|
E-mail security & identity theft are topics discussed more and more in recent times. As easy as it is for anyone to access information on the Internet within seconds of needing it, also opens the door for those who want to access our information! Whether shoplifters at our stores, burglars at our warehouses, or call center credit card theft, email and identity theft is pervasive.
Email compliance & security trends facts show:
· More than 75% of corporate intellectual property is stored in email
· The average user sends 34 emails and receives 99 per day
· Spam accounted for more than 75% of all email sent in the first 6 months of 2005
· 48% of companies have an email archiving solution, compared to 25% a year ago
· 33% of North American companies regularly audit outbound email content
10 steps to ensuring email is secure, available and compliant with government regulations:
1. Email systems must be protected against intentional or inadvertent attack and disruption. Similarly, email users are protected against threats and disruption from the Internet, such as spam and viruses.
2. Data to and from customers, vendors, and partners must be free of inappropriate content.
3. The network must be protected against exposure to virus and worm infection that spread throughout end-user systems and internal servers.
4. The company must be protected against inadvertent or intentional transfer to unauthorized persons and does not encroach on privacy restrictions of SS#’s, credit information or medical records, etc.
5. End-user systems are not compromised or taken offline by email-borne attacks.
6. Ensure legitimate email is available and accessible, amid the volumes of spam and other unwanted content.
7. Email is preserved for long-term retention based upon external regulations or internal company policies.
8. End-users have seamless access to information in email – whether the information resides in current email systems or in long-term archives.
9. Approved end users and legal personnel can easily and securely search through historical email and attachments.
10. Organizations can supervise employee communications for compliance with internal or external policies.
Email also lends itself to not only viruses and the theft of confidential and important company information, but individual and personal information as well. Identity theft protection is now be touted by major credit card companies as well as all banking institutions. Through email the would-be identity thief can use a process called “phishing”.
Phishing occurs in the form of an email and is cleverly disguised as being from a known institution or agency to ensure the recipient will open the mail. The email will most likely warn of some serious problem that requires immediate attention and often times the mail recipient is directed to a phony website. In the phishing scam critical information such as social security, account numbers, passwords and financial information are requested for update. Providing such personal information almost certainly ensures identity theft!
Identity Theft Statistics:
In a 2004 survey by Javelin Strategy & Research, when victims of identity theft were asked how their personal information was obtained...
· 28.8% said they lost or had stolen their wallet, checkbook or credit card.
· 11.4% said friends, acquaintances or relatives had access to it.
· 8.0% said their mail was stolen
How to Protect Yourself from Identity Theft
The following tips can help lower your risk of becoming a victim of identity theft.
· Protect your Social Security number. Don’t carry your Social Security card or other cards that show your SSN. Read: Your Social Security Number: Controlling the Key to Identity Theft
www.ssa.gov/oig/executive_operations/factsheet1.htm
· Check your bills and bank statements. Open your credit card bills and bank statements right away. Check carefully for any unauthorized charges or withdrawals and report them immediately. Call if bills don’t arrive on time. It may mean that someone has changed contact information to hide fraudulent charges.
· Check your credit reports. Review your credit report at least once a year. Check for changed addresses and fraudulent charges.
· Stop pre-approved credit offers. Pre-approved credit card offers are a target for identity thieves who steal your mail. Have your name removed from credit bureau marketing lists. Call toll-free 888-5OPTOUT (888-567-8688).
· Ask questions. Ask questions whenever you are asked for personal information that seems inappropriate for the transaction. Ask how the information will be used and if it will be shared. Ask how it will be protected. If you’re not satisfied with the answers, don’t give your personal information.
· Protect your computer. Protect personal information on your computer by following good security practices.
o Use strong, non-easily guessed passwords.
o Use firewall, anti-virus, and anti-spyware software that you update regularly.
o Download software only from sites you know and trust and only after reading all the terms and conditions.
o Don’t click on links in pop-up windows or in spam e-mail.
· Use caution on the Web. When shopping online, check out a Web site before entering your credit card number or other personal information. Read the privacy policy and take opportunities to opt out of information sharing. Only enter personal information on secure Web pages that encrypt your data in transit. You can often tell if a page is secure if "https" is in URL or if there is a padlock icon on the browser window.
Resources
The following links provide detailed information related to identity theft:
Social Security Administration
SSA Fraud Hotline: 800-269-0271 www.ssa.gov/
If you are the victim of a stolen Social Security number, the SSA can provide information on how to report the fraudulent use of your number and how to correct your earnings record. We encourage you to contact the Fraud Hotline immediately once you suspect identity theft. The website also provides tips on using and securing your Social Security number. Visit the SSA website for advice on keeping your number safe.
ID Theft Clearinghouse
1-877-ID-THEFT (1-877-438-4338)
Call the ID Theft Clearinghouse toll free at to report identity theft. Counselors will take your complaint and advise you how to deal with the credit-related problems that could result from identity theft.
Local Law Enforcement
It is important that you report identity theft to your local police department as soon as you become aware that you are a victim. Get a copy of the police report which will assist you when notifying creditors, credit reporting agencies and if necessary, the Social Security Administration (SSA).
· Department of Justice
www.usdoj.gov/criminal/fraud/idtheft.html
· Social Security Administration www.ssa.gov/oig/executive_operations/factsheet1.htm
· National Fraud Information Center Hotline: 800-876-7060
· Identity Theft Resource Center: 858-693-7935
Due to our vast technological society Email security and personal privacy will remain issues for quite some time. For now it’s best to employ preventative measures. For help with Web security and all your consulting needs think Navesink.
References:
1. www.returnexchange.com --- identity theft
2. Email security – Symantec; Forester Research
3. Federal Bank and Credit Union regulatory agencies:
a. Board of Governors of the Federal Reserve System
b. Federal Deposit Insurance Corporation
c. National Credit Union Administration
d. Office of the Comptroller of the Currency
e. Office of Thrift Supervision
4. Equifax, Experian & TransUnion
5. References embedded within the article
|
Introduction
