How to protect yourself from identity fraudsters
Every week I’m contacted by readers who tell me that they’ve been the victims of identity theft.
So I’ve teamed up with my fellow TV expert and technology expert, David McClelland (davidmcclelland. co.uk) to help you understand and avoid identity theft scams.
What is identity theft and how does it occur?
Identity theft occurs when fraudsters manage to get enough information about you to impersonate you. This might be applying for a credit card in your name or hijacking your bank account.
As David tells me: “The most frightening thing for many identity theft victims is that by the time they find out their identity has been stolen or cloned it may feel like it’s too late to do very much about it”.
But don’t worry – often there is a solution if you act when you discover the fraud.
Frustratingly, data breaches are one of the most common ways ID theft occurs.
Almost every week businesses are hacked or have such lax security that they allow our private information to get pinched. Free websites like ‘Have I Been Pwned?’ (haveibeenpwned. com) can help you check things like your email or phone.
Sometimes we over-share data on things like social media, so lock your profile and remove things like birthdays. An estimated two-thirds of all personal info comes from business leaks or social media.
Phishing – where scammers try to get us to click on links or trick us out of our passwords or bank details – is another major resource for fraudsters. However, there are public records too.
What to do if your identity has been stolen
It’s easy to feel overwhelmed when your identity gets pinched. But businesses and official organisations are familiar with many patterns of fraud, so you might not have to fight as hard as you think when seeking help.
Start off by writing down if the fraudsters have gained access to three key forms of data: contact information (phone numbers, your address, email); financial info (bank or credit card details, online payment systems), and passwords, PIN codes and ID requirement details (like your first school or mother’s maiden name).
Next up, have a think about what the scammer is doing with that information. For example, are they trying to get in to your bank or financial websites; using retail apps to go on a shopping spree; hijacking your email or social media/communications sites to ‘phish’ your friends or apply for new financial services like credit cards or phone contracts?
David has a great checklist to follow that tells you exactly what to do next:
Firstly, tell your bank, card provider and other financial services. Go through your accounts and identify anything you have not authorised. They’ll explain the process and how they’ll prevent further fraudulent transactions.
Change your passwords and enable ‘’two-factor authentication’ for any accounts you’ve identified that may have been compromised. Try an online password manager service if you are worried about remembering this information. It’s easier to use one than you think.
Tell your friends, family and colleagues so they know your account may have been compromised and to ignore any questionable requests for help, money or links that might get sent.
Notify Action Fraud (actionfraud. police.uk) and the police. If we don’t, the scale of fraud goes unreported. It also ‘proves’ to the businesses that you are not faking.
Contact credit reference agencies. There are only three – Experian (experian.co.uk), Equifax (equifax.co.uk) and Transunion (transunion.co.uk). You do not have to pay and they can ‘disassociate’ you and your address from any fraudulent activity.