Slashdot Mirror

← Back to Stories (view on slashdot.org)

Ask Slashdot: Dealing With Ongoing Suspected Identity Theft?

Posted by timothy on from the at-least-they're-not-buying-indulgences dept.

njnnja writes: My wife receives periodic emails (about once every other month) from a cable company that is not in our service area that purport to confirm that she has made changes to her account, such as re-setting her password. Her email address is not a common one so we do not believe that it is someone accidentally using it; rather, we believe that an identity thief is subscribing to cable services intentionally using her name and email address.

Whenever we have gotten an email we have called the cable company, been forwarded to their security department, and we are assured that her social security number is not being used and that they will clear her name and email address out of their system. Yet a few weeks later we get another email. Our concern is that when the cable company goes after my wife for the unpaid balance on the account I am sure that neither they nor a collection agency will care much that it's not her social security number — it's her name and they will demand she pays.

We have a very strong password (long, completely random string of chars, nums, and symbols) and 2-factor authentication on the email account so we are fairly certain that no one is currently hacking into her email (at least, it's not worth it for however many thousands of dollars they can actually steal off this scam), But we think that the cable company should be doing more to not be complicit in an attempted identity theft. We have made it clear that we don't live in the area they cover so we should not have an account, but the fact that they keep setting up an account in her name means that they just don't care. Which is fine; I don't expect a cable company to care that they inconvenience us, but I would like to know if there is any way that we can make them care about it (liability, regulations, etc). I know YANAL but does anyone have any ideas about how to handle this? Thanks. Have a question for Slashdot's readers? Take a look at other recent questions first to see if someone else has had a similar question. And if not, ask away! The more details and context you include, the more likely your question will be selected.

15 of 213 comments (clear)

  1. Is it addressed to her? by OverlordQ · · Score: 5, Insightful

    Is it addressed to her name or her email address? If just the latter, than who cares, add it to the spam filter. Or recover the login information and unsubscribe the person from all their services.

    --
    Your hair look like poop, Bob! - Wanker.
    1. Re:Is it addressed to her? by Anonymous Coward · · Score: 5, Interesting

      I did similar. One day I got a metric crapton of emails letting me know that my mortgage had been pre-approved. Only problem... I never applied for a mortgage. I found that someone had used my email on a brokerage web site to get a ton of quotes. now my name is unusual so I doubt someone picked my email at random.

      The brokerage house would not help me saying I needed a subpoena for more information. But I am concerned about identity theft so I had "my" password reset (I am probably guilty of some hacking crime now). I found some personal information there and did some digging.

      I got an address and did a phone number lookup. A lady answers. After convincing her that I am not a scammer, I find out her son has the same name as me and this guy with the same name used his name dot gmail dot com as a false email account just to set up this brokerage account. So no identity theft, but about 60 minutes of me doing detective work and a story that I get to tell.

    2. Re:Is it addressed to her? by Fwipp · · Score: 5, Interesting

      Every so often, I get email intended for some 40+ year-old guy who has [myemailaddress]@yahoo.com (instead of at gmail). Most of it is spam or websites that he's trying to sign up for, but occasionally it's a human being on the other end.

      The first time this happened, it was information about his ongoing domestic violence court case (legal documents, copy of police report, etc). I notified them that they had the wrong address, and they proceeded to email me three more times with more information. Eventually I yelled at them enough and they corrected it.

      The second time this happened was a few years later - it was some tiny ~20 year old girl who desperately wanted to convince him to get back with her (by sending him nudes). I can't say that I didn't take a little joy in telling her to check out his domestic violence record. I got a really angry email from him a couple days later (subject line: FUCKING IDIOT), so I think she must have heeded my advice (and dodged a bullet).

      It was kind of wild.

  2. Never ascribe to malice... by Anonymous Coward · · Score: 5, Insightful

    That which can be explained by a cable company's incompetence.

    1. Re:Never ascribe to malice... by aaron4801 · · Score: 5, Informative

      Bingo
      Wasn't it just yesterday TWC was fined over $200k for not taking a person off their call list when they said they were (mistaken identity)? Including over 70 calls AFTER the lawsuit was filed.
      Cable companies are the scum of the earth. Just because they say they've changed the wife's details in the system doesn't mean jack shit.

  3. State Regulators by GKlesczewski · · Score: 5, Insightful

    Your next stop at this point should be the regulators for the state where the cable company is operating. File a complaint with them. You may also want to file a complaint with your own state's regulators.

    Most public utilities, cable, electric, telephone are hypersensitive to complaints filed with the regulators, even if it doesn't show publicly, because it affects the rates they can charge.

    Good luck!

  4. There's something you have to ask yourself. by Minwee · · Score: 5, Insightful

    Which is easier to believe: That a sophisticated criminal organization is involved in an ongoing plot to usurp your wife's identity and destroy her credit, or that the local cable company is run by a a bunch of half-wits who couldn't figure out how to cancel an account or correct false customer information if their jobs depended on it?

    Or, perhaps that Slashdot is a good source for legal advice?

  5. Simplest explanantion is easiest by Nidi62 · · Score: 5, Insightful

    Her email address is not a common one so we do not believe that it is someone accidentally using it; rather, we believe that an identity thief is subscribing to cable services intentionally using her name and email address.

    Or someone just happened to use a similar email address and misstyped theirs. Are you actually getting emails regarding unpaid bills for the cable company, or is it just simple account-type stuff like changing passwords? Or charges attempting to be made against any of your credit cards? If you are getting emails once a month, it sounds to me like someone put in the wrong email and when they go to pay it online they change the password because they can't log in. And even if there was an unpaid balance, the first thing they would do is send the bills to the physical address they have on file or to the holder of the card that was used to intially set up service, which is also where any collections would likely start.

    Hell, 10 years ago I used to get recordings on my phone that someone had overdue movies at Blockbuster. I didn't immediately assume someone was using my identity to steal movies from them in some criminal enterprise, I just figured they had put in a wrong number.

    --
    The only thing necessary for evil to triumph is for it to be pitted against a slightly greater evil
    1. Re:Simplest explanantion is easiest by Lumpy · · Score: 5, Funny

      I get other people's Gmail all the time. I was one of the first to get a gmail account so I have myname@gmail.com

      I have received job offers, travel itineraries, etc...

      My favorite was when I received a job offer letter to be a tennis instructor at a very rich resort.

      I replied back with...

      "That will be great!, can you tell me what kind of bat and helmet you require for teaching people tennis? Also I will need a bucket of honey and a supply of bees."

      Sadly, they retracted the job offer.

      --
      Do not look at laser with remaining good eye.
  6. Musical Identities by StikyPad · · Score: 5, Funny

    This one is simple: steal someone else's identity. The last one left without an identity loses and we shun them.

    --
    https://www.eff.org/https-everywhere
  7. password recovery to defeat reverse identity theft by netsavior · · Score: 5, Interesting

    My wife has a common first and last name... her email address is her first name and last name @gmail... She gets everything from electric bills to HOME MORTGAGE CLOSING PAPERS for other people. When she emails back and explains that this is not that person's email address... the idiots become hostile and accuse her of being a hacker.
    Now any time she gets a bill for any service, her first step is to recover the password, then schedule service disconnect. Seems harsh, but it is the only way. She has dealt with this for years... Hell if she were malicious, she has the account balance, social security number, bank account numbers, credit history, and/or University staff login credentials for half a dozen people who have targeted her for "reverse identity theft." No matter how much she begs them to stop.


    Oh by the way... other woman who lives in NYC, 5 guys burgers emailed and said your order is ready for pick-up.... Maybe eating burgers and fries 6 times a week isn't the best for you though.

  8. Re:Can they bill your email address? by Luthair · · Score: 5, Interesting

    This aligns with my question, so he feels there is some malicious person doing identity theft.... except that for some reason they used his wifes real email address? An identity thief does everything they can to ensure the original person isn't aware that someone is using their identity, not use an address that goes directly to the original person.

  9. Re:My Wife Had This Too by Lumpy · · Score: 5, Informative

    I solved a situation like that by setting up an automated reply to send the bad comcast email to the email addresses of every single comcast executive. with the top line changed to "Why cant your people fix this?"

    It stopped within 2 weeks of the 4th email.

    --
    Do not look at laser with remaining good eye.
  10. Be pro-active by duckintheface · · Score: 5, Informative

    It's a good idea to contact the credit reporting agencies and place a security freeze on your accounts. That prevents anyone from taking out loans etc using your personal information. You can temporarily lift the freeze for a particular company if you need to allow a credit check for your own purposes.

    --
    "He took a duck in the face at 250 knots." -- William Gibson, Pattern Recognition
  11. Re:password recovery to defeat reverse identity th by Calibax · · Score: 5, Insightful

    My policy is to never respond to emails that I receive if they are intended for other people. Here's why.

    Back in 1998 I received an email intended for an attorney at a personal injury law firm. The firm's domain name is very similar to mine, the only difference was that they have a hyphen in their domain name and I don't. Being a good guy, I replied to the sender saying he had the wrong email address. That was a serious mistake.

    I was accused by their office manager of hacking their emails. I told her that I don't control who sends email to my domain. She said I shouldn't open email not addressed to me, and the firm reported me to the US Attorney for their location for violating attorney/client privacy. Back then, the name, address and phone number of domain owners were always public so it was easy to discover my details.

    The US Attorney passed the information to the FBI and I received a visit from two agents who were polite but computer clueless and somewhat concerned about what had happened. As I said, this was 1998 and the whole concept of malware and hacking was somewhat new and esoteric. I explained to the agents in detail what had happened, showed them my email setup and explained how email works. They thanked me and left saying they would be in touch. I haven't heard a word from either of them or anyone else about the complaint since.

    However, this experience did change my attitude to incorrectly addressed email. I've received several emails for this law firm since then and I ignored them. These days a complaint of this nature would be ignored but why take the chance.