Comments on: Identity Theft and Identity Protection

By: Jeremy

Jeremy — Fri, 17 Apr 2009 12:55:13 +0000

Paul, Lifelock’s own website says:

“Fourth, we order your free credit reports on your behalf from the major credit bureaus and they are sent directly to you. We do this every year. You can also do this yourself for free (Pennzoil anyone?).”

If they do it more than that, you’re the only one who’s said as much (they don’t even say it themselves).

As for paying for services you can do yourself, I understand the concept as I’d rather pay someone to do my oil changes for me. However, many of their “features” are one-time services, not monthly so why are you paying monthly? Also, if you get a credit freeze, what’s the point in having Lifelock at all?

By: Paul Ericksen

Paul Ericksen — Mon, 13 Apr 2009 20:50:14 +0000

Jeremy -

You have incorrect information on your web site regarding Life Lock. You state that they give you your credit reports once per year; this is not correct. I am a Life Lock customer, and they send me all three reports every 90 days, at the same time they renew the fraud alerts. So let them use up my “freebies”; because I don’t need them.

And while it is true that everything Life Lock does, you could do yourself, it is a matter of discipline to do all that work yourself; and it is a lot of work. I would rather pay someone else a few dollars per month to do it for me.

By: hannah james

hannah james — Fri, 17 Oct 2008 23:55:56 +0000

hi jeremy
thankyou for replying to my comment,as i know you are a busy guy. i agree with what you say about fingerprints being a problem,and i also have been a victim of our(english) government losing information,( my information was on one of the discs that was lost regarding the child benefit agency) and sadly their only response was a letter of apology to us in the post!!! i too am aware of the dangers of giving out information, and sometimes the information we give IS compulsory, it has/needs to be given and we really dont know whos hands its going to end in and the saddest part is we have no control over that.

By: Jeremy

Jeremy — Sat, 11 Oct 2008 13:31:00 +0000

Hannah: There is one problem with fingerprints. If they keep an electronic copy to compare to the ones we provide (which they’d have to do) then the electronic copy of our fingerprints could be lost or stolen along with all our other data. Fingerprints should never be used without some kind of personally selected pin to randomize the data somewhat. That way, if it’s compromised, you only have to pick a new pin and your fingerprint data is safe.

By: hannah james

hannah james — Sat, 11 Oct 2008 08:59:31 +0000

interesting reading, i think the best way to deter any kind of theft from bankers cards is to have our only one true form of id on them……………..OUR FINGER PRINTS!!!! no one can argue with that.

By: Jeremy

Jeremy — Tue, 08 Jul 2008 20:12:29 +0000

Freeze your accounts Janet and freeze them now. I don’t know if it would help, but it sure couldn’t hurt. Best-case, no one would be able to update your information without your “thawing” PIN same as no one can open credit in your name.

I haven’t run into this before so I’m not sure if it works that way or not. But no matter what, someone is dinking with your accounts and you should freeze them to prevent them from being used at the very least

By: janet

janet — Sat, 05 Jul 2008 20:23:00 +0000

Hi there. Great site

I’m retired, and keep correcting my credit file. I fix it, and someone keeps changing it.

By: Jeremy

Jeremy — Tue, 10 Jun 2008 10:51:34 +0000

Thanks for the tip Robert. I’m aware that it’s a violation of the agreement but am unaware of any consequences other than some stores will not take it. There is a small danger involved where some credit card companies consider the person who signs the card to be the authorized user which could cause you problems as well.

If these kinds of things worry you, I think the best thin to do is sign the back of the card in marker first. Because marker writing isn’t very clear, your signature will be at least somewhat obscured, but you’ve met the obligation for the store and cc company to sign it.

Of course, if you’re me, I’d still write CHECK ID on the card (in my case right ON TOP of the other signature) both to further obscure my real signature, and to encourage people to check my ID (which they still rarely ever do).

By: Robert Listerman, CPA, CITRMS

Robert Listerman, CPA, CITRMS — Tue, 10 Jun 2008 10:45:10 +0000

Love your site. One quick note. A person must sign their credit card on the back signature block or they are in violation of the credit card issuer�s terms and conditions. The statement to see ID or whatever needs to be an additional requests to meet both the credit card issuer�s T�s & C�s and your objective.

I too make id theft protection advice and protection free. My motto is: �if it is free, I�d rather they get it through me.?? Check us out at http://www.btr-security.com. I would love to hear your comments on our mission as well.

Stay secure,

Bob

Robert Listerman
BTR-Security
610-444-5295

By: Jeremy

Jeremy — Wed, 04 Jun 2008 11:17:22 +0000

Letting people peripherally see a credit card from several feet away is not a risk. How many people who see the card at the right angle to read all the digits will actually remember them? They’d also have to see and memorize the expiration date and possibly the 3 digit code on the back.

On the other hand, RFID is a radio transmitter and can be easily cloned at great distances. That means if you pay with a card that uses RFID only for authentication and someone can copy that data from far away, you can much more easily be robbed without ever having to be mugged.

Check out this article about how Credit Card chips were easily hacked:

http://www.engadget.com/2006/10/23/researchers-hack-rfid-credit-cards-big-surprise/

Excerpt:
“a researcher working with RSA Labs was able to steal the professor’s name and credit card number that was being transmitted in cleartext — thereby poking massive holes in Visa, MasterCard and American Express’ claims that these card include “the highest level of encryption allowed by the U.S. government.”"