Slashdot Mirror

← Back to Stories (view on slashdot.org)

Big ID Thefts Not To Be Feared

Posted by Zonk on from the i-would-still-be-nervous dept.

goldseries writes "A new study released by ID Analytics says that only about 1 out of every 1000 stolen identities are actually used, due to the amount of time it takes to use the identity, limiting a single thief to 250 identities a year. The likelihood that your information will be used increases drastically when the size a the theft is small. So size does not matter, in identity thefts at least; the identity thefts you need to worry about aren't the big ones heard on the news but the small unreported ones." From the article: "While the findings will provide some comfort to consumers whose credit cards are lost or lifted, or whose sensitive information is compromised when, for instance, a laptop is stolen, as recently happened at Chicago-based Boeing, some of ID Analytics' suggestions could be controversial. The company suggests, for instance, that companies shouldn't always notify consumers of data breaches because they may be unnecessarily alarming people who stand little chance of being victimized."

8 of 161 comments (clear)

  1. Of Course You Should Inform Them! by SeanDuggan · · Score: 4, Interesting

    Unless the companies who lost the information are willing to be liable for any and all damages caused by the identity theft, not limitted to damaged credit ratings, credibility damage, and all monetary losses, they should definitely inform consumers. That would be like not informing people of airplane safety measures "because very few planes actually crash."

    --
    This sig has absolutely no significance and serves only to take up screen space and waste the time of the reader.
    1. Re:Of Course You Should Inform Them! by timeOday · · Score: 4, Insightful
      Unless the companies who lost the information are willing to be liable for any and all damages caused by the identity theft, not limitted to damaged credit ratings, credibility damage, and all monetary losses, they should definitely inform consumers.
      I'll go you one further, I think the law should *compel* them fess up. Most of the interest over identity theft has resulted from the California law which does just that. As a result, we started to hear about things that before would have been secret, and it has really blown the issue wide open. For markets to work well, people must have access to relevant information, such as which companies have bad track records for infosec.
  2. Nice whitewash... by Godeke · · Score: 5, Insightful

    So those of you that *actually* suffer identity theft... well, you are just a small, inconsequential number of people compared to those who got lucky. Since you are so outnumbered we can safely continue to fail to safeguard your data, and we will use these results to claim it is your fault, not ours, that you suffered identity theft. After all, you are only one in a thousand, right? Heck, losing a tenth of a percentage of our customers won't hurt *us* that much... and all this notification stuff is hurting us *much* more than that.

    --
    Sig under construction since 1998.
    1. Re:Nice whitewash... by Godeke · · Score: 4, Informative

      Having known those who suffered identity theft, I don't need an article to imply this. It takes five years before you can even *start* to breath easier: the first two are full of collection agencies attempting to recover on the "bad debt" in your name. Unlike other businesses who have to stop calling if you ask, collection agencies are exempt from do not call requirements. Attempting to purchase anything major becomes impossible because the three major companies still report your credit as bad, but "contested". They *don't* strike the charges completely off your record. Meanwhile, the company that fumbled the ball claims "we have done what we can" by sending a letter to the credit companies saying that the charger "may" be related to identity theft.

      You end up carrying police reports and your own copy of the credit report, annotated to indicate the problem when trying to buy a car. But it doesn't help because the lacky who is the "loan officer" for the dealership has no real power to make a decision. You receive "mechanics leans" on your property and have to fight repeatedly to not lose ownership of perperty you already owned because of state laws (at least here in Arizona) that allow a mechanic to force the sale of property to pay for "services rendered". Even if the services were rendered to a crook instead of you, they are not barred from trying until you sue them into submission.

      All while the company that screwed up claims that they are faultless because they sent three letters out, and that perhaps "there are other issues here".

      --
      Sig under construction since 1998.
  3. Not a big deal??? by gasmonso · · Score: 4, Insightful

    Tell that to the thousands of people who had their lives turned upside down. The effects of identity theft can be devastating and long lasting. If your data is stolen, you have every right to know about it. This is just an attempt for companies to downplay their incompetence and lack of security. I'd like to see how they would react if their information was stolen.

    gasmonso http://religiousfreaks.com/
  4. I just got a 20 page background check fax in error by gelfling · · Score: 5, Insightful

    My home fax machine is one digit off from that of an headhunter. Two nights ago I got a 20 page fax detailing the background check results for a candidate including:

    Name
    SSN
    Address
    Bank account numbers
    Credit score
    Arrest/conviction records: Federal State Local
    Urinanalysis results

    There was never a I never received a followup fax to check up on it - clearly they didn't have my phone number so they couldn't speak to me, but they already had a record of the fax number.

    And if that wasn't dumb consider this.

    My home phone number is one digit off from the States depart of Revenue unclaimed funds division. I routinely get calls from people asking "Is this the money line???" I get people leaving their name, address, SSN and phone number on my voice mail, unasked and please remember that the outbound message states the phone number and nothing else to indicate what the number is for. I get calls from people in state, out of state, out of the country, from prisons from other branches of the government.

    Security is bullshit as long as people act retarded.

  5. What about the people in the call centers? by rolypolyman · · Score: 4, Insightful

    What concerns me lately is some of the faceless/nameless droids working in the call centers. After we called our Texas power company to transfer our service to a new address, we found out some time later that they added on another house in Dallas, as part of the same work order. Assigned my wife's social security number to the account, too. It's not just the databases that concern me, but the trustworthiness of the people taking my call.

  6. Re:I'm not sure I get it by timeOday · · Score: 4, Insightful
    I'm not sure why anybody should be notified at all. Customers knew the risks when they signed up for a credit card, if they didn't know the risks they could have found out. And now nobody has an excuse for not knowing the risks involved.
    You are the classic example of somebody who berates individuals for not taking responsibility (for things they have very little control over), while at the same time giving companies carte blanche for utterly reckless irresponsibility. It's bizarre.