Security Center - Identity Theft Prevention Guide
What is Identity Theft?
Identity theft is the fraudulent use of a person’s personal identifying information. Often, identity thieves will use another person’s personal information, such as a social security number, mother’s maiden name, date of birth, or account number to open fraudulent new credit card accounts, charge existing credit card accounts, write checks, open bank accounts, or obtain new loans. They may obtain this information by:
- Stealing wallets that contain personal identification information and credit cards.
- Stealing bank statements from the mail.
- Diverting mail from its intended recipients by submitting a change of address form.
- Rummaging through trash for personal data.
- Stealing personal identification information from workplace records.
What basic steps can I take to avoid becoming a victim of identity theft?
- Do not give personal information, such as account numbers or social security numbers, over the telephone, through the mail, or over the Internet, unless you initiated the contact or know with whom you are dealing.
- Destroy pre-approved credit card offers before you throw them out. A home shredder is the best thing to use on financial statements, receipts and old cancelled checks that you are discarding.
- Protect your PINs and other passwords. Avoid using easily available information, such as your mother’s maiden name, your birth date, the last four digits of your social security number, your phone number, etc.
- Carry only the minimum amount of identifying information and number of credit cards that you need.
- Pay attention to billing cycles and statements. Inquire of the bank, if you do not receive a monthly bill. It may mean that the bill has been diverted by an identify thief.
- Check account statements carefully to ensure all charges, checks, or withdrawals were authorized.
- Guard your mail from theft. If you have the type of mailbox with a flag to signal the box contains mail, do not leave bill payment envelopes in your mailbox with the flag up. Instead, deposit them in a post office collection box or at the local post office. Promptly remove incoming mail.
- Order copies of your credit report from each of the three major credit bureaus once a year to ensure that they are accurate. The law permits the credit bureaus to charge $8.50 for a copy of the report (unless you live in a state that requires the credit bureaus to provide you with one free copy of your report annually.)
What can I do if I become a victim of identity theft?
If you believe that someone has stolen your identity, you should:
Contact the fraud department of each of the three major credit bureaus to report the suspected identity theft and request that the credit bureaus place a fraud alert and a victim's statement in your file. The fraud alert puts creditors on notice that you have been the victim of fraud, and the victim's statement asks them not to open additional accounts without first contacting you. The following are the telephone numbers for the fraud departments of the three national credit bureaus:Trans Union: 1-800-680-7289
Experian: 1-888-397-3742You may request a free copy of your credit report. Credit bureaus must provide a free copy of your report, if you have reason to believe the report is inaccurate because of fraud and you submit a request in writing.
- Review your report to make sure no additional fraudulent accounts have been opened in your name, or unauthorized changes made to your existing accounts. Also, check the section of your report that lists "inquiries" and request that any inquiries from companies that opened the fraudulent accounts be removed.
- Contact any bank or other creditor where you have an account that you think may be the subject of identity theft. Advise them of the suspected identity theft. Request that they restrict access to your account, change your account password, or close your account, if there is evidence that your account has been the target of criminal activity. If your bank closes your account and opens a new one, ask them to issue you a new credit card, ATM card, debit card, or checks, as appropriate. Connex Member Service 800-278-6466
- File a report with your local police department.
- Call the Social Security Fraud Hotline: 800-269-0271
- Contact the FTC's Identity Theft Hotline toll-free at 1-877-ID-THEFT (438-4338). The FTC puts the information into a secure consumer fraud database and shares it with local, state, and federal law enforcement agencies. (FTC Identity Theft Site)
Online Fraud Prevention
A new type of fraud is being perpetrated on the Internet. It's called "spoofing" and it lures customers to a fraudulent site via a practice called "phishing". Spoofing occurs when an attacker creates a "shadow copy" of a site that looks legitimate, but is, in fact, an imposter. Phishing is fraudulent email that is sent to trick the victim into providing sensitive personal information that can be used for identity theft in one of two ways: an email message can lure customers into providing the sensitive information on the spot (e.g., by replying to the email) or by including links to a site that tries to get a customer to disclose personal data.When Connex sends email to you, we will not ask you for your account numbers, User Name, Password, or your PIN number. Be suspicious of any email that asks you to provide such information.
What is a fraudulent email?
Fraudulent email is often hard to detect. The return address can easily be forged. Two important ways to detect that an email is fraudulent are: if the email asks you for personal information (asking you to log in or to update your account information) or if the email asks you to click on a link to verify your personal information.
How can I tell if an email is a fraud?
If it looks suspicious to you, it could be fraudulent. If you have any concerns feel free to call Connex at 1-800-278-6466 or email us at email@example.com.
How do I report a fraudulent email?
You can report a fraudulent email by calling Connex at 1-800-278-6466 or email us at firstname.lastname@example.org
How can I avoid being "Phished"?
When you bank online, make sure you type in the site address yourself. Do not click on links contained in email messages since they may be disguised as legitimate website addresses, when they are not.