Mortgage Fraud and Identity Theft: Like Chocolate and Peanut Butter

Robert Siciliano Identity Theft Expert

You don’t need to own a house to become a victim of mortgage fraud. Heck, you don’t even need to be older than 3 to be a victim. As long as the thief has a Social Security number, they can apply for loans in your name.

Lexis-Nexis Mortgage Asset Research Institute in Chicago shows that the incidence of fraud in 2009 increased 7 percentage points over 2008’s levels. In 2008, fraud reports rose 26 percentage points from the previous year. The institute collects and provides data – suspicious-activities reports, or SARS – to subscribers, including mortgage lenders. If you want to compare numbers, there were 67,190 such reports collected in 2009, compared with 63,713 in 2008, and 46,717 in 2007. The 2009 increase was small, but officials say they believe a lot of scam artists are going high-tech.

Law enforcement activities surrounding mortgage fraud across the U.S. have resulted in the arrest of thousands, according to reports. The utility of Social Security numbers as a means to obtain credit fuels the pervasiveness of mortgage fraud.

Some of the most devastating instances of mortgage fraud involve identity theft. Consumers not only have to be leery of questionable mortgage lenders, but also of others who might buy a home in their name.

Data from the U.S. Treasury Department’s Financial Crimes Enforcement Network has revealed that instances of suspected mortgage fraud have risen by 1,000 percent over the past six to seven years, reported the article in thisisyourmoney.co.uk, which went on to say the FBI’s financial crimes section has seen an 800 percent increase in its case load since 2003.

The apparent spike in mortgage fraud reveals one more line of attack that thieves exploit to hijack the financial identities of consumers.

The results of a research investigation by the Federal Bureau of Investigation recently revealed an apparent, significant upward trend in the incidence of mortgage fraud. Furthermore, homeowners who have Home Equity Lines of Credit (HELOCs) are prime targets for financial fraud, suggested a related statement from the Identity Theft Assistance Center (ITAC).

The best way to combat the threat is to transform Social Security numbers into something useless to thieves, who use these universal identifiers to obtain financial identities. Social Security numbers’ de facto role as universal identifiers has fueled a massive increase in financial fraud—simply because these numbers allow criminals to assume others’ identities. Given the scope of financial fraud, which costs billions of dollars every year, consumers need a way to deprive thieves of the ability to gain access to someone else’s finances. They must implement measures that render those Social Security numbers useless to thieves.

Invest in Intelius identity theft protection and prevention. Not all forms of identity theft can be prevented, but identity theft protection services can dramatically reduce your risk. (Disclosures)
Robert Siciliano Identity Theft Speaker discussing the Social Security numbers on Fox News.

How Secure is your Mobile Phone?

I love my iPhone. The fact that I have a full web browser and can access all my data anytime from anywhere is fantastic. Plus my iPhone allows me to peek in on my home security system with an application that’s connected to my home security cameras. If I’m on the road I can log in and see the family doing whatever activities in our outside the home.

If you don’t have a phone that you can integrate with your home security system I strongly recommend considering an iPhone. Besides being the coolest thing to be able to show someone live video of your home base, it is incredible peace mind to check in.

And consider if that phone fell into the wrong hands what could come of it? In my case not much due to the fact I’m pretty well locked down.

If you have one of the popular brands below pay attention:

BlackBerry:

The Blackberry is easily the most popular Smartphone on the market and, according to cellphones.org, the most ‘natively’ secure. Just by having a Blackberry, you are one step ahead but that doesn’t mean you don’t still have to enable your security settings.

Enable your password. Under General Settings set your password to ‘on’ and select a secure password. You may also want to limit the number of password attempts. Test to make sure that your password works by locking your phone to confirm.

Encrypt your data. Under Content Protection settings, enable encryption. Then, under ‘Strength’ select either ‘stronger’ or ‘strongest’. Though ‘strongest’ is the most secure, ‘stronger’ has faster encryption/decryption. Under the Content Protection settings you will also have the option to encrypt your address book.

When visiting password protected internet sites do not save your passwords to the browser. Anyone who finds your phone and manages to unlock it will then have access to all of your account data and your identity will be stolen. It may be annoying to have to enter your password every time but the extra 30 seconds is certainly worth avoiding identity theft.

iPhone:

The iPhone, which has captured over 25% of the Smartphone market, the second highest share in the industry, has notoriously poor encryption capabilities. As such, enabling the included security features and adding apps that allow you to secure your information is key to being a ‘safe’ iPhone owner.

Enable the Pass code Lock and Auto-Lock. Go into your phones General Settings and set the 4-digit phone pass code to something that you will remember but is not ‘significant’ to you. That means no birth dates, no anniversary dates, no children’s ages. Then, go back into General Settings and set the Auto-Lock. Although you can choose from 1 min to 5min, the quicker your phone locks the safer it is from those who might be tempted to tamper with it while you aren’t looking.

Turn your Bluetooth off unless you are using it. Bluetooth allows you to easily connect to a hands-free head set or to send files from your phone to a computer. However, this also works the other way. A tech savvy hacker with a laptop can easily hack your phone from the Bluetooth connection if it’s on.

Download Simple Vault 1.2. Simple vault adds a second layer of protection to your iPhone by allowing you to password protect each of your apps. It also allows you to store your sensitive information right on your phone, unlike other security apps which send it to you over the internet when you access it

General:

Whenever possible, wait till you get to your computer on a secured network before accessing sensitive information. When responding to important work emails or checking your bank account balance it really is best to wait until you can access this information from a secure network. Anti-virus and anti-malware software as well encryption capabilities for computers are miles ahead than what is currently available for phones. So ask yourself before you enter your credit card number to that online store: Is it worth identity theft for me to do this now or can it wait till I get back to the office/home?

Robert Siciliano personal security expert to Home Security Source discussing Mobile Phone Spying on Good Morning America

Protecting Your Property When You are Home

In a down economy, people make decisions they otherwise wouldn’t need to consider. Home invasions and robberies make the news every day multiples times a day.

In Huntington West Virginia in just the last two weeks, they’ve seen several different instances where homeowners have fought back and won. But, where is the line when it comes to self defense and protecting what’s your home?

One man says a machete saved his and his family’s lives. “They came at me physically with firearms, as far as I was concerned,” he said. When two thieves broke into his home waving a baseball bat and a toy gun that he thought was real, he wasted no time fighting back.

The suspects spent some time in the hospital before heading to jail. Jeez, the homeowner goes at them with a machete and they went to the hospital. Makes sense.

“They were masked and hooded, but due to their injuries, they were bleeding profusely from head and neck area,” the County Sheriff said.

This homeowner chose an extreme solution for an extreme situation. The whole event could have seriously gone wrong for the homeowner and put himself and family at risk. Ultimately whatever you to survive you’ve done the right thing.

The best defense is a good offense as they say. In this situation preventative measures would keep them from getting in the first place. Therefore, there is no need to hack them all up with a machete. Plus it’s all messy. Icky.

Home security tips:

Timed and/or motion activated lights, inside and out. This burglar stated lights turned on made him nervous and he would go to a home that didn’t pose a threat of getting caught.

Trim bushes and shrubs. Anything covering doors and windows that give a burglar cover is an invitation to a thief. I also recommend defensive shrubbery with lots of thorns.

Encourage your neighbors to report any suspicious activity around your home while you are gone or even while you are home.

Install a home security system. It’s not enough to just lock your doors. A home alarm is an effective deterrent while you are away and while you are home. Even home alarm decals and signage is a layer of protection.

Dogs big and small. A dog need not be an attack dog to be an effective deterrent. Barking dogs bring attention to the home they are protecting.

Robert Siciliano personal security expert to Home Security Source discussing Home Invasions on Montel Williams.

Beware of Facebook Dangers

Robert Siciliano Identity Theft Expert

Danger!! Hows that for a blog title that screams fear, uncertainty and doubt!? Fact is Facebook boast 400 million users and is in so many ways seems out of the control of its founder, and is looking dangerous. This is a company that has grown faster than fast and has a (very intelligent) 20 something CEO just out of puberty calling the shots. It seems the amount they (his Board? CIO? ) lets him run at the mouth that privacy is no big deal, shows an immature lack of control over this operation. Any company that wields this much power needs to be checked and balanced.

Their growing pains are publicly played out in numerous lawsuits and visceral rants by every possible pundit (like me) and privacy professional on the block.

Sure when you are that big there will always be someone who wants to take you down. But every week there is a new story about a security breach or a privacy violation. That tells me it’s more than growing pains or jealousy. There are serious management problems there resulting in reputation issues for the company and for the user, security issues.

DANGER, DANGER!

The 3rd party applications in the form of games and quizzes are sharing data that’s not meant to be shared. While the user may agree to the terms of service, they aren’t reading the fine print. Is it really in Facebooks interest to allow this?

Seems like every 2 weeks they change whatever privacy settings there are and the public gets more pissed off with each change. Why doesn’t someone inside this company have a clue what the public wants? What’s more obvious is they don’t care!

Criminals and scammers set up fake profiles of companies and individuals all day every day. These social media identity theft profiles are designed to get people to provide data for free gift cards or other offers that ultimately allow for financial fraud to occur. Is there no way they can more effectively police this?

Recently, the chat feature was made public. For a period of time users chats were available for anyone to see. They had to shut it down to calm the mess. How the heck does that happen? Don’t they have redundancy built in to prevent this?

Ads appearing on Facebook are sanctioned in some way by Facebook and some are malicious. When clicked they can infect your PC. You would think that a private company worth billions would have systems in place to prevent its users from getting hacked via ads placed on their own servers?

So now that I’m done throwing up, protect your identity. Because when it gets hacked on Facebook, don’t say I didn’t warn you.

Invest in Intelius identity theft protection and prevention. Not all forms of identity theft can be prevented, but identity theft protection services can dramatically reduce your risk. (Disclosures)

Robert Siciliano Identity Theft Speaker discussing Facebook Hackers on CNN.

Google Street View Security Issues

You may not realize it but a picture of your own home is very likely available on the Internet thanks to the popular Google Street View map program.

I’m a big fan of Google. They’ve done a great job or organizing the world’s information. All their tools and apps like Gmail, calendar and docs are fully functional and mobile. They seemed to have taken the fight out of technology with these tools.

Then, there is Google Street View. Zoom, rotate and pan through street level photos of cities around the world. I remember the day Google Street View came down my street. I live on a private dead end and they came right down my driveway. They got stuck trying to turn around and we had to move a car for them.

Then, a few months later there it was on Google Street View. It’s an ambitious attempt at mapping the world just like you were there yourself.

So how does this affect you? For one thing, it allows anyone anywhere to gain intelligence about your street, fences, gates, driveway and information about your home and in general scope out your neighborhood. Certainly someone can simply just driveby and use a video camera or take pictures and Google Street View makes it even easier.

But what if Google captured much more than a picture?

Now Google admits they messed up a little. An ambitious Google Street View engineer plugged some code in their data collection process that they planned on using to collect data on “Public Wi-Fi Hotspots”.

The code pulled more the just hotspots. There could have been enough data pulled to steal someone’s identity.

Protect yourself by making sure your wireless router is protected with a password.

When you have an unsecured wireless connection, it’s just like leaving the front door to your home open and inviting the world to come inside to take a peek.

Google says its Street View cars will stay in park until the problem is fixed.

Robert Siciliano personal security expert to Home Security Source discussing burglar proofing your home on Fox Boston

Watching Out For Criminal Hacks

Robert Siciliano Identity Theft Expert

We use the web to search out tons of information, to shop online and to connect with friends and family. And in the process criminals are trying to whack us over the head and steal from us. And they’ve become very proficient at their craft while most computer users know enough about protecting themselves today as they did 15 years ago. Which equates to not so much.

Back in the day, a person only had to know not to open a file in an attachment from someone they didn’t know. Maybe even not opening one from someone they knew and making a phone call first. Today there are more ways than ever that your PC can be hijacked.

Today you can simply visit a website thinking you are safe and the bad guy was there before you and injected code on the site and now it infects your out-dated browser. That’s a “drive by” and it’s very common today. Here is a list of likely attacks occurring every day.

Fundamentals:

Update your browser. Internet Explorer and Firefox are the most exploited browsers. Whenever there is an update to these browsers take advantage of it.   Keep the default settings and don’t go to the bowels of the web where a virus is most likely to be. Consider the Google Chrome browser as it’s currently less of a target.

Update your operating system. No matter what brand of computer you are on you have to update the critical security patches for your Windows operating system. Microsoft will no longer support Windows XP after 2014, so start thinking about upgrading to Windows 7 (which is pretty sweet). Go to Windows Update. Why anyone would keep XP running unless they had to is a mystery to me. It’s a dog who has been kicked too many times.

Update Adobe Reader and Flash. Adobe PDFs and Flash Player are ubiquitous on almost every PC. Which makes them a prime target for criminals. To update Reader go to Help then Check for Updates. To update Flash go here.

Don’t be suckered into scareware. A popup launches and it looks like a window on your PC. Next thing a scan begins. The scan tells you that a virus has infected your PC. And for $49.95 you can download software that magically appears just in time to save the day. Studies show that organized criminals are earning $10,000.00 a day from scareware. That’s approximately 200 people a day getting nabbed. Some “distributors” have been estimated to make as much as $5 million a year. Just shut down your browser and do a scan with your existing anti-virus. Then update your browser because it’s probably outdated, which is why you saw scareware in the first place.

Beware of social media scams. Numerous Twitter (and Facebook) accounts including those of President Obama, Britney Spears, Fox News and others were taken over and used to make fun of, ridicule, harass or commit fraud. Often these hacks may occur via phish email. Worms infiltrating Twitter requesting to click on links would infect user’s accounts and begin to multiply the message. Then your followers and their follower would get it, causing more grief than anything else.

Invest in social media protection @ Knowem.com

Invest in Intelius identity theft protection and prevention. Not all forms of identity theft can be prevented, but identity theft protection services can dramatically reduce your risk. (Disclosures)

Robert Siciliano identity theft speaker discussing social media identity theft on CNN

10 Home Security Tips You Never Thought Of

Ten out o the box home security tips for maximum home safety:

  1. Get a life-size cardboard cutout of yourself and put it a few feet away from a window that’s gives the impression someone is always home.
  2. Get another life-size cutout of you lying on the couch watching TV and keep the TV on while you are gone.
  3. Find a Talk AM radio station and keep it on LOUD all day and night while you are gone.
  4. Plant defensive shrubs or thorny bushes around basement or ground-floor windows that make it difficult for the bad guy to get through.
  5. Buy and install a “This Property is Protected with VIDEO SURVEILANCE” sign.
  6. Get 2 big dog food bowls and write KILLER on them and put them on your front and back porch.
  7. Whenever you leave the home turn phone ringers down or off so the bad guy won’t hear ringing and ringing and ringing when you’re not home.
  8. Set your answering machine to say “Sorrry I can’t answer the phone right now, I’m busy cleaning my guns, leave a message and I’ll call you back once they are all loaded again.”
  9. Pick up a home alarm that senses when someone jiggles your door handles. These alarms will send off a siren or they will play a recording of a barking dog.
  10. Get out and buy, then install “POLICE CRIME SCENE DO NOT CROSS” tape on your front and back door or porch giving the impression something bad has happened. Not only will your neighbors pay serious attention to it, they’ll most likely call you and you can tell them to watch your house. Plus any bad guys will steer clear of your home.

Robert Siciliano personal security expert to Home Security Source discussing Home Invasions on Montel Williams.

2 Million Homes Are Burgled Every Year

The FBI says a home is burgled every 15 seconds. Police only catch one out of 10 burglars. The U.S. Bureau of Justice Statistics, show U.S. households experience about 16 million property crimes annually. Burglaries result in over $4.5 billion in losses annually resulting in over $2000 in losses to the victims. The National Burglar and Fire Alarm Association, determined property crime averages above 75 percent of all crime. And despite 2 million homes being burgled every year the Justice Department says that burglaries have declined over the past 30 years.

One reason is due to as many as 1 million private officers and security guards who work in residential areas patrolling and providing access control at community entrances. But that’s not all.

What have also reduced burglaries are home security alarms. Studies show as many as 25% of all American homes are equipped with a home security system. Additional security measures such as home security cameras are far less expensive and easier to install, wireless alarm systems and window film that makes it difficult to break glass.

Today’s door locks are better than ever too. Certainly a person can buy and install budget locks, but they can be easily picked or compromised with a ‘bump key.” Spending a few bucks more means much better locks. The most important aspect of a good lock is LOCKING it!

However most burglars don’t care if you have an alarm or expensive locks, because they break into the homes that don’t have alarms or they just jiggle the door knob and hope it’s unlocked.

Many homeowners admit that they don’t use their home security systems to the full extent because they are inconvenient or “scary” to use.  When choosing a home security system, be sure to choose something that can be armed and disarmed easily by all family members.

Robert Siciliano personal security expert to Home Security Source discussing Home Security on NBC Boston. Disclosures.

Grand Jury: TSA Employee Stole Identities

Identity Theft Expert Robert Siciliano

A Lynn Massachusetts couple was accused of selling the identities of at least 16 Transportation Security Administration workers at Logan International Airport.

Lynn was then and is now known as “Lynn Lynn the City of Sin, you don’t go out the way you come in.”

Fox News reports A federal grand jury accused the couple of stealing personal information including the Social Security numbers of TSA workers at Boston’s Logan International Airport. There was no indication the private information of the security screeners was given to militant groups, Reuters reported, but the case suggests federal officials may be vulnerable to identity theft.

The grand jury alleged that the couple used the stolen information to obtain cable television and utilities for themselves and for others, whom they charged as customers. The two will face charges of conspiracy and aggravated identity theft.

To steal the ID of a TSA worker gives one access to the airport then to luggage and more. There needs to be a tighter system that prevent this. We need effective identification that makes another’s identity useless to the thief.

Invest in Intelius identity theft protection and prevention. Not all forms of identity theft can be prevented, but identity theft protection services can dramatically reduce your risk. (Disclosures)

Robert Siciliano Identity Theft Speaker discussing hacked email on Fox News.

Facebooks New (and only) Security Feature

Identity Theft Expert Robert Siciliano

So maybe you used a public PC to log into your Facebook account and you hit a button that saved your login credentials. Or maybe you received an email from what you thought was Facebook and you plugged in your username and password and got phished. Now someone other than you has your account information and they are logging in to torture you or steak from your friends.

Wouldn’t it be nice to have a degree of control over that?

Facebook just introduced a security setting that sends you an email telling you someone has just logged into your account.

The feature doesn’t protect you from being stupid and giving your credentials away, but it does give you an opportunity to log into your account and change the password and thereby block the bad guy from getting back in. But the bad guy can change your log in information too. All they have to do is change your email address. Once they do they receive an email at the new address and hit a confirm link. At the same time you will also get an email to the original login email gving you the opportunity to dispute the new account number. So if this ever happens, act quickly.

To set up and enable notifications

1. go to “Account” upper right hand corner

2. in the drop down menu to “Account Settings”

3. in the main menu go to “Account Security”

4. click “Yes” next to “Would you like to receive notifications from new devices”

5. the same can be done with text messages if you have your mobile plugged into Facebook. But don’t have your mobile displayed on your page publically.

6. Log out then log back in and it will ask you to identify the computer.

I did this on 2 PCs and a phone. It didn’t ask me to identify the phone, but it did send me an email:

Your Facebook account was accessed using Facebook (Today at 8:36am).

If this happened without your permission, please change your password immediately.

If this was an authorized login, please ignore this email.

To change your password:

1. Log in to your Facebook account.
2. Click the Account tab at the top of the screen and select “Account Settings” from the drop-down menu.
3. Scroll to the Password section of the Account Settings page.
4. Click the “change” link on the right and follow the instructions.

Thanks,
The Facebook Team

Hey Facebook, after 400 million users you are just getting around to this? It’s a start.

Invest in Intelius identity theft protection and prevention. Not all forms of identity theft can be prevented, but identity theft protection services can dramatically reduce your risk. (Disclosures)

Robert Siciliano Identity Theft Speaker discussing Facebook Hackers on CNN.