Blog

One out of ten children is targeted for identity theft.

Child identity theft is a rising problem. Upon stealing a child’s social security number, a thief can run up a hefty amount of credit card debt, take out loans and establish driver’s licenses—and the crimes often go unnoticed until the victim is of age to apply for a credit card or take out college loans.

Gerry Smith of the The Huffington Post recently covered the topic in a series he called “Burdened Beginnings.” He points out:

• Schools often put children at risk for identity theft
• Foster children are a targeted demographic
• Relatives are often the culprits behind theft of a child’s identity. In fact, more than 500,000 children have had their identities stolen by a parent.

CSID put together an infographic to draw attention to the growth of child identity theft, address potential causes and provide recommendations for parents to minimize risk. Check out the graphic in full on CSID’s Facebook and below.

By John Sileo, CSID consumer security expert

It’s nerve racking to realize that the IRS increasingly struggles to control taxpayer identity theft. Since 2008, the IRS has identified 470,000 incidents of identity theft affecting more than 390,000 taxpayers. “Victims of tax-related identity theft are the casualties of a system ill-equipped to deal with the growing proficiency and sophistication of today’s tax scam artists” said  Sen. Bill Nelson, who chairs the newly formed Subcommittee on Fiscal Responsibility and Economic Growth.

Identity theft harms innocent taxpayers through (1) employment and (2) refund fraud, according to the GAO. In refund fraud, an identity thief uses a taxpayer’s name and Social Security number to file for a tax refund, which the IRS discovers after the legitimate taxpayer files. In the meantime, the victim is out the money due her, causing Sharon Hawa of the Bronx, N.Y. to take on a second job. Ms. Hawa testified before the Subcommittee, describing how she had become an ID theft victim for the second time in three years (the first in 2009) after thieves twice filed tax returns in her name and received her tax refunds. Painstakingly proving her identity to the IRS, time after time over a 14-month period, was only a small part of the stress and utter frustration in the first fraud.  And  then, as if that trauma hadn’t sufficiently wreaked havoc in Ms. Hawa’s life, it happened a second time.

In employment fraud, an identity thief uses a taxpayer’s name and SSN to obtain a job. When the thief’s employer reports income to the IRS, the taxpayer appears to have unreported income on his or her return, leading to enforcement action. Think of your stress level when you open that envelope from the IRS demanding taxes for money you didn’t earn and don’t have!

The GAO states that the IRS’s ability to address identity theft issues is constrained by several factors, one being that privacy laws limit the sharing of ID theft information with other agencies. Another problem is the timing of fraud detection efforts; more than a year may have passed since the original fraud occurred.  The resources necessary to pursue the large volume of potential criminal refund and employment fraud cases are another constraint.

It’s imperative that we taxpayers take responsibility and implement the steps necessary to protect ourselves. There is very little that is more damaging and dangerous to your identity than losing your tax records. After all, tax records generally contain the most sensitive personally identifying information that you own, including Social Security Numbers (for you, your spouse and maybe even your kids), names, addresses, employers, net worth, etc. Because of this high concentration of sensitive data, tax time is like an all-you-can-eat buffet for identity thieves. Here are some of the dishes on which they greedily feed:

• Tax documents exposed on your desk (home and work)
• Private information that sits unprotected in your tax-preparer’s office
• Improperly mailed, emailed and digitally transmitted or filed records
• Photocopiers with hard drives that store a digital copy of your tax forms
• Copies of sensitive documents that get thrown out without being shredded
• Improperly stored and locked documents once your return is filed
• Tax-time scams that take advantage of our propensity to do whatever the IRS says (even if it’s not really the IRS asking)

Your tax returns are the Holy Grail of identity theft because they contain virtually every piece of information a tax fraudster needs to BECOME you. But you don’t have to be a victim; you simply need to take responsibility for what is rightfully yours – your identity. Sileo.com has compiled a comprehensive list of tax time frauds, scams and prevention techniques.

John Sileo is an award-winning author and international speaker on the dark art of deception (identity theft, data privacy, social media manipulation) and it’s polar opposite, the powerful use of trust, to achieve success. He is CEO of The Sileo Group, which advises teams on how to multiply performance by building a culture of deep trust. His clients include the Department of Defense, Pfizer, the FDIC, and Homeland Security. Sample his Keynote Presentation (he shares how he lost $300,000, 2 years and his business to data breach), or watch him on Anderson Cooper, 60 Minutes or Fox Business. 1.800.258.8076.

In honor of Data Privacy Day on January 28, initiated by the National Cyber Security Alliance, we have compiled a few simple best practices for businesses to protect and secure valuable data.

Password Changes

Encourage or require employees to regularly change passwords used for company servers, email and programs every 90 days. This will help protect company data in case of stolen or shared passwords.

Regular Backups

Regularly back up all company records to a secure, encrypted location separate from the original records (such as a third party server or data center). This will ensure that all records are maintained in their original form in case of erasure or breach. Encryption and security should be equally stressed for all data and copies.

Manage Company Details Online

Keep and manage proper archives of all online locations that have access to company information such as billing details. Employees often use company credit cards online to register for professional events, subscribe to Internet news sources or order printed materials. These online sources act as gatekeepers to company details like credit card numbers, and knowing exactly who has access to such details will help determine the appropriate steps in case one of these online sources is breached or misuses your information.

Manage Traveling Data

When employees travel for business—with company computers, hard drives and paperwork—they are putting company data at risk. See recent blog posts from our consumer security expert, John Sileo, about how to protect data while traveling for business: Part I and Part II.

Data Monitoring

Enlist an internal IT team to monitor data activity in case of unusual or suspicious incidents. Also make use of an external, professional data monitoring technology like CyberAgent to keep track of your company’s confidential information, as well as that of your customers. CyberAgent scours the Web for misuse of a range of identifiers and can monitor more thoroughly than a human team.

Prepare for a Breach

In this day and age, data breaches are considered inevitable. Prepare a plan in case of a data breach, and have it ready to deploy at any time. The plan should include technical steps (how will you secure the information?), employee outreach (how will you inform your employees, and what can they do to help?), customer outreach (how will you inform your customers, and how will you help them?), public outreach (why did the breach occur and what steps are you taking?) and next steps.