No Name Online

Bulletproof your organization against data breach, identity theft, and corporate espionage

In this updated and revised edition of Privacy Means Profit, John Sileo demonstrates how to keep data theft from destroying your bottom line, both personally and professionally. In addition to sharing his gripping tale of losing $300,000 and his business to data breach, John writes about the risks posed by social media, travel theft, workplace identity theft, and how to keep it from happening to you and your business.

By interlacing his personal experience with cutting-edge research and unforgettable stories, John not only inspires change inside of your organization, but outlines a simple framework with which to build a Culture of Privacy. This book is a must-read for any individual with a Social Security Number and any business leader who doesn’t want the negative publicity, customer flight, legal battles and stock depreciation resulting from data breach.

Protect your net worth and bottom line using the 7 Mindsets of a Spy

• Accumulate Layers of Privacy
• Eliminate the Source
• Destroy Data Risk
• Lock Your Assets
• Evaluate the Offer
• Interrogate the Enemy
• Monitor the Signs

In this revised edition, John includes an 8th Mindset, Adaptation, which serves as an additional bridge between personal protection and bulletproofing your organization. Privacy Means Profit offers a one-stop guide to protecting what’s most important and most at risk-your essential business and personal data.

• Author: John Sileo
• Binding: Hardcover
• EAN: 9780470583890
• Edition: 1
• ISBN: 0470583894
• ItemDimensions:
• Label: Wiley
• Languages:
• ListPrice:
• Manufacturer: Wiley
• NumberOfItems: 1
• NumberOfPages: 246
• PackageDimensions:
• ProductGroup: Book
• ProductTypeName: ABIS_BOOK
• PublicationDate: 2010-08-09
• Publisher: Wiley
• SKU: 25441
• Studio: Wiley
• Title: Privacy Means Profit: Prevent Identity Theft and Secure You and Your Bottom Line

Who should read this article:

Any parent with minor children who use the internet.

Introduction:

Identity theft is a huge problem worldwide. It is not limited to adults; children can also have their identities stolen. It’s much harder to catch someone using a kid’s identity, since the child is under the age of 18.

Think about it: how many kids do you know that use a credit card? How many youngsters under the age of 18 work on a regular payroll (where they get paid by check, not cash)? Not many, I’ll bet. How long do you think that person will be able to work or buy things using your child’s identity? Not long or not at all if you are vigilant from the beginning.

This article will give you tips to proactively protect your minor child’s identity.

Proactively protect against ID theft:

1. I’ve often wondered about those family websites. Let’s take a fictional family: the Brown’s. On sites like these, you will often see pictures of all the children, where they go to school, how old they are, and so on. You can certainly share these things with other family members, but what possesses these people to put their family business online? Millions of internet users can study websites like these just by typing “list family websites” into any search engine.

Tip: a family site is not an appropriate place to post anything personal family information. It’s very easy for an online predator to steal private information. Take any family site down immediately.

2. Social media sites like Facebook, Twitter and MySpace have exploded in popularity. I’ve often seen profiles of people that also list each member of their family, their photographs, and other identifying information. These social media sites are extremely popular these days, so there are lots of predators that can study each profile. All they have to do is become a member and start searching!

Tip: make your social media profiles as brief as possible. Post nothing (including any family pictures) that you wouldn’t want used against you or your child.

Tip: whatever you do, don’t let your minor child have his own social media profile. If she insists, do not let her post any pictures or any other information. She can even use an alias. Make sure you monitor her usage closely (insist on having her username and password).

3. This one is interesting: you need not provide your kid’s school with his social security number. Apparently, many schools ask for it and you DO NOT have to provide it. Wow, how easy it would be to grab hundreds of socials in one go. Can you see how many unblemished credit records you would have? Think of how many of these SSN’s can be used for work purposes.

Tip: don’t provide your child’s school with his social security number. The school can, if they wish, generate a nine digit random number(as an example) to represent your child. It should raise a red flag if they insist on it; in this case, consider another school for your youngster.

4. Does your child have a savings account? There is no need to give away any of your child’s personal information to the bank. All you need to do is establish the account in your name. Your child’s name can appear as the account holder, but your name should also be there as the guardian. And if the bank needs an identifying number and they insist on a social security number, give them yours. You can also take your business to another bank.

Tip: if your child has a bank account, establish it yourself and use your social security number if the bank insists.

5. Keep your kid’s social security card(and yours too!) under lock and key in your house. Preferably, keep all private information in a file folder and store it in a fire-proof box. Keep the safe hidden in a closet. Anyone breaking into your house will most likely be looking for cash or small items they can fence easily. They will not be looking for documents.

Tip: store all your youngster’s personal information in a file and put it in a fire-proof safe that has a lock on it. Never have any personal documentation in an unlocked drawer or on a shelf.

6. Many new online users think that sending regular email is safe, their privacy assured. Nothing could be further from the truth. Email is easy to intercept and read. Most email users are not sophisticated enough to encode all their messages and have the receiver at the other end decode each message before reading. Lots of people use their email attachment capability to send pictures and other information about their children to other family members and friends.

Tip: don’t use email attachments to send family photos and especially other identifying information on any family member. Online information is simply too easy to steal. So what can you do instead? Send any pictures via the post office or even better, UPS or Fedex. If you send the photos along with other things, it is very unlikely to be opened and resealed en route. Think about it: the bad guy has to open the package, look around for identifying information he can use, and reseal the package. It’s too easy for him to get caught!

Tip: if you need to send personal information about your child, use registered or address/return/receipt mail. That’s the safest way. Even your telephone conversations can be monitored if someone wants to go to a LOT of trouble, but it’s possible.

Tip: if your child has his own email account, make sure you know his user name and

password. Monitor his email yourself. Encourage your kid to make up an address book of his trusted friends and relatives. Then set up his email so that anything coming from other addresses is sent to the junk folder AND immediately deleted. Your son or daughter should never has to see any junk email.

Tip: make sure to investigate any new friends your child adds to his address book. If it is someone he knows only online, you need to find out what you can about this person before any emailing takes place. Again, monitor your child’s email, to the point of reading any email before she does. You will not be popular, but you will feel safer. As your child gets to be about 16 or so and seems to be trustworthy, you can relax these rules a bit.

7. When your child starts using the internet, it’s time to sit down and talk to him about identity theft predators online. Explain to your son or daughter how easy it is for someone to steal their identities. You will also have to try to help them understand why this is so important. When you start talking about “credit history” and “bad credit” and “ruined credit”, it may pass over their heads. You might talk to them about someone working using their SSN, but they may not understand. That’s OK, keep talking until they get old enough to understand for themselves.

Tip: talk to your children early about the importance of keeping their identities private. Start when they start using the internet or around 13 at the latest. Use parent controls on your kid’s computer, and make these controls as tight as you want. You won’t be popular with your children, but they will thank you later when they hear about their friends who have had their identities stolen!

Tip: tell your child again and again not to give out any personal information in emails, especially to someone they met online. Do not allow your minor child to send any pictures of themselves to people you have not met.

8. If you both work and need to hire care providers for your children, do not give these household employees any more information than they need to know. There is no reason for a nanny or babysitter to know your child’s social security number. Any child care provider needs to know where to take your child in a medical emergency, what time to take or pick him up from school, what to feed him, and so on. And that’s it.

Tip: if you need to hire a care provider for your children, give them ONLY what they need to know to do their job effectively. No matter how long they work for you, they do NOT need to know any personal information about your child, including their social.

9. Here’s a pretty obvious one: use a combination of letters and numbers for any password. Also, make any user id have the same equal combination of letters and numbers. So if your child has his own email or social media account, here are some quick tips for user id and password aliases:

Tip: do not use any part of your child’s name. No middle names, no confirmation names, no first initial/last name combinations. These are too easy to guess or find accidentally.

Tip: do not use any pet’s name, like the family dog. This is especially true if your child posts a picture of his dog and mentions that the dog’s name is “Sam”.

Tip: a user name or password should not be any word that can be found in the dictionary. There are many password guessing programs that simply go through the dictionary, trying various combinations of words.

Tip: make sure that any user name or password is at least 12 characters long. Many social media or email sites require at least six characters, but this is not enough. The longer the passcode is, the harder it is to guess or dig out using software.

Tip: let’s say your kid’s name is Joseph David Williams.

Here’s an example of an easy to guess user name and password combination:

user name: jwilliams

password: david

Here’s an example of a very hard to guess user name and password combination for the same Joseph David Williams:

user name: *Sdc56s+)9s^c

password: 7^jbMj(LA79K&-

Note the use of capital and small letters, special characters, and how all of these can be combined into “words” that make no sense.

Tip: many sites will offer to remember at least the user name. Don’t let them. Make your child type it in every time. He will think this a real “pain in the neck” and he’s right, it is! But it’s better to take an extra minute or two and type in a hard to guess user name/password combination than to have someone steal his identity!

10. Don’t let your children have any type of deluxe or feature-rich cell phone. Make sure his cell phone can’t do any of the following:

a. Take pictures

b. Has internet access

c. Allows text messaging

Tip: This one’s easy. If you let your kid have internet on his cell phone, then his online usage is out of your control. Text messaging can be very expensive. It’s something your child does not really need. And there’s the whole privacy issue with cell phones that can take pictures. If you give your child a cell phone, it should be “no frills”, in other words, just a telephone.

Conclusions:

Most of the above is common sense, but it is amazing how trusting people are online. They tell things about themselves that they wouldn’t tell members of their own family. They somehow think that what they say is private and that they are invulnerable. This is especially true of teenagers.

You will understand and agree with this article if you make it a point to lock your doors at night and when you are not at home. Why make it easy for someone to break in?

Do yourself and your children a great favor; do anything you can to protect their identities, especially if they use the internet. If your child gets a laptop at school, make sure the school puts restrictions on online use.

One last thing: unfortunately, many people who steal children’s identities are other family members. You may have to consider not telling cousins, uncles, aunts, etc any personal information about your child unless they are staying with them.

Don’t let anyone convince you that you are being paranoid, better safe than sorry!

The FTC estimates that nearly 9 million Americans are victims of identity theft each year. Victims of identity theft can miss out on numerous opportunities in their lives due to having their identity stolen. Many victims can not find jobs or apply for credit cards and loans since their credit report is mostly negative after an identity theft. Identity theft is basically a term used to describe the illegal use of another person’s identity. This can vary from one extreme to another but ultimately identity theft is the practice of using an identity other than your own, without permission, to commit fraud or crimes. Identity theft can take many forms, including: Financial ID Theft, Identity Cloning, and Business/Commercial ID Theft.

Financial ID Theft is when someone uses another person’s identity to purchase goods and/or services. The identity thief can use the victim’s identity to obtain credit cards and other types of loans, or set up telephone and electricity services for their home. The next form of ID theft is Criminal Identity Theft, which is when a person is arrested and uses a stolen identity to pose as someone else so that they are “innocent.” This allows the person to evade capture and presume a new identity, at least for the time being. Another form of ID theft, termed Identity Cloning is done by stealing someone’s identity and using it as your own on a regular, day-to-day basis. This can be done with Government Documents Fraud which will allow the thief to get a Social Security Card or even a Driver’s License with the victim’s information but the thief’s photograph, and many times coincides with Criminal ID Theft. A person may also use a business’ name to obtain credit on their behalf, which is the case with Business/Commercial Identity Theft. These types of identity stealing are just some of the major forms a theft can take. Many other crimes including illegal immigration, terrorism, espionage, and blackmail stem from identity theft.

To obtain the information needed, an identity thief can employ the use of various techniques. An identity thief may research an individual via the internet, government records, or gain information by stealing a person’s identification card, or credit/debit cards. With the increasing popularity of social networking sites and job search engines, it is easy for an identity thief to find all the information they need from a personal MySpace page or from a jobseekers resume. Another common practice, called dumpster diving, involves the thief stealing mail or other pieces of information about a person by sifting through their trash, or taking information from discarded equipment that has not been properly deleted, such as a personal computer. An identity thief may also “shoulder surf,” which involves listening or peeking in on public transactions, such as ATM withdrawals, to gain personal information.

As opposed to the previous methods, cyber criminals evolve just as fast as modern technology allows them to. The increased use of technology has allowed an identity thief to steal your information without ever seeing your face. A common practice, called phishing, allows the cyber criminal to impersonate a trusted source or business via electronic communications. Fake e-mails are sent out from legitimate looking sources attempting to lure you into giving up personal information. Hackers and crackers can also gain access to computer databases by using viruses and other such programs to steal information off the servers. While this is a very technical, hands-on approach, a skilled cyber criminal can infiltrate a system and steal personal information. Lastly, a thief can use skimming devices, which record credit and debit card information during transactions, to access your credit and bank accounts.

The risk of an identity theft is always lingering but minimizing that threat is your responsibility. Many times the thief is actually someone the victim knows very well. Be as safe as possible and avoid any risks that could endanger your identity. You can minimize this threat and prevent identity theft by always protecting your wallet or purse at all times, and especially do not leave it unattended. Do not carry an excessive amount of cards, only identification and any credit or debit cards you will be using. It is also important to always protect your Social Security number and avoid carrying your card with you. Never allow a company to use your Social Security number as a unique identifier. Instead they should be able to set up a special account number for you to reference. Also, never blurt out your Social Security number. Instead, write it down and then take it back when the representative is done with it. Being very wary of your trash, mail, and e-mail is also something to focus on. Shred any papers with personal information and opt-out of receiving credit card offers and telemarketing calls. Never leave mail with personal information in an unsecured location. You should always verify who you are speaking with. If the call seems suspicious hang up and call back one of the numbers you find on a bill or statement. If it really is your credit card or utility company needing to verify information, they will be glad to let you call back. The same goes for e-mails. If an e-mail seems strange, then manually type the URL of the company instead of clicking a link.

With the dramatic increase in computer usage and ever-growing dependence on technology, it is important to always take precautionary steps to avoid being victimized by a cyber criminal. Firstly, always use highly complex passwords. Passwords should contain a mixture of upper- and lower-cased letters and numbers, and in some cases special characters such as @#$%. If you can not memorize your passwords then write them down and keep them in a secure location. Next, you should always destroy the hard drive of a computer is you are discarding it or selling it. If you prefer online shopping, remember to always use credit cards instead of debit. Debit cards will allow a thief to access your bank account, which can not offer the same protection as a credit card. Also when shopping online, read the site’s privacy policy, ensure all security certificates are updated, and used only secured networks for transactions. Lastly, always use a proxy server to surf the Internet. A private proxy server will mask your IP address and allow you to surf the Internet without being tracked by ISPs, marketing companies, and search engines. These companies track your surfing habits and build databases with your information, which are bought and sold as needed. A proxy will also allow you to surf over an encrypted channel so that your data remains secured from anyone spying on your connection.

Identity theft is a serious issue that most people feel will not affect them. Many people allow themselves to fall under the misconception that, “it will never happen to me.” A victim of identity theft will take, on average, three months to discover that their identity has been stolen. With a three month head start the identity thief can clean out bank accounts, open fraudulent lines of credit, or even be arrested with your identity. Preventing identity theft falls squarely on the individual’s shoulders. While many companies offer identity theft resources, ultimately, the individual must take a conscious step to avoid being a victim. A person must take the initiative and preemptively integrate this information into their everyday lives. The only person that can truly help you prevent and avoid identity theft is yourself.