on regular basis. Generally once per week
|
Have all mail forwarded or diverted to trusted family member, especially any and all bills.
If they have a cell phone monitor call and view detailed bill to check for usage abuse by 3rd party. If they have a smart phone also make sure to install a security application to protect and accidental loading of spyware and malware.
If they have access to a computer make sure they have an up to date security program installed and functioning. Also periodically check the web site history to see where they have been surfing. Yes seniors do surf the web!
Social media sites. Monitor security settings, account setting, postings, pictures (of valuables), friends lists, etc. This is a hugh source of personal information that can be used against them. Have family member monitor sites and any posts on regular basis.
Sniffing- a practice where someone can listen in to cordless phone conversations from a nearby location. If the senior has a cordless phone tell them never to give out sensitive numbers while on the phone (i.e. pin, social security, credit numbers, etc.) on that line; or limit the phone communication to hard line phones. Yes a hard line phone may have a charge per month, but it is more secure.
Invest in an identity theft protection services that includes daily monitoring and full restoration services. With full restoration services done by a 3rd party eliminates the multitude of hours you will need to spend correcting any issue that arises. Make sure the alerts are directed to your email address.
|
It is essential for passwords to be kept both secure and confidential. Remember words used in social media sites (i.e. your pet's name) can be discovered and used to steal your personal information.
Best Practices - Behaviors
|
Never disclose your password to someone else, including your coworkers, manager or supervisor, friends or family.
Do not write your password down unless it is absolutely necessary. (If you must write it down, store it in a private and physically secure location separate from your account name.)
If you receive a document that displays the password for your account, change your password as soon as possible or keep the document in a private and physically secure place.
If you are about to type your password and someone is near you, take care that they cannot see what you type.
If you suspect someone else has used your account, change your password immediately.
|
If you suspect that the security of your password has been compromised, change it immediately.
When using an unsecure Wi-Fi system install software that allows you to type from your mouse to your screen, so no one can track your key strokes.
Use different user names and passwords for different financial accounts.
Consider routinely changing your passwords (every 90 days) or immediately, if anyone notifies you regarding any suspected or actual breaches.
|
Password DO NOT's
|
Do not choose slang words for passwords.
Do not include any part of your name (first, middle or last name in any form), hometown, birthdays, of memorable topics in the password.
Do not use your login name or user name in any form (reversed, capitalized, doubled, etc).
Do not use any nicknames you may have.
|
Do not select obvious passwords, such as the name of a close relative, friend or pet.
Do not use other information easily obtained about you, like your birth date, license plate numbers, telephone numbers, the brand of your car, the name of the street you live on, etc.
Do not use a word contained in English or foreign language dictionaries, spelling lists or other lists of words.
|
Again social media sites are great sources of information about you, so
DO NOT use any personal information for your password or subsequent security questions.
A 6 character alpha/numeric password attacked by hacking software can be broken in a few seconds. A 9 character alpha/numeric password, with upper/lower case, numbers & symbols could take months to break. Use our Complex Password Tester to insure you're using a strong password.
DO Create a Complex Password
|
Select a password that is easy for you to remember, but not for others to guess.
Go long 9-12 characters (Min 9 Characters) include upper/lower case, numbers & symbols.
Consider using the initials of a song or phrase that you can easily remember, but others are unlikely to guess.
|
As you select the letter, number or symbol for the password, mix in some complex characters to increase complexity - IE: A Long Time Ago In A Galaxy Far Far Away = aLTa1aG##a
Consider using password management software that can generate encrypted passwords.
|
For purposes of the document, we are using the age group of infant through 19 years of age. As always these practices do apply to other groups. We have targeted this group as it is the largest group being targeted by identity thieves. The reason being that they are easy targets because the crime can go undetected for years and they have clean history in terms of credit and employment. According to a news brief on NBC Chicago's today show on May 3, 2012, children are the fastest growing group targeted and kids under 5 years of age are the fastest growing age group within the category. The FTC has confirmed this group is in danger. Approximately 8% of all I D Theft involves this age group according to the FTC. We believe this to be conservative because very few parents monitor their children's identity during the early years.
|
Keep your children's personal information , including birth certificate, social security cards, and/or bank accounts locked in a secure place.
Never carry your children's social security cards in your wallet.
Request a free copy of your credit report for each child once a year. Use www.annualcreditreport.com The report should show no credit reported.
Don't give your children their social security information until they are old enough to understand how to safeguard it.
Refuse to give out your children's birth certificates or social security numbers unless absolutely necessary. Ask what safeguards are in place to protect this information.
Check with the social security administration once a year to see if your child's number has been used to report income or obtain employment.
|
Check with your respective state department of motor vehicles once per year to see if your child's name has been used to obtain a drivers license.
Pay attention if your child begins to receive junk mail, especially credit card or insurance offers. It could mean that their personal info has been compromised.
If you are signing them up for a legitimate offer (IE: magazine subscription, etc.), do it under your name.
Educate your children about the safe use of the internet and social media sites. Teach them to keep personal information private when on line. This includes cell phone use. Social media sites are havens for identity thieves scanning these sites.
Make sure your children are enrolled in an Identity Theft protection service that includes full restitution by licensed investigators.
|
While preparing for a trip of any kind either within the country or leaving the country, the following practices need to be followed. Identity thieves find travelers easy targets. Many of these practices will also improve the general security of your home and/or property in your absence.
|
Stop mail do not allow a thief to access even a lockable mailbox, while you are out of town. The accumulation of bills, statements, credit card offers, etc. can provide a wealth of information for identity thieves. Also stop newspaper delivery.
Leave your debit cards at home. If you need cash advances use a credit card. When doing so try to use safe location for the transaction, such as a bank lobby. Always look at the machine for any attachment to the slot where your card goes, it could be a scanner. Also check for any holes near the keyboard that could house a camera to record your keystrokes. When entering numbers cup your free hand over the keyboard to shield the number from plain site.
Limit the number of credit cards and other personal info you travel with. Local store credit cards are not usually necessary. Take a limited number of major cards (we suggest 2-3) and notify the respective financial companies that you will be traveling and where.
Do not put garbage cans out early or in an unsecured area. Potential thieves easily recognize these signs indicating your absence. Dumpster/garbage can diving is still an effective means to find personal information. With the efforts of paper recycling containers, it makes the thief's job somewhat easier.
Leave your checkbook at home.
Leave your social security card at home.
Protect RFID credit cards and passports with protective sleeves to block remote scanning.
|
Make a copy of items in your wallet or purse and keep it in a secure location. If you should loose them you have the vital information you need to continue your trip and/or cancel cancel cards.
When at your hotel and are leaving room take all room key cards with you. Do not leave them available for hotel staff to access. Your key card can have personal information scanned into it when you checked in. The same is true of your rental. Don't keep the rental car agreement in the car when it is unattended or parked in valet.
While out of room thin out your wallet or purse, take only necessary info needed for that trip. Have the balance of info locked in a hotel safe.
When checking out take the room key card with you and destroy them. Do not return them to the front desk. Again those cards have valuable information on them that is easily retrieved until they get reprogrammed by the front desk for the next user.
Be aware of hotel wifi of public computers in the business office. The may not be secure and may have keystroke spyware attached to them.
Be aware of suspicious call front alleged hotel staff asking for personal info or perhaps your credit card number again or for a new number because your card was declined. Visit the front desk yourself and make the inquiry in person. In large sprawling hotels/resorts this can be an inconvenience and that is exactly what the thief is hoping for.
Don't announce your travel plans on social media sites or post pictures to those site during your trip.
|
The college experience introduces new social interactions and personal responsibilities. These have an extreme impact whether the student is attending a local institution and living at home, or living on campus and living outside the home for the first time. Many of the new responsibilities are not necessarily obvious. Given that thought, the damage done as a result of Identity Theft can impact you for the rest of your life. It can impact your ability to get employment, get credit, finance a place to live, purchase a vehicle, finance your education, etc. Identity Theft by definition is the loss and illegal use of someone's personal identifiable information.
Given this new experience, we recognize that you will be sharing more information with new friends and classmates. It is important to do this in a responsible manner and understand the risks.
Here is a list of commonly included personal identifiable information. Your name (including maiden name & parents' names), social security number, driver's license number, student ID number, date of birth, birth certificate, address, medical ID cards & numbers, passport, phone numbers, email address, bank account & numbers, student transcripts, phone and or computer user names or passwords, other account numbers i.e. credit/debit cards, photo's, etc.
The list below coupled with other sections of our best practices (specifically youth, social media, cell phone, and online) will help protect your Identity and your Reputation.
|
Do not carry your social security card or number with you. When some asks for it we encourage you to question why it is needed.
Do not carry bank account information, credit or debit cards with you unless you need to use them.
Have all important mail delivered to your home, not school, i.e. bank statements, bills, etc.
Open all your mail at school. Shread all unwanted solicitation. Use a cross cut micro shreader.
Have a document safe to store all valuable information.
Protect your cell phone and computers with complicated passwords (using letters and numbers, upper and lower case with several symbols included).
Do not share passwords or other technology with friends. Be careful who may be looking over your shoulder!
Have anti-virus, anti malware/spyware secure software installed on your computer and smart phone and keep it current. Many good programs are free. Check our web site for these programs.
Do not impulsively download or file share to your systems without fully investigating.
Do not respond to email, text messages, or phone calls from someone you do not know, regardless of emergency nature of the call.
|
On social media sites, think before you post or allow others to post about you. Make sure you are not giving up too much personal information that someone can use against you.
When in a public environment with internet access (Wi-Fi), do not access personal data or account information or enter it. These sites are generally not secure.
Learn about phishing messages. These imitate your bank, school, credit/debit card company, etc. They will through fear tactics try to get you to verify personal information.
Learn to monitor your credit information through www.annualcreditreport.com. Use the schedule below. Every 4 months contact one bureau. This is free!
First contact:
Experian 888-397-3742
Four months later contact:
Equifax 800-997-2493
Eight months later contact:
TransUnion 800-888-4213
Twelve months later:
repeat
Don't flaunt the use of credit or debit cards while making purchases, numbers and security codes can be easily seen, memorized and stolen. When a card leaves your sight be aware, it maybe being scanned. Never pull your card out until the clerk asks for it or the scanner is ready to accept it.
When you go away to college notify your banks and credit/debit card companies as to your new temporary location. They typically try to be more diligent in checking for unusual purchases in those accounts.
|
'Tis the season to be jolly, but not stupid and foolish. Identity Thieves love the Holidays! Don't let your guard down, even at trusted social gatherings. Ignore the comments from family, friends and co-workers that, "people here would never steal from you." I have heard those types of stories countless times over the years, from the people who became VICTIMS. - Ed Haag, CITRMS*
Click here to download a PDF of our 2012 Holiday Tips
Store Shopping
|
When writing a check wait until you know the total before starting your check.
Don't pre-write the check and wait for the amount. This could allow someone near you to memorize your check info-number, account number, routing number.
Have all important mail delivered to your home, not school, i.e. bank statements, bills, etc.
Use credit cards, as they afford you a greater opportunity to challenge unauthorized charges.
When using a credit card, do not pull it out until the clerk is ready for it, again laying it on the counter or even in your hand could allow someone to steal your numbers.
|
When the clerk returns the card, put it away before signing the receipt; again shorten the time someone has to steal info off the card.
If you swipe the card, protect it from view and if you enter any PIN's cover the screen.
With all of the above watch and listen for the click of a camera phone, as well.
Limit what you take to the store, one or two credit cards and a photo ID should suffice
Leave the purse or wallet home, and keep everything in a front pocket.
|
Online Shopping
|
Use only one card - much easier to track if it is breached.
Verify the security of the site you are on by checking for HTTPS and the secure padlock symbol.
|
Never do any shopping from a Wi-Fi hotspot - IE Starbucks
|
Holiday social events
|
At personal or business events guard your personal items-purse, phone, laptop, IPod, expensive coats.
At business parties make sure the same are locked away in secure area away from the party.
|
Also lock your desk and/or office. They can have a wealth of info for an identity thief.
|
RFID Scanners
|
Be aware of this technology and what it can do.
|
|
The following are general practices that should be followed. The FTC estimates that half of all identity theft originates in the workplace. Remember your employer has considerable personal information about you and helping to secure it is a team effort and affects everyone.
|
Secure all passwords, user names, etc - no sticky notes under your keyboard or on the back of your screen. Don't verbalize your password, if it must be shared, write it down.
Pay attention to someone watching over your shoulder.
Do not download from or surf the internet from your terminal.
Question any individual wanting access to your system, even if they seemingly want to help you with your workload.
Report suspicious or unusual activity to your supervisor-remember breaches can affect you personally.
Report suspicious emails or phone call immediately.
Be careful giving secure information over the phone, one can be easily overheard or monitored by a listening device.
Limit access to systems, servers, etc. Don't give in to a coworker's emotional plea regarding their need to verify something that they have no access to.
Learn and comply with your company's security and privacy policy.
Be careful when transmitting sensitive information over the internet. For example never transmit your FEIN number over the internet.
|
Keep software protection up to date and use it.
Make sure hard drives are encrypted.
Be aware of what you photocopy, it will stay on the hard drive.
When disposing of office equipment make sure that hard drives are either removed and destroyed or wiped clean to military grade removal standards.
When working on a document on your system, if interrupted secure the document so no one else can read it.
When working on a non-digital document-destroy it (shred) immediately. These documents can be great sources of Identity Theft.
When an employee leaves the employment of the company, terminate all access to company records or facilities immediately.
Mail should only be received at a secure location. If a traditional mail box is used, it must be lockable.
If writing or signing secure documents, checks, etc. always use a pen with security ink. We recommend the Uni Ball 207.
|
|
