Protecting yourself from identity theft

AVOIDING IDENTITY THEFT

  1. Do not disclose your full nine-digit Social Security number unless absolutely necessary, and never use it as an identifier or password. Question those who ask for it.
  2. Avoid paper billing by requesting secure electronic statements instead. If you require hard copies, you can print and store them safely without risking mail theft.
  3. Lock your mailbox if it's lockable.
  4. Shred documents containing personal information (name, account numbers, social security number, birth date) before throwing them away. 
  5. Configure your computer and/or smartphone to require a password for use, and set another password for sensitive files. Use unique passwords that include a combination of letters, numbers, and symbols. Do not use your birth date, a close relative's birth date, or a combination of letters and numbers on Splashdata's annual list of the most stolen passwords.
  6. Avoid using the same password for different accounts, and change your passwords once or twice per year.
  7. Install and update antivirus, anti-malware, and security programs on all computers, tablets, and smartphones.
  8. Don’t disclose information commonly used to verify your identity on social networking sites, such as date of birth, city of birth, mother’s maiden name, name of high school, etc. If you do, don't use that information to verify your identity.
  9. Avoid using credit or debit cards or conducting online banking transactions or making purchases, paying bills, or sending sensitive information over unsecured WiFi networks (e.g., any network without a password log-in, such as on trains, at airports, coffee shops, or hotels).
  10. Disable Bluetooth connections on devices when not in use.
  11. Watch out for “phishing” and other “social engineering” scams. Phishing is when identity thieves request personal information by pretending to be a legitimate entity, such as a bank or the IRS. Ignore unsolicited requests for personal information by email or over the phone, and only contact entities by means you know to be authentic. Do not contact an entity by clicking a link sent as part of an email requesting personal information, because phishers often link to authentic-looking, fake webpages. You can also call the phone number on the back of a card previously issued to you, or call the phone number on an old statement from that issuer. 
  12. Fight “skimmers.” Do not give your debit card to a restaurant server or anyone who could have a hand-held skimming device out of sight. When using an ATM, look for suspicious cameras and holes, and touch to confirm that extra parts (loose or slightly different colors) have not been installed over the card reader. Always cover your hand while hand typing a PIN, and avoid using ATMs in secluded locations.
  13. When accessing financial information on your smartphone, only use apps authorized by your bank or published by reputable app makers. Apps that show thousands of downloads are probably safe. Do not access apps on public open wi-fi.
  14. Place security, or credit freezes, on your credit report. Our separate “security freeze” tips explain how to guarantee peace of mind against new account identity theft by freezing your credit reports, then thawing them only when you are in the credit markets. A creditor will deny credit to an imposter who applies for credit using the name and Social Security Number of a consumer who has placed a freeze.

DETECTING IDENTITY THEFT

  1. Check your monthly statements for unauthorized charges. Be suspicious of phone calls about surprise debts.
  2. Sign up to receive email and/or text notifications of account activity and changes to account information.
  3. Instead of paying for over-priced subscription credit monitoring, use your free annual credit reports by law as your own credit monitoring service. Every 12 months, federal law gives you the right to receive one free credit report from each of the three main consumer reporting agencies, Equifax, Experian and TransUnion. Instead of requesting three at the same time, request one credit report from one of the bureaus every four months. Verify that the information is correct, and an account has not been opened without your knowledge. Free credit reports are available online at AnnualCreditReport.com or by calling 1-877-322-8228. Seven states – Colorado, Georgia, Maine, Massachusetts, Maryland, New Jersey and Vermont also provide an additional free report by state law, available by contacting each bureau directly.

Types of Identity Theft:

Federal law recognizes two sorts of identity theft—existing account fraud and new account (account takeover) identity theft.

Existing Account Fraud: Victims of data breaches where only their account numbers were taken are well-protected by law, although victims of lost debit card numbers may face bounced checks and cash flow problems until the bank replaces their funds. The Electronic Funds Transfer Act (EFTA) provides for no liability if you notify the financial institution within 60 days if only your debit card numbers are stolen. However, if you actually llose a debit card or other device that can access your bank account, your liability could be up to $500 if you fail to notify the bank within 2 days of finding out about the loss and could increase even higher if you fail to notify the bank within 60 days. Under the separate Truth In Lending Act, credit card customers are always well protected by law, never facing liability of greater than $50 for fraudulent use of a card.

New Account Identity Theft: A thief who obtains your Social Security Number may attempt to open new accounts in your name. This form of identity theft is difficult to clear up. A thief who obtains your email address may contact you in a phishing scam to try and trick you into providing your SSN and birth date, which are the keys to new account identity theft. Thieves apply for credit with your name, your SSN and their own address. The creditor then obtains a credit report and issues credit to the thief.

Be Wary of New Types of Identity Theft: Note that online tax preparers and the IRS itself have been hacked, resulting in tax refund fraud. Health insurance data breaches may result in medical services theft. A federal agency, the Office of Personnel Management (OPM), has recently been breached. Detailed security clearance dossiers that were taken provide thieves with the opportunity to commit new account identity theft and could subject victims to reputational risk and emotional harms, since information on possible marital affairs, drug and alcohol abuse treatment, previous arrests even without convictions, may have been taken.

WHAT TO DO WHEN YOU DETECT NEW ACCOUNT IDENTITY THEFT

Step 1: Notify your financial institutions.

If you discover that your wallet, checkbook, credit card or other sensitive information has been lost or stolen, immediately notify the issuing bank, credit card issuer, or relevant institution to close all existing accounts. 

Step 2: Get an Identify Theft Affidavit.

If you suspect identity theft, report it to the Federal Trade Commission using the online complaint form or by calling 1-877-ID-THEFT. When making the report, you will be given an option to receive an Identity Theft Affidavit. This document, together with the police report, will be critical to minimizing the damage.

Step 3: File a police report.

If you believe you are a victim of identity theft, file a report with your local police department. When you make the report, bring a copy of the Identity Theft Affidavit. The police report will be important for insurance purposes. Keep copies of the police report and Identity Theft Affidavit.

Step 4: Contact the three major credit reporting companies and place a fraud alert on your accounts. If you haven’t already, it’s time to place a security freeze.

An important next step is to place a fraud alert and a security freeze on your credit report. Placing a fraud alert tells businesses checking your credit rating that there may be fraud involved in the account. The fraud alert must be renewed after 90 days, and it entitles you to receive one free credit report from each of the main agencies. The security freeze stops anyone from seeing your credit report without your permission. Alerts and freezes can be placed by contacting the toll-free fraud number of any of the three consumer reporting companies noted below. Initiating a credit freeze does not impact your credit score.

  • TransUnion: 1-800-680-7289; www.transunion.com; Fraud Victim Assistance Division, P.O. Box 6790, Fullerton, CA 92834-6790
  • Equifax: 1-800-525-6285; www.equifax.com; P.O. Box 740241, Atlanta, GA 30374-0241
  • Experian: 1-888-EXPERIAN (397-3742); www.experian.com; P.O. Box 9554, Allen, TX 75013

Step 5: If your social security number was stolen, contact the Social Security Administration.

File a report and access resources at www.idtheft.gov. You can also call 1-800-772-1213.

MORE IDENTITY THEFT RESOURCES


 

Issue updates

News Release | U.S. PIRG | Consumer Protection

U.S. PIRG Statement on House Passage of Bank Lobbyist Act (S.2155)

Here is our statement on this evening’s final passage of S.2155, the so-called Regulatory Relief, Economic Growth and Consumer Protection Act, but better know as the #BankLobbyistAct, in the House.

> Keep Reading
Blog Post | Consumer Protection

PIRG Delivers 12,600 Petition Signatures & Letter against the Bank Lobbyist Act before Today's Vote in the House | Mike Litt

Today, we sent a letter to all members of the House of Representatives in opposition to S.2155, which is expected to come up for a vote this afternoon. This bill, which we call the Bank Lobbyist Act, is the biggest roll-back of Wall Street Reform protections for mortgage borrowers and our economy since the economic crash 10 years ago. It also provides breaks for Equifax and the other national credit bureaus. In addition to our letter, we also delivered petition signatures from over 12,600 of our members across the country in opposition to S. 2155's credit bureau related problems. 

> Keep Reading
Blog Post | Consumer Protection

Over 70 Groups Encourage FHFA to Finish Review of Credit Scores, Regardless of S.2155's Expected Passage | Mike Litt

Today, we sent a letter to FHFA Director Mel Watt on behalf of 77 organizations, ahead of his hearing before Congress and an expected vote on S.2155 in the House this week. 

> Keep Reading
News Release | U.S. PIRG | Consumer Protection

Congress Affirms Need to Stop Debt Trap; Mick Mulvaney Should Follow Suit

Here is our statement on Congress allowing the deadline to pass without repealing the Consumer Financial Protection Bureau's payday lending rule.

> Keep Reading
News Release | U.S. PIRG | Consumer Protection

U.S. PIRG Statement Supporting Wednesday’s Senate Vote To Reinstate Net Neutrality

The Senate has voted in favor of every Internet-using American. By a vote of 52-47, senators approved Sen. Ed Markey’s (MA) Resolution to repeal the Federal Communications Commission’s February 2018 action that rescinded the 2015 Open Internet Order.

> Keep Reading

Pages

News Release | U.S. PIRG | Consumer Protection

U.S. PIRG Statement on House Passage of Bank Lobbyist Act (S.2155)

Here is our statement on this evening’s final passage of S.2155, the so-called Regulatory Relief, Economic Growth and Consumer Protection Act, but better know as the #BankLobbyistAct, in the House.

> Keep Reading
News Release | U.S. PIRG | Consumer Protection

Congress Affirms Need to Stop Debt Trap; Mick Mulvaney Should Follow Suit

Here is our statement on Congress allowing the deadline to pass without repealing the Consumer Financial Protection Bureau's payday lending rule.

> Keep Reading
News Release | U.S. PIRG | Consumer Protection

U.S. PIRG Statement Supporting Wednesday’s Senate Vote To Reinstate Net Neutrality

The Senate has voted in favor of every Internet-using American. By a vote of 52-47, senators approved Sen. Ed Markey’s (MA) Resolution to repeal the Federal Communications Commission’s February 2018 action that rescinded the 2015 Open Internet Order.

> Keep Reading
News Release | U.S. PIRG | Consumer Protection

U.S. PIRG Statement In Support of Wednesday’s Senate Vote To Reinstate Net Neutrality

 

On Wednesday, May 16, the Senate will vote on an issue that affects every Internet-using American: net neutrality. Sen. Ed Markey (MA) has proposed a Resolution of Disapproval, SJR52, under the Congressional Review Act, to repeal the current Federal Communications Commission’s February 2018 action rescinding the 2015 Open Internet Order.

> Keep Reading
News Release | U.S. PIRG | Consumer Protection

Closing the Consumer Bureau’s Office of Students will Harm Students

Here is our statement about yesterday’s news that the Consumer Financial Protection Bureau’s Office of Students will be closed.

> Keep Reading

Pages

30 years of toy safety

For the past thirty years, our sister organization U.S. PIRG Education Fund has taken a close look at the safety of toys sold in stores. Their reports have led to more than 150 regulatory actions. In November 2015, they released our 30th annual Trouble in Toyland report.

> Keep Reading

Protecting Consumers from Credit Company Abuses

Credit card companies seeking even higher profits have invented a slew of unfair practices. U.S. PIRG played a crucial role in passing the Credit Card Accountability, Responsibility and Disclosure (CARD) Act, which protects consumers and reins in the credit card companies' most abusive fees and practices.

> Keep Reading
Report | U.S. PIRG Education Fund | Consumer Protection

Trouble in Toyland 2017

For over 30 years, U.S. PIRG Education Fund has conducted an annual survey of toy safety, which has led to over 150 recalls and other regulatory actions over the years, and has helped educate the public and policymakers on the need for continued action to protect the health and wellbeing of children.

Toys are safer than ever before, thanks to decades of work by product safety advocates, parents, the leadership of Congress, state legislatures, and the Consumer Product Safety Commission (CPSC). 

> Keep Reading
Report | U.S. PIRG Education Fund | Consumer Protection

Lead In Fidget Spinners

While lead in toys has become less prevalent in recent years, U.S. PIRG Education Fund tested several models of one of today’s hottest toys, fidget spinners, for the toxic heavy metal. Laboratory results indicated that two fidget spinners purchased at Target and distributed by Bulls i Toy, L.L.C. contained extremely high levels of lead. U.S. PIRG Education Fund calls on Target and Bulls i Toy to immediately recall these two fidget spinners and investigate how such high levels of lead were found in these toys. Also, we call on the U.S.

> Keep Reading
Report | U.S. PIRG Education Fund & Frontier Group | Consumer Protection

Older Consumers in the Financial Marketplace

Older consumers are at risk of harm from predatory financial behavior. An analysis of more than 72,000 financial complaints submitted by older consumers (those 62 years of age and older) to the Consumer Financial Protection Bureau (CFPB, or Consumer Bureau) and contained in its Consumer Complaint Database suggests that mistreatment of older consumers by financial companies is widespread.

> Keep Reading

Guidance for Utilities Commissions on Time of Use Rates

As rapidly evolving renewable and energy efficiency technologies and economics drive ongoing transformation of America’s power sector, advocates from consumer, clean energy and environmental organizations are working together to provide guidance for utilities commissions and other stakeholders grappling with issues of electricity rate design.

> Keep Reading

Protecting Those Who Serve

This report, the tenth in our series on the CFPB's Public Consumer Complaint Database, is called "Protecting Those Who Serve." It is an analysis of more than 44,000 consumer complaints from active-duty servicemembers, veterans and their families. The report also explains the work the CFPB and its Office of Servicemember Affairs does to protect military families in the financial marketplace. Debt problems also are a leading cause of revoking secuirty clearances, which affects military preparedness.

> Keep Reading

Pages

Blog Post | Consumer Protection

PIRG Delivers 12,600 Petition Signatures & Letter against the Bank Lobbyist Act before Today's Vote in the House | Mike Litt

Today, we sent a letter to all members of the House of Representatives in opposition to S.2155, which is expected to come up for a vote this afternoon. This bill, which we call the Bank Lobbyist Act, is the biggest roll-back of Wall Street Reform protections for mortgage borrowers and our economy since the economic crash 10 years ago. It also provides breaks for Equifax and the other national credit bureaus. In addition to our letter, we also delivered petition signatures from over 12,600 of our members across the country in opposition to S. 2155's credit bureau related problems. 

> Keep Reading
Blog Post | Consumer Protection

Over 70 Groups Encourage FHFA to Finish Review of Credit Scores, Regardless of S.2155's Expected Passage | Mike Litt

Today, we sent a letter to FHFA Director Mel Watt on behalf of 77 organizations, ahead of his hearing before Congress and an expected vote on S.2155 in the House this week. 

> Keep Reading
Blog Post | Consumer Protection

U.S. PIRG Urges Appeals Court to Block President Trump's Illegal Appointment of Mick Mulvaney as Acting Director of the CFPB | Mike Landis

Last week, the U.S. Court of Appeals for the D.C. Circuit heard oral argument in English v. Trump, a case involving a challenge to President Trump’s appointment of Mick Mulvaney as the acting director of the Consumer Financial Protection Bureau (CFPB). U.S. PIRG, along with nine other consumer advocacy groups, has filed two amicus briefs in the case (one in the trial court and one in the appellate court) in support of the plaintiff, Leandra English, who is the CFPB’s deputy director and, we believe, the rightful acting director of the agency.

> Keep Reading
Blog Post | Public Health, Consumer Protection

PIRG Consumer Watchdog: Asbestos Found In Children's Products | Dev Gowda

The PIRG Consumer Watchdog team recently found that three different products sold by national retail brand Claire’s contain alarming amounts of asbestos. The Food and Drug Administration (FDA) considers it “unacceptable” for cosmetic talc to be contaminated with asbestos, and doctors say that there is no safe limit of asbestos.

> Keep Reading
Blog Post | Consumer Protection

Six Months Out From Equifax Hack, Are Consumers Any Better Protected? | Mike Litt

Consumers agree: Equifax must be held accountable for its wrongdoing. Yet the Trump administration and Congress still haven’t taken action to do that, or to better protect consumers from identity theft in the future. What are they waiting for?

> Keep Reading

Pages

View AllRSS Feed

DEFEND THE CFPB

Tell your senators to oppose the “Financial CHOICE Act,” which would gut Wall Street reforms and destroy the Consumer Financial Protection Bureau as we know it.

Support Us

Your donation supports U.S. PIRG’s work to stand up for consumers on the issues that matter, especially when powerful interests are blocking progress.

Consumer Alerts

Join our network and stay up to date on our campaigns, get important consumer updates and take action on critical issues.
Optional Member Code