While hurricane season has not yet officially kicked off, this has not stopped Hurricane Earl, a category 4 storm that is barreling right towards the North Carolina coast as we write this post. As a result hurricane and tropical storm warnings and watches are in effect along the Mid-Atlantic coast and as far north as Massachusetts, and evacuations have already started in areas of the East Coast.
While many of the evacuators may have taken steps to protect their valuables, it is uncertain at this time as to what steps they have taken to avoid becoming victims of identity theft — which can happen very easily during a hurricane evacuation.
Laura D’Alisera, a mitigation and recovery planner with the city of Jacksonville Emergency Preparedness Division, Jacksonville Fire and Rescue Department, recently told TMCNet that: “Identity theft is a reality,” said D’Alisera. “Safeguard your personal information as you would any other precious valuables. If you are evacuating, remember to stop mail and newspaper deliveries, which might signal you are away from your property.”
In addition, those who are evacuating should take extra precautions to safeguard their computers, which often hold important financial and medical information. It is not uncommon for criminals to hide in the shadows and stay behind and try to rob the homes of those who have evacuated.
Of course, personal safety is paramount in an evacuation situation, but we urge everyone who is packing up and heading towards the mainland to take extra precautions.
It is not very often when we bestow the highly acclaimed “Best Person of the Week” moniker to a gangsta rapper, or to any entertainer for that matter. But, we we stumbled upon a breaking story about rapper Snoop Dog teaming up with Norton to spread the word about identity theft and cyber crime, we had to make a break from the usual editorial mode.
So, basically, superstar rapper Snoop Dogg and Norton are encouraging Snoop fans, rap enthusiasts and everyone who wants to take a stand against cybercrime to enter the “Hack is Wack” cybercrime rap video contest. The contest, which runs through Sept. 30, 2010, asks participants to create and upload a two-minute rap video at www.HackIsWack.com showing off their lyrical skills on the subject of cybercrime. Entries can rap about topics including hacking, identity theft, computer viruses, and why it’s important to protect yourself from online crime.
Snoop Dog is taking on this laudable effort because he’s had to deal with hackers who have set up fake websites using his name, stolen his music and swiped his credit card information.
We fully applaud Snoop Dog’s effort to raise awareness about identity theft and cyber crime. When celebrities use their status and influence for the great good, well, it’s all good. And, for that Snoop Dog, congratulations, you are the “Best Person of the Week.”
Let’s face it. Most of us like nice things…dream of owning that big house, perhaps a nice sports car, or wish we could make that 3-month long European summer jaunt a reality. It’s all good. Well, what’s to stop a criminal from dreaming big as well? Nothing actually. And one criminal actually tried to live big off of other people’s identities.
Iguosade Osahon, a 28-year-old Nigerian-born student, pleaded not guilty last week to charges that he swiped the identities of 750 victims and used the $500,000 he stole with the data to buy Rolex watches, Louis Vuitton bags and jewelry at Tiffany & Co.
According to the NY Daily News, Osahon stole his victim’s personal info – including that of a dozen Manhattan residents by trolling online data traffickers for personal information – names, birth dates and social security numbers, prosecutors said. He then went to Experian and TransUnion, and ordered credit reports, which are readily available with the personal data.
Well, having good taste is not a crime. But, stealing the identities of 750 people is absolutely a crime. So, Mr. Osahon, congratulation, you are this week’s “Worst Person.” We find your high-end tastes mildly entertaining, but the reality is that you are a criminal and you will be serving time.
Welcome to the Monday Morning Kick Off post from the ITAC blog. As our every faithful readers know, we aim to provide the most comprehensive compilation of identity theft, data breach and cyber security stories you need to start the work week. Did you know that 500 million sensitive records have been breached in the past 5 years? Neither did we, and as shocking as it may be, it is not too surprising. Read about this and much more in our kick off post for the week of August 30. Happy Monday.
500 Million Sensitive Records Breached Since 2005
Employees losing laptop computers, hackers downloading credit card numbers and sensitive personal data accidentally exposed online — the Chronology of Data Breaches shows hundreds of ways that the personal information of consumers is lost, stolen or exposed. The Chronology of Data Breaches, a project of the Privacy Rights Clearinghouse since 2005, lists incidents involving breached consumer information, such as personal medical records, credit card numbers and Social Security numbers. The most recent total, published August 24, 2010, is a wake-up call to consumers who think identity theft can’t happen to them. Read the full California Progress Report post here.
Bad Flash Drive Caused Worst U.S. Military Breach
A malware-laden flash drive inserted in a laptop at a U.S. military base in the Middle East in 2008 led to the “most significant breach of” the nation’s military computers ever, according to a new magazine article by a top defense official. The malware uploaded itself to the U.S. Central Command network and spread undetected on classified and unclassified computers creating a “digital beachhead, from which data could be transferred to servers under foreign control,” William J. Lynn III, U.S. deputy secretary of defense, wrote in his essay in the September/October issue of Foreign Affairs. Read the full CNET story here.
Closing The Cybersecurity Gap In Government
Across the federal government, agencies are grappling with a shortage of cybersecurity pros who have the skills to protect their computers and networks from relentless, and increasingly dangerous, forms of attack. The Department of Homeland Security and the Air Force received authority to expedite the hiring of almost 1,700 cybersecurity pros over the next two years, but fast-track hiring is a stopgap solution. The long-term answer requires new training programs and better ways of attracting and retaining employees with the sought-after skills. At a recent cybersecurity workforce conference at the National Institute for Standards and Technology’s offices in Gaithersburg, Md., chief information security officers and other government IT managers identified a range of related issues: a confusing morass of certifications; HR processes that identify candidates based on buzzwords, not bona fide experience; drawn-out hiring and security-clearance processes; federal mandates that push unqualified people to the front of the hiring line; and competition with the private sector for job candidates. Read the full InformationWeek post here.
U.S. Cyber-security Leads Week in Security News
U.S. cyber-security was in the spotlight this past week when a senior Pentagon official confirmed an infected flash drive caused the “most significant breach of U.S. military computers ever.” Deputy Secretary of Defense William Lynn III discussed the 2008 incident in an article for Foreign Affairs magazine. “That code spread undetected on both classified and unclassified systems, establishing what amounted to a digital beachhead, from which data could be transferred to servers under foreign control,” Lynn writes. “It was a network administrator’s worst fear: a rogue program operating silently, poised to deliver operational plans into the hands of an unknown adversary.” Read the full eWeek post here.
Data Breach at U-Kentucky
The University of Kentucky is notifying 2,207 individuals following the theft of a laptop with information from a newborn screening program. The password-protected, unencrypted laptop was stored in a locked, private room. Data on the device included patient and mother names, medical record numbers, date of birth, diagnosis, and some Social Security numbers of mothers. The laptop was stolen between June 18 and June 21. Following investigations, the University posted a public notice on its UKHealthCare web site on Aug. 19. Read the full Health Data Management story here.
On September 22-24, the Online Trust Alliance is hosting the Online Trust & Cybersecurity Forum at Georgetown University in Washington DC. The event is designed to bring together worldwide leaders specializing in marketing, advertising, law enforcement, public policy, privacy and cybersecurity. Focusing on the theme of “Megacommunities”; the event will feature sessions that focus on how governments, business and NGOs need to work together, to develop innovative and trusted online services. In addition, if you are an ITAC member you can get 50% off on your registration to attend the event. Please use this promotional code when registering: ITAC50.
Following is an exclusive podcast with Craig Speizle, Executive Director and Founder of Online Trust Alliance who discusses this event and other cybersecurity trends.
In many ways, both Twitter and popular search items are a reflection of what we are collectively thinking and feeling. These new digital measuring tools provide sociological insights into our fears and passions. So, being a blog that has extensively covered identity theft, we had to make note of a story from TheStreet.com about how “identity theft” has become hot search item on Yahoo!
So, what does this mean? Identity theft is not necessarily a positive search term – as opposed to Jessica Alba, Jersey Shore, and other countless mind-numbing popular culture searches. What it tells us is that people are scared. Identity theft is a real issue and with at least 9 million Americans have their identities stolen each year,
According to the U.S. Census Bureau, the U.S. population is now at a whopping 310 million (approx). Nine million folks becoming victims may seems like a relatively small stat. But, it is not. If 9 million people become victims each year, then in 10 years that number reaches almost 100 million. That is almost on-third of the entire U.S. population. This also means that more than 33 percent of your neighbors will become identity theft victims within 10 years. Scary? Yes.
The bottom-line is that we should be protecting ourselves more. Consumers need to take action, and the Identity Theft Assistance Center has offered a number of tips on how to best use social networks, and how to protect your personal data.
As we have always said, the bad guys are getting smarter and more nimble. We, as consumers, need to stay one step ahead.
While we admit that this is not the worst crime ever, it certainly could be categorized as being one of the dumbest identity theft crimes. As such, we are shifting this week’s “Worst Person” post to being the “Dumbest Person” post. So, what did this not-so-bright criminal do you ask? He stole a prosecutor’s purse from a court room. And, get this, while while at a hearing where his friend received a 3-year sentence for identity theft (irony anyone?).
That is correct. Derrick Boyd, 45, allegedly stole from the courtroom a Coach purse that belonged to a top felony prosecutors — then used her identity to buy items worth more than $1,100. In the trial that began this week, Kathy Patton, then a felony courtroom supervisor and now chief of the state’s attorney’s felony division, testified she left her brown leather purse under a table prosecutors use in a fourth-floor courtroom on Nov. 24, 2008, before stepping outside to speak with a police officer. When she came back, the purse was gone.
What Boyd did not realize was that security cameras caught him red-handed. Man, did you not think that there would be security cameras in the courtroom?
Derrick Boyd, you are clearly not the brightest bulb on the tree. And, congratulations, you are officially the first ever “Dumbest Person” in identity theft.
The devastation of becoming an identity theft victim can run very deep. So deep that it can have a profoundly negative impact on a victim’s family. This was brought to light by a recent AP story about an Illinois trucker named Earl Robert Hood who had his identity stolen, and his commercial driver’s license suspended for four DUIs he did not commit.
Fortunately, the criminal named Danny Arnold who stole his identity — and went on a drunk driving spree — was convicted last week. But the fallout from this experience still remains for Hood, who told the AP that: “It’s not just me that it affected; it affected all four of my children, too. Because for two years, they didn’t have Christmas.”
Beyond the emotional impact that this has had on Hood’s family, the financial burdens still remain. He said he’s fallen behind on his house payments and lost his Dodge Durango and furniture he was paying for in installments. On the bright side, Hood got back his commercial driver’s license early this year. Though he has had trouble finding work, even though prosecutors gave him a letter to show prospective employers explaining he was the victim of identity theft.
We would like to applaud the AP for running this story and shining a light on just how devastating identity theft can be for a victim and his family. We wish Earl the best of luck as he works hard to rebuild his life.
Welcome to the Monday Morning News Kick Off post from the ITAC blog. Once again it is Monday, and once again, it is time to get back into the work groove. Well, the editorial staff at the ITAC blog was kind enough to pull together all the key identity theft, cyber security and data breach stories you need to start your week on the right foot. And, this week, we even linked to a story from E! News (that is a first) – we can’t help but cover a story about a pseudo-celebrity being charged for identity theft.
Inside the Russian Cyber-Underground
When people think of cyber-crime, the typical image being pushed today is that of highly organized criminal operations. New research, however, suggests the underbelly of cyber-space may be less mafia-like than some think. In an effort to improve the level of understanding of today’s black hats, security researchers Fyodor Yarochkin and “The Grugq” have spent several months looking at Russian hacker forums. “It is an ongoing project that we started about 18 months ago,” Grugq told eWEEK. “Originally it started when Fyodor investigated some service offerings from Russian hacker forums for a specific project that I was working on. It turned out to be extremely interesting and amusing, so we discussed doing more long-term monitoring on the forums. It grew from there into what is now a continuous monitoring program.”
Calif. Breach Notification Bill Going Back to the Governor
A California proposed bill that would update the state’s pioneering data breach notification law is heading back to the governor’s desk. The bill from Democratic Sen. Joe Simitian is a reintroduction of the same measure that he proposed last year, but which was ultimately vetoed by Gov. Arnold Schwarzenegger. The current legislation, known as SB-1166, has been approved by the California Legislature, Simitian announced Thursday. Read the full SC Magazine article here.
Google Street View Opt Out Goes Live in Germany While Spain Investigates
German citizens in several cities can now request that photos of their homes or businesses be blurred to prevent them being identified in Google’s Street View photo service, as part of a deal between that country’s privacy authorities and the search company prior to the launch of Street View in Germany. Anyone who wants a building blurred has to fill out a Google form — which has a message from the company encouraging them not to do so — and then respond to a verification email. Read the full GigaOm post here.
Camp Trains Future Cybersecurity Experts
In a classroom in Dover, Del., 20 university students — all men — are intently typing at long conference tables. The computer screens are below the table, under dark glass, so no one can see what they’re doing. Makeshift cardboard barriers separate five different teams. It’s a game of capture the flag, 21st century style. Mike Ridenour, 24, and his team are hacking their way into a computer network to find so-called flags, or hidden pieces of data. Ridenour is using information he found on a social networking site to try to hijack the account of an IT administrator. Read the full NPR story here.
‘American Idol’ Chikezie Eze Pleads in ID Theft Case
Chikezie Eze is getting off easy. The former American Idol finalist has been sentenced to community service after copping to an identity theft charge. Eze was busted back in February for using a stolen credit card to score two bottles of cologne at the Beverly Hills Nieman Marcus store. Eze, 24, pleaded no contest today to the misdemeanor count in a plea deal with prosecutors. In turn, a second count of grand theft was dropped. According to the Los Angeles District Attorney’s Office, the airport screener-turned-aspiring singer, who placed 10th on the seventh season of the hit Fox talent show, was sentenced to three years’ probation in addition to the community labor. Read the full E! News Online post here.
Conn. Attorney General Investigates Yale Data Breach
Connecticut Attorney General Richard Blumenthal announced that his office is investigating a data breach linked to a reported theft by Yale Medical School of a laptop computer containing personal health information on as many as 1,000 people. According to a news release, Blumenthal’s office is investigating the breach’s causes and whether state or federal laws have been violated. “Yale Medical School is cooperating with my office—recognizing that it has a profound responsibility to safeguard sensitive health information and must be accountable to approximately 1,000 individuals whose information may be at risk,” Blumenthal said in the release. Read the full Modern Healthcare post here.
We came across a story that absolutely captured our attention. According to USA Today, Mexico’s sixth-largest city, Leon, is becoming a real-life version of the Tom Cruise movie “Minority Report,” which was based on a future – where everyone is tracked wherever they go. While this movie was intended to showcase a future that we hoped would not happen – it may not be that far off from reality.
The city of Leon has begun installing installing iris-scanning technology in the city of more than 1 million in Guanajuato state with the intention of creating the “most secure city in the world.” The first phase if iris scanners will be used by law enforcement and at security checkpoints. Here’s where it gets scary. Then the iris scanners will “identify humans in motion and at a distance” and will be installed in malls, pharmacies, mass transit, medical centers and banks.
The firm responsible for developing this technology is Global Rainmakers and here’s what they told Fast Company:
“In the future, whether it’s entering your home, opening your car, entering your workspace, getting a pharmacy prescription refilled, or having your medical records pulled up, everything will come off that unique key that is your iris,” says Jeff Carter, CDO of Global Rainmakers. “Every person, place, and thing on this planet will be connected [to the iris system] within the next 10 years.”
We all wonder if this technology will ever make it to the U.S. One never knows…but we can be assured that privacy rights advocates will be up-in-arms about this one. Happy Friday!
.gif)
Facebook
LinkedIn
Twitter