Silent crime spree
500 identity scams per day but many go unnoticed
ASILENT crime wave of identity fraud is sweeping across Britain with a record 500 scams a day. Criminals target victims through stolen mail, hacking and the dark web to get their hands on vital information, before fraudulently applying for loans, shopping and other items in their names.
But thousands of us don’t notice until a bill arrives for something we haven’t bought or experience problems with our credit rating.
Simon Dukes, chief executive of Cifas – the fraud prevention body – warned: “Identity fraud now has reached epidemic levels.
“The vast amounts of personal data available either online or through data breaches is only making it easier for the fraudster.”
So here’s how to protect yourself and what to do if you have been successfully targeted...
PUBLIC WI-FI
There are now an estimated 300,000 free Wi-Fi points in the UK designed to fill the gaps in coverage left by mobile networks or those without data packages.
Offered for free in public places such as airports, bars, coffee shops, shopping centres and hotels, and often accessible without a password, they provide a quick and easy way to check emails or social networking sites when away from home.
But if they are not fully secure, using them for online banking or shopping can be disastrous.
The most common Wi-Fi threat is a “man in the middle attack”, when cyber criminals take over a public network and redirect victims’ communications.
Another is to set up a spoof network – called an “evil twin” – using the name of a shop, hotel or cafe, then hack victims’ devices when they log on.
Emailing and using social networks should be safe but beware if you use the same password for all your accounts. You could be handing criminals a gift to your bank account. Never install software or app updates at public Wi-Fi spots, avoid banking services and don’t shop online and reveal financial details.
PASSWORDS
This can’t be stressed enough: It is essential to make sure all your passwords are different. Databases of illegally harvested information, obtained in attacks, are posted by hackers online. Telecoms firm TalkTalk had 20,000 customers’ details plundered in an attack. And Carphone Warehouse fell victim to a potentially devastating breach, hitting 2.5 million. If one account has been compromised and the security is the same for all, Christmas has come early for the fraudsters. If you find it difficult to remember lots of different combi- nations, use a password manager. Many of these are free, such as Last Past which removes the need to remember long streams of characters or re-use the same password for multiple accounts.
This app also has the ability to generate strong, unguessable passwords for all your accounts, which it then stores for you.
It is protected by fingerprint recognition or one really strong password – but that is the only one you need to remember.
Use a phrase that has at least 14 characters and then use numbers or symbols to break it up.
If you already use a Mac, or Apple device such as an iPhone or iPad, you already have a password manager in the form of iCloud keychains. If you don’t already have two- step authentication enabled on all your accounts, turn this on to protect yourself. It gives you an extra layer of safety.
Apple’s system adds extra security to your ID and will help prevent people from making purchases in iTunes, as well as unauthorised access to your iCloud account. To turn it on, log into My Apple ID, click Passwords and Security, and navigate to enable two- step verification. Google accounts also have a twostep verification option.
HOLIDAYS AND SOCIAL MEDIA
You wouldn’t leave the keys under the mat, or your home or windows open when on holiday, would you?
But that is effectively what you are doing when posting holiday snaps on Facebook and Instagram.
Not only is it an invitation to burglars, many social media users display personal information – date of birth, email address, place of birth, phone numbers, address, etc – just what banks ask for as security checks.
All these details might be an opportunity to commit fraud. All they have to do is get hold of a utility bill or some identification in your name and they could open a bank account,
This can either be done by redirecting your mail or by buying a highly sophisticated fake bill or P60, for example, available cheaply online. With a bank account, criminals can then apply for loans, credit cards and mobile phones – and charge them to you.
SHRED DOCUMENTS
Safety at home is just as important as online. Destroy all documents with personal information before throwing them out. Cross- cut shredders are best.