Is Identity Theft Protection Worth It?
By Sarah Brady for Kiplinger Personal Finance March 2024
Should you consider identity theft protection? Monitoring services can help you spot red flags quickly, but they won’t stop criminals from targeting you.
“An ounce of prevention is worth a pound of cure.” When Benjamin Franklin penned this enduring phrase nearly three centuries ago, he was advising the public on how to avoid house fires. But his words are also useful when applied to a modern safety issue: identity theft.
By some estimates, roughly one-third of U.S. residents have experienced some form of identity theft - a crime that includes everything from credit card theft to tax fraud to insurance fraud - and that figure is expected to rise. For some consumers, the instinct is to turn to a familiar brand such as Norton, Equifax or McAfee for protection. Each of them offers something different, and you can subscribe to one of their plans for yourself or your family for just a few dollars a month (or in some cases, for free).
Do ID theft protection services really work?
It depends on what you’re looking for. Identity theft plans typically include some combination of account monitoring, alerts and restoration support. In other words, they don’t stop criminals from targeting you — they just respond to identity theft once it has happened.
“ID protection services largely entail cleanup rather than prevention,” says Mitch Mayne, a cybersecurity consultant and former incident responder for IBM Security X-Force. “While these services can offer some benefits to victims, they also create a false sense of security, which leads users to neglect basic cyber hygiene.”
According to Aura, a company that provides identity theft protection plans, you don’t necessarily need ID protection services. “While monitoring and fraud alerts are valuable ways to protect your identity, they don’t do anything you can’t do on your own,” Aura’s website says.
If you do decide to pay for ID protection, keep in mind that not all plans are created equal. The best plans come with tried-and-true, unfussy features such as VPNs, which hide your IP address and encrypt your data while you browse the internet, and password managers, which generate and store unique passwords for each of your accounts. A password manager may be the most valuable offering. “Sign-in credentials are frequently compromised and quickly sold on the dark web,” says Mayne, “so a password manager can provide some solid risk mitigation.”
Many plans, however, are packed with flashy features that may not deliver, such as identity theft insurance, which typically covers the costs you incur during the recovery process but doesn’t cover your financial losses, and live restoration support, which gives you access to live customer service agents after you experience an identity theft incident or receive an alert that your information may have been compromised. “It can be incredibly difficult to get an insurance claim approved by an ID theft monitoring company,” Mayne warns, “and even with their help responding to an incident, it can take years to get your money back and restore your identity. For some people, the damage is never fully undone.”
A multipronged approach
These services are not a cure-all for the myriad threats your identity faces, but when combined with good habits (more on those below), some targeted services can help.
For example, DeleteMe
, which has plans starting at $8.71 a month, helps prevent damage by finding and removing your personally identifiable information (PII) from data-broker websites. “Most of us have our PII available for purchase from multiple data-broker sites, so this removal lowers your risk footprint overall,” says Mayne.
For more-comprehensive monitoring, prioritize services that offer restorative and preventative support. For example, both of the identity theft protection plans from IDShield come with guaranteed identity restoration, which gives you unlimited access to live customer support, but they also include password managers and VPNs. They offer some degree of credit-score and credit-report monitoring as well. ID Shield plans start at $14.95 a month.
Many people don’t realize they already have free services available to them through their relationships with financial institutions. If you have a Mastercard credit card or debit card, for example, you can visit mastercardus.idprotectiononline.com to sign up for free restoration and monitoring services, including alerts if your user credentials are compromised in a corporate data breach. (Keep in mind that you have liability protections for your bank and credit card accounts, too. For example, American Express, Discover, Mastercard and Visa credit cards all come with zero-liability protection, which means you won’t have to pay a single dollar lost due to a fraudulent charge made on your account.) You may also have a free identity theft protection plan through your employer, and some renters and homeowners’ insurance policies include protection for financial accounts, too.
“Many identity theft protections already come with products you use - your antivirus software, for example,” says Mayne, “so it’s worth your time and money to understand what you already have available before buying another product that does the same thing.”
You can also explore free services online. For example, to find out if your information has been “pwned,” or compromised in a data breach, and sign up for future data breach alerts, try using haveibeenpwned.com. As for securing your credit reports and preventing certain forms of credit card fraud, you can set up a credit freeze, which blocks anyone from opening up a new loan or credit card in your name, by contacting the three national credit bureaus (Experian, Equifax and TransUnion). You can also visit AnnualCreditReport.com to pull your credit reports for free once a week and review them for signs of fraud, such as hard inquiries for loans and credit cards you have not applied for.
Perhaps the best news for people hoping to save money is that you are your own strongest defense against identity theft. “The best way to protect your identity is by consistently taking free, preventative actions,” says Mayne. That includes using unique and complex passwords for each of your accounts, enabling multifactor authentication for account sign-in, and installing software updates for your devices, apps and web browsers as soon as they’re available. Additionally, you should never click links or attachments that appear in unsolicited text messages and e-mails; they may lead to scam websites or install malware on your device.
Ten Telltale Signs That Someone Has Stolen Your Identity
From recognizing the red flags to getting ahead of trouble before it strikes
By Kurt Knutsson, CyberGuy Report in Fox17 News
How would you feel if someone else pretended to be you online? That’s essentially what identity theft is, and it can happen to any of us. You have something very important that makes you who you are – your digital identity. It’s like a puzzle made of pieces of your personal information, financial transactions and online interactions.
Unfortunately, like anything of value, it isn't immune to theft. Bad people want to steal your identity and use it to commit fraud and rob you blind. Identity theft is a serious threat that can be hard to detect. However, you can look for some clues that someone is trying to steal your identity and take steps to protect yourself.
Signs of identity theft and ways to prevent it
1. Unfamiliar credit card charges
Unexpected charges on your credit card statement are one of the earliest warning signs of identity theft. Even small, seemingly insignificant purchases can be a thief testing the waters before a full-blown shopping spree.
What to do
I recommend you regularly review your statements, and if you spot unrecognized transactions, contact your bank to dispute these charges and secure your account.
2. Missing bills
If you notice that your regular bills or correspondence aren't showing up, it might be because an identity thief has redirected your mail to another address. It's a cunning move to keep you in the dark about their illicit activities.
What to do
Regularly monitor your bills. If they stop arriving, contact your service providers to confirm their mailing addresses on file.
3. Sudden surge of junk mail
If you've been targeted, you might notice a significant increase in unsolicited credit card offers or pre-approved loans. This could indicate that someone has been checking your credit history without your knowledge.
What to do
You can reduce such junk mail by opting out of prescreened credit offers and consider instituting a credit freeze to prevent unauthorized credit accounts. When you place a security freeze, creditors cannot access your credit report. This will keep them from approving any new credit account in your name, whether it is fraudulent or legitimate. While this can be an effective deterrent, it comes with the hassle of negotiating access each and every time you apply for credit.
How to freeze your credit report for free
Contact each of the three major credit reporting agencies to submit your request online, by phone or by mail.
Note: To let lenders and other companies access your credit files again to create new accounts, you will need to lift your credit freeze permanently or temporarily.
4. Unexpected IRS notifications
If the IRS flags multiple tax returns filed in your name or if you're declared as an employee in a place you've never worked, it's a telltale sign that someone is misusing your social security number.
What to do
Report these incidents to the IRS immediately, and follow their guidance, which may include completing an Identity Theft Affidavit.
5. Unexplained changes in your credit score
Regular credit checks are your friend. Notice an unexpected plummet in your credit score. It may indicate that an identity thief has been opening credit accounts or making large purchases in your name, and worse, they don’t pay the bills.
What to do
Regularly monitor your credit score. If it drops suddenly, contact the credit bureau to dispute inaccuracies and set up credit-monitoring services.
6. Unrecognized accounts on your credit report
An unexpected loan or credit account appearing on your credit report is a glaring sign of identity theft.
What to do
Such anomalies should be immediately investigated with the credit bureau and the respective financial institution and reported to the FTC.
If you want a service that will walk you through every step of the reporting and recovery process, one of the best things you can do to protect yourself from this type of fraud is to subscribe to an identity theft service.
Identity theft-protection companies can monitor personal information like your Home title, Social Security Number (SSN), phone number, and email address and alert you if it is being sold on the dark web or being used to open an account. They can also assist you in freezing your bank and credit card accounts to prevent further unauthorized use by criminals.
One of the best parts of using some services is that they might include identity theft insurance of up to one million dollars to cover losses and legal fees and a white glove fraud-resolution team where a U.S.-based case manager helps you recover any losses.
7. Denied medical claims
If you're suddenly informed that you've reached your limit for a medical claim, it might mean that a fraudster has used your insurance details. Similarly, notices about unknown medical conditions or procedures could indicate that your medical identity has been compromised.
What to do
Notice something fishy? Alert your healthcare provider and insurance company. Scrutinize your explanation of benefits (EOB) and report any services you didn't receive.
8. Calls from debt collectors
Unexpected calls from debt collectors about unpaid bills for products or services you never bought can signal identity theft. An identity thief may have used your details to make purchases, leaving you with the bill.
What to do
Request validation of the debt, dispute it with the creditor, report the situation to the credit bureaus, and file a complaint with the FTC if you suspect you're a victim of such theft.
9. Unexpected contact from financial institutions
Be wary of unsolicited contact from financial institutions you have no relationship with. If a bank you've never used before sends you a notice, someone may have opened an account using your stolen identity.
What to do
Contact the institution to close the fraudulent account, notify your local law enforcement, and report to the Federal Commission (FTC) if you think this has happened to you.
10. Irrelevant job offers
Unsolicited job offers, especially ones that seem irrelevant to your field or too good to be true, may indicate that someone is using your personal information to search for jobs or build a false identity.
What to do
If you suspect that the job offer is fraudulent or part of a scam, report it to the relevant authorities. You can contact your local law enforcement agency or file a complaint with the Federal Trade Commission (FTC).
I've been scammed! What to do next?
Below are some next steps to take if you find you or your loved one is a victim of identity theft.
- If you can regain control of your accounts, change your passwordsand inform each account provider.
- Look through bank statements and checking account transactions to see where outlier activity started.
- Use identity theft protection: Identity theft-protection companies can monitor personal information like your home title, Social Security Number (SSN), phone number and email address and alert you if it is being sold on the dark web or being used to open an account. They can also assist you in freezing your bank and credit card accounts to prevent further unauthorized use by criminals. One of the best parts of using some services is that they might include identity theft insurance of up to one million dollars to cover losses and legal fees and a white glove fraud resolution team where a U.S.-based case manager helps you recover any losses.
- Report any breaches to state and local law enforcement and government agencies.
- Get the professional advice of a lawyer before speaking to law enforcement, especially when you are dealing with criminal identity theft. Seek legal advice if being a victim of criminal identity leaves you unable to secure employment or housing.
- Alert all three major credit bureaus, and possibly place a fraud alert on your credit report.
- Run your own background check or request a copy of one if that is how you discovered that your information has been used by a criminal.
If you are a victim of identity theft, the most important thing to do is to take immediate action to mitigate the damage and prevent further harm.
Kurt's key takeaways
In our daily stroll through the digital park, we've encountered some menacing signs of identity theft. While it's important to be aware of the potential pitfalls, it's equally vital to remember that these online spaces are not all doom and gloom. After all, they're the same avenues that allow us to connect, share, and explore like never before.
It's all about learning to walk these paths with our eyes wide open and with as much resilience to fend off all the bad stuff targeting our lives more and more online. The whole idea is not just about reacting to the signs of identity theft but anticipating and arming ourselves against it. It's about taking the steering wheel of our digital lives into our hands and driving with confidence, not apprehension.
How To Safely Wipe Your Phone When Repair Isn't An Option
By Kurt Knutsson, CyberGuy Report July 10, 2023 for Fox News
Don't sell, trade in or recycle non-functional phones without doing this first
So, your trusty smartphone has seen better days, and you've come to the realization that it's time for a new one. Maybe it's dead, or perhaps it's beyond repair. Either way, you want to make sure all your personal data is securely wiped from your iPhone or Android device before bidding it farewell. We'll walk you through the steps to safely wipe your smartphone clean, ensuring your sensitive information stays protected, even if it's non-functioning. Let's dive in and give your old device a proper send-off.
4 Steps To Take For A Non-Functional Phone
1. Erase the phone remotely
To erase your phone's data remotely, you'll have needed to previously set up either iPhone's ‘Find My’ app or Samsung's ‘Find My Mobile’. It works on all Galaxy phones and tablets running Android 8 or later. If you had either Find My or Find My Mobile set up, you should be able to log into the site to remotely lock and wipe your device.
To erase your iPhone, using Find My:
- Go to ‘icloud.com/find’ and sign in with your Apple ID
- Click on ‘All Devices’ and select the ‘device’ you want to erase
- Click on Erase iPhone to erase all data on your iPhone
A confirmation email will be sent to your Apple ID email address.
To erase your Samsung's data using SmartThingsFind:
Go to the SmartThings Find website.
- Select your ‘device’ on the left side of the screen and tap it
- Select ‘Erase data’ on the right side of the screen
By doing this, you’ll erase the device’s data, and no one will be able to access your personal information.
Log in and select your device, then follow the steps to either ‘Erase iPhone’ or’ Erase Data’ on Android.
To erase your Android data using Find My Device
If you lose an Android phone, you can erase it remotely using ‘Find My Device’. If you've added a Google Account to your device, ‘Find My Device’ is automatically turned on.
How to erase an Android device remotely:
On a browser, go to android.com/find
- Sign in to your Google Account If you have more than one device: At the top of the sidebar, select the device. If your device has more than one user profile: Sign in with a Google Account that's on the main or personal profile
- If you have more than one device: At the top of the sidebar, select the device.
- If your device has more than one user profile: Sign in with a Google Account that's on the main or personal profile
- On the left, select ‘ERASE DEVICE’. It will then ask to confirm that it is really you by using your passkey.
- It will then prompt you to confirm your decision again. Tap ‘ERASE DEVICE’. Note: This permanently deletes all data on your device but may not delete SD cards. After you erase it, Find My Device won't work on the device.
2. Remove the SIM card
your phone still has a physical SIM card, take it out of the phone before getting rid of the phone in any way. While there may still be data you saved directly to the phone, the SIM card will at least prevent anyone from using your phone number if they are, for some reason, able to get the phone running again. If you use an eSIM, contact your cellphone network carrier to have them disable it from your device.
3. Contact your phone carrier
Inform your phone carrier and let them know that your phone is no longer in use, and they should be able to make sure your phone number and account are no longer associated with that device. While they may not be able to remove any information from the phone directly, they may be able to help you dispose of the phone properly.
4. Plug it into a computer
Sometimes a phone may appear to be completely dead while there is actually just an issue with the screen. You would have no idea of that since you can't turn your phone on, so as a last resort, it doesn't hurt to try plugging it into a computer to see if you're able to retrieve any data.
If you have an iPhone, try opening iTunes or the Photos app to see if your phone appears as an external device. If it does, and you're able to access any content on your phone, back up your data through your computer.
For more information on how to do this, head to Cyberguy.com/MobileBackup.
5. Disposing of your phone properly
It's important to properly dispose of electronic devices, such as iPhones and Androids, as they can contain hazardous materials that can harm the environment. The batteries should not be thrown away with regular household trash.
You can bring any smartphone into most electronics stores, like Best Buy, and have it recycled for free. You can also recycle devices online through sites like Apple (yes, they accept devices other than iPhones), Google or even Amazon, which has an amazing free recycling program. Amazon does also offer trade-ins for functioning devices that can be redeemed as Amazon gift cards. There are other sites like Decluttr that let you sell old devices.
You can also check your local trash electronic recycling programs to see where you can recycle devices locally. The Environmental Protection Agency has a list of donation and recycling programs listed.
Kurt's key takeaways
When it's time to say goodbye to your old smartphone, you have to make sure your personal data is safe and sound. Follow these steps, and you'll keep your info protected, even if your phone is on the fritz or not working. First, use the right app to erase your phone remotely. Then, pop out that SIM card to keep your number secure. Don't forget to give your phone carrier a heads up too. And hey, let's not forget about the environment. Dispose of your phone responsibly by recycling or donating it through Apple, Google, or other organizations. With these tips, you can say goodbye to your old cell phone without any worries.
It’s summer, peak moving season for military servicemembers and their families. You’ve got enough on your plate without having to worry about identity theft. But the reality is scammers are getting more and more clever with their tactics to swindle members of the military community. In fact, five years of identity theft data reported to the FTC on IdentityTheft.gov shows that active duty servicemembers are 76% more likely to report that an identity thief misused an existing bank or credit card account. So, here’s the BLUF, the bottom-line up front: Protect your identity by protecting your personal information.
Whether you’re moving, deploying, or simply enjoying your summer plans, protect yourself by following these rules of engagement:
► Track your bank account activity. Check to see if your bank offers alerts for every transaction or transactions over a certain amount. Many banks have mobile apps that let you report lost or stolen debit cards and unauthorized transactions immediately.
► Lock or freeze cards you’re not using. Identity thieves can’t misuse your debit and credit cards if they’re on hold. Mobile apps give you quick access to lock and unlock your cards as needed.
► Sign up for free credit and identity monitoring. The Free Electronic Credit Monitoring for Active-Duty Military Rule gives you access to free services like notifications whenever there’s activity on your credit reports. Add an active-duty alert to your credit report to require creditors to take extra steps to verify your identity before granting credit in your name.