MyCRA Specialist Credit Repair Lawyers

Tag: identity fraud

1.2 million Australians per year fall victim to fraud

The Australian Bureau of Statistics has released their Personal Fraud Survey, which was conducted over 12 months in 2010 and 2011. The results are interesting, with some noteworthy trends on identity fraud, identity theft and scams coming out of the figures from this survey. One of particular significance was that almost half of the identity theft victims had no idea how their personal details were obtained.

By Graham Doessel, Founder and CEO of MyCRA Credit Rating Repairs and www.fixmybadcredit.com.au.

This is the second Fraud Survey of its kind for the ABS, with the previous Personal Fraud Survey conducted in 2007.

The ABS Personal Fraud survey shows a total of 1.2 million fraud victims in Australia (aged 15 years and over) were a victim of at least one incident victims of personal fraud in the 12 months prior to interview in 2010-11.

“This equates to a national victimisation rate for personal fraud of 6.7% of the population aged 15 years and over. This is an increase from the 806,000 victims of personal fraud in 2007 (5.0%),” The ABS reports.

“The total financial loss recorded from this fraud in Australia amounted to $1.4 billion. Three in five victims of personal fraud (60% or 713,600 persons) lost money, an average of $2,000 per victim who incurred a financial loss. The median loss for personal fraud was $300,” The ABS reports.

In the 12 months prior to the survey, an estimated 702,100 Australians were victims of identity fraud, or 4.0% of the population aged 15 years and over. This is an increase from the 499,500 victims of identity fraud in 2007 (3.1%).

Credit card fraud was most common, with an estimated 662,300 Australians aged 15 years and over or 3.7% of the population reporting incidents of it.

In the 12 months prior to survey in 2010-11, an estimated 44,700 Australians were victims of identity theft, or 0.3% of the population aged 15 years and over.

According to the survey results, an estimated 6.4 million Australians were exposed to a scam in the 12 months prior to interview, or just over a third of the population. An estimated 514,500 Australians aged 15 years and over (2.9%) responded to a scam in the 12 months prior to survey.

A little more on identity theft…

It has become most likely that should people fall victim to identity theft, that their personal information is used to gain credit or finance in some way. And frighteningly, nearly half of all these victims don’t know how their personal information was obtained. Many (12%) don’t know about identity theft until they perform a credit check or one is performed on them for some reason.

“One in five (19.9%) victims of identity theft indicated having their personal information used for applications for a loan or to gain credit in the five years prior to interview in 2010-11, making it the most common way that personal information was used.

Just under a third (31.8%) of identity theft victims discovered that they had been a victim of identity theft via a notification or query from a government agency, 15.1% through a bill from a business or company, and 12.0% through a credit check.

The most common known way that victims’ personal details were obtained in the commission of identity theft was in person (28.3% of victims), followed by email/internet (10.0%), although nearly half of all victims (44.0%) reported that they did not know how their personal details were obtained,” the ABS reports.

Those people in the 25-55 age group were most likely to be victims of identity theft. Those who were gainfully employed were twice as likely to become identity theft victims, as were those earning over $2,000 a week.

How can people go all the way to the credit check before realising they are victims of identity theft?

It depends on the fraud type. In cases of out and out identity theft, fraudsters have secretly gained personal information in some way (the victim may not even be aware of where their personal details have been compromised). The fraudster gains enough information to go about making some form of duplicate identity, and then unbenownst to the victim, they apply for credit in the victim’s name.

In cases where the fraudster has been successful, the fallout can be a nightmare for the identity theft victim. Generally the victim is left with a series of overdue accounts on their credit file. These show as default listings or clearouts will stop the victim from being able to borrow for between 5 (defaults) and 7 (clearout) years.

But just like any other form of credit file inconsistency, it is up to the credit file holder to prove the inconsistency and in the case of the identity theft victim, that it wasn’t them that took out the credit in the first place. This could be really difficult for those people who can’t even prove where their personal information was stolen let alone how.

To find out more about identity theft, visit our identity theft fact page How to Prevent Identity Theft and Keep a Clean Credit Rating or visit the MyCRA website http://www.mycra.com.au/identity-theft/.

Image: Victor Habbick / FreeDigitalPhotos.net

23/04/2012
Job and employment scam: Identity theft revealed at Shock Entertainment

Music company Shock Entertainment’s new GM, Scot Crawford has revealed today he has been a victim of identity theft and has warned readers scammers are trying to steal personal information under the guise of employment for the company. We look at the details of this scam, how to recognise job and employment scams and how falling for them can lead to identity fraud and potentially a bad credit score for years to come.

By Graham Doessel, Founder and CEO of MyCRA Credit Repars and www.fixmybadcredit.com.au.

themusic.com.au reports:

Shock sent out a media release today alerting that despite a lot of changes in the music company recently, “the current emails circulating from newly appointed General Manager Scot Crawford offering $1500 a month for a few hours work a day is an unfortunate case of on-line identity theft.”

The emails are coming from a bogus gmail account – by an individual pretending to be the General Manager.

The emails read, “This is Scot Crawford from Shock Entertainment, you have recently bought an item from us. I am recruiting a few people, from our recent customers for a payment processing team in Australia. The average income is around $1500 per month. Drop me a line if you’re interested and available 1 – 2 hours per day.”

The offer seems – and is – too good to be true.

The emails were circulating over the weekend and Shock have advised that police have been informed about them.

Crawford said today, “It’s a pretty lousy situation to be in, but is being addressed by the police and we are expect a speedy resolution.”

How job and employment scams operate:

The ACCC’s SCAMWatch website warns against job and employment scams:

“Job and employment scams target people looking for a new job or a change of job. They often promise a lot of income (sometimes they even guarantee it) for not a lot of work.

You should be very careful of someone who uses spam email or ads posted in the street to employ people. They are often only interested in earning money from you!”

SCAMWatch encourage job seekers to do their homework before responding to an advertisement guaranteeing employment or a certain income:

“ask yourself why somebody would use spam emails to recruit people? Is the company reputable and well-known? Could the offer be part of a scam? Very few, if any, reputable businesses offer guaranteed jobs or income through spam emails. Any job offer you receive through a spam email is likely to be a scam. For other types of advertising, you should still be very careful.”

They also warn job hunters to do their homework on even seemingly legitimate job advertisements:

Find out what the job actually involves and what evidence they have to support their claim that you are guaranteed a certain level of income. You should check with your fair trading agency who might be able to help you decide if the offer is legitimate.”

Job and employment scams – how falling for them can damage your clear credit file:

When a person falls for a job and employment scam, they have generally answered a ‘job ad’ possibly giving over a resume containing a significant amount of personal information to fraudsters – including potentially the victim’s full name, date of birth, address and past employment history.

Personal information which could allow fraudsters to commit identity theft. There is no telling how much credit the fraudster could then take out in the victim’s name.

For any damage to a person’s credit rating, whether instigated by the credit file holder themselves through late payments or a bad credit score from identity fraud, recovering a clear credit file and fixing credit problems is never easy for the individual to undertake.

The identity theft victim’s clear credit file is even more difficult to restore, simply because there is the burden of proof. First the victim has to prove they didn’t initiate the credit themselves. This would require documentary evidence and Police reports. But the identity theft victim would be virtually banned from obtaining credit until they are able to wade through the mess that has been created for them on their credit report, and clear their good name. Until such time they are unable to take out a home loan, get a credit card or even take out a mobile phone plan. A bad credit score can be very debilitating on top of all the other dangers and costs associated with fraudsters committing identity theft.

If you have been a victim of a job and employment scam and suspect identity theft, it is important to contact Police immediately. It is also important to alert your financial institutions and even the credit reporting agencies so they can ‘flag’ your credit file and bank accounts and be alert to any suspicious activity.

If you find out your credit rating has been affected, get professional credit repair. You may do more harm than good to your case trying to fix credit problems without a good strong knowledge of credit reporting law and procedures.

Contact MyCRA Credit Repairs on 1300 667 218 or visit the main website www.mycra.com.au, we can review your credit report, help in negotiations with creditors and get you on your way to a clear credit file once again.

Image: Dan / FreeDigitalPhotos.net

14/02/2012
The dead not protected from identity theft

Even in grief identity theft can strike us and affect our credit file and the clear credit file of those we leave behind. Grieving relatives may need to protect themselves and their loved one’s good name against this fraud, following a recent spate of identity theft of deceased individuals.

By Graham Doessel, Founder and CEO of MyCRA Credit Repairs and www.fixmybadcredit.com.au.

There are so many things to think about when someone dies and it is very unfair that grieving relatives need to think about possible identity fraud on top of everything else, but the fact is it may be necessary to protect not only their memory, but the good credit file of the living.

Last year a Sydney court sentenced a man and a woman to two years jail for identity theft.

The Courier Mail ran details of the story in September last year, in which the court heard the couple “spent nine years trawling cemeteries across Australia collecting the details of dead people, with Queensland targets including a disabled man and a baby less than two days old.”

“The couple created fake “identity kits” using the details of the deceased, including bogus passports, Medicare cards, drivers’ licences and bank accounts, which they sold to criminals for up to $30,000 each”, the story said.

In October, The Australian ran a story ‘Backlog of births, death records prone to identity theft’, detailing the possible prevalence of these instances of ID Theft. It told of data processing backlogs at some government birth, deaths and marriages registries that have left the door open for fraudsters to assume the identities of dead Australians.

The fixing of the identity loophole had been delayed by a dispute with developer UXC, whose contract with the NSW Registry was terminated in 2009. The registry said it had received $2.9 million in damages as a result.

A new contract had now been negotiated with Objective Consulting for $11.4m, with the first release of a new registry due in June next year.

Queensland too is yet to digitise its birth, death and marriages records to enable automatic cross-checking between births and deaths data.

“The project is currently in the final stages of contract negotiation with digitisation currently scheduled to run from early 2012 to 2014,” a Queensland Births, Deaths and Marriages Registry spokeswoman said.

Queensland’s 2009-10 budget had allocated $20.8m for digitisation of records.

The spokeswoman said when digitised, its operators would be required to complete an electronic search of Queensland death records before releasing a birth certificate.

Software developer John Doolan, who has worked with birth, deaths and marriages registries across the Australian eastern seaboard for more than 20 years, said the enormous backlog in unmatched birth and death records was a headache.

“We are aware of cases of false identities that have been created and stolen,” said Mr Doolan, the chief executive of KE Software, which has different versions of its software operating in Queensland, NSW, Victoria and Tasmania.

The ability of a person involved in immigration fraud, tax evasion, social security rorts and even terrorism to obtain a legitimate birth certificate by using a dead person’s identity is still possible at these registries.

While states are rushing to digitise this process, relatives should be aware of how a deceased person’s personal information could be compromised, and act quickly to protect their credit file and good name in death.

– Relatives can start by obtaining several copies of their loved one’s death certificate, and providing one to each credit reporting agency in Australia. The credit reporting agency can then ‘flag’ the credit file so that no future credit is issued in that name.

– Also pay particular attention to how much information is given away in the obituary. As in life, in death, personal information is a valuable commodity. Restrict the publication of any details which could allow fraudsters to piece together details to create a false identity.

– It is also important to provide a death certificate to financial institutions and notify all other credit facilities of the death, particularly where joint accounts may be involved. This could prevent the other person attached to the joint account of the deceased having their clear credit file compromised by possible identity theft.

If fraudsters gain access to someone’s good name – living or dead they may be able to drain bank accounts, or open new lines of credit in the person’s name.

Often people don’t find out about the identity fraud until they attempt to take out credit and then find out they have a bad credit score due to a series of defaults they have no knowledge of. It was reported that in the case heard by the Sydney courts, the names of the deceased were used to create false Medicare cards, birth certificates, drivers’ licences, bank accounts and credit cards. Forged documentation and identities were sold to criminals, including members of the Lone Wolf bikie gang, so they could apply for passports.

Any kind of credit account (from mortgages and credit cards through to mobile phone accounts) which remains unpaid past 60 days can be listed as a default by creditors on the victim’s credit rating, and those defaults remain there for 5 years.

Relatives left with the task of trying to repair the credit file of their deceased, particularly the credit files of joint account owners can find the task a difficult one. To restore the clear credit file the identity theft victim needs to prove to creditors they did not initiate the credit. Not only are victims generally required to produce police reports, but large amounts of documentary evidence to substantiate to creditors the case of identity theft.

If people need help credit rebuilding and restoring credit activeness following identity theft, please contact MyCRA Credit Repairs tollfree on 1300 667 218 or visit the main website www.mycra.com.au

Credit rebuilding is not easy for anyone to undertake themselves, particularly those who are facing grief. Many times when restoring credit individuals will be told that listings can be marked as paid, but this does not give the victim a clear credit file.

Using a credit repairer skilled in credit reporting legislation will help to enforce rules creditors are bound to comply with, and coupled with negotiations will ensure the best chance at a clear credit file.

Image: Arvind Balaraman / FreeDigitalPhotos.net

08/02/2012
How to prevent identity theft and keep your clean credit rating

Identity theft is an ever-increasing cause of a bad credit rating. We answer some of the most common questions people have about identity crime and explain how it can affect your credit file. By GRAHAM DOESSEL CEO of MyCRA Credit Repairs and www.fixmybadcredit.com.au.

8 Most Common Questions about Identity Crime Answered

1. Who is affected by identity crime?

It is reported that 1 in 6 people in Australia is a victim or knows someone who has been a victim of identity theft or fraud in the past 6 months.

Victims are not always ‘gullible’ as may be the impression in the wider community. Many experts say it is not a matter of if you experience an identity theft attempt, but when.

2. Who commits identity theft or fraud?

It can originate from someone you know – for example an acquaintance obtains identity documents or credit card details to impersonate you. Or more increasingly it comes from professional fraudsters whose main occupation is to steal personal information and financial details in order to commit fraud.

3. Where does identity theft originate?

Fraudsters are after your personal information. The internet is a big source of personal information and its ever increasing use makes you more vulnerable to identity crime than ever. This means identity crime can have very long arms – often it originates from overseas crime syndicates. Social networking, online banking, company databases and email scams can all be havens for today’s cyber- criminal.

You can also fall victim to a number of rampant telephone scams, credit card skimming, or criminals can also take to going through your rubbish bin for anything they may be able to use to steal your identity.

4. Why is identity theft increasing?

The pay-offs are huge for criminals. It is estimated identity crime costs Australians $1 billion a year.* In cyber circles alone, world estimated costs for cybercrime are staggering.

Cyber-crime expert Mischa Glenny says that while there are no precise figures out there, the White House suggested in 2009 that cybercime and industrial espionage inflicts damage of around U.S.$1tn per year, which is almost 1.75% of GDP.

“Traditional bank robbers must be absolutely gobsmacked when they hear sums like this being hoovered up by cyber-criminals week in, week out,” he says.

5. How can I be affected by identity crime?

We consider if someone is alerted to having money stolen from credit cards early, or perhaps is able to call their bank and stop fraud in its tracks – that they are the lucky ones.

The unlucky identity theft victim is unaware of the fraud until their identity is misused, and their credit rating with it. When identity theft damages your credit rating – it is because the fraudster has been able to overtake credit accounts, or has gained access to enough personally identifiable information about you to forge new identity documents.

This gives the fraudster access to credit cards, loans, even mortgages which allows them to extract significant amounts of money without you realising it straight away.

If credit accounts are not repaid – after 60 days you may be issued with written notification of non-payment and the intention for the creditor to list a default on your credit file. It is at this moment that some people who were previously unaware of any problems find out they have been victims of this more sophisticated type of identity theft.

But often the credit file holder has also had their contact details changed – and this means it is not until they apply for credit in their own right and are refused that they find out about the identity fraud. This can be a significant time after the initial crime.

6. When would I know if I have been a victim of identity theft?

Some signs to watch out for include:

Strange unaccountable withdrawals on credit or personal bank accounts. It may not need to be a big amount to indicate fraud. Many criminals do ‘test’ amounts to begin with before extracting more significant amounts.

Phone calls or emails from what often appear to be legitimate companies, asking for money or personal details. If you have given bank details or personal information in this way either online or on the phone there is a high chance it was a scam. Verify with the company in question.

Can’t log in to social networking or bank accounts.

Credit refusal

Bills or letters of demand sent to you for accounts you don’t know about

Missing mail – particularly credit card statements which could indicate someone has overtaken your accounts. In this case no news is not good news.

7. What can I do if I suspect I am a victim of identity theft?

Notify Police immediately. Many people do nothing due to embarrassment, or because they don’t believe the fraud was significant enough. But is only through this crime getting reported that statistics get collated, and we start to have any chance of catching the criminals.

Notify creditors. You may need to cancel credit accounts.

Obtain a credit report. This report is free once per year for every Australian who holds a credit file. It will indicate to you whether any of your contact details have changed, or whether there have been credit enquiries on your account. If you act quickly enough, you may be able to stop your credit rating from being affected by black marks which would come from fraudsters obtaining credit in your name.

Notify credit reporting agencies of the possible fraud. They will be able to put an alert on your credit file.

Police may assist you in obtaining a Victims of Commonwealth Identity Crime certificate, if they believe you are eligible. You can apply to a magistrate in your State for this certificate, which may help in recovering your credit rating or credit accounts. Victims need to have had a Commonwealth Indictable Offence committed against them. For more information, visit the Attorney-General’s website www.ag.gov.au.

8. What steps can I take to prevent identity theft?

– Keep virus software up to date on your computer. Install automatic updates and perform regular virus scans.

– Keep your privacy settings secure on all social networking sites.

– Keep passwords and PIN numbers secure. Don’t carry PIN numbers with your credit/debit cards, change passwords regularly and use a variety of passwords for different purposes.

– Check all your credit card and bank statements each time they come in.

– Cross-shred all personally identifiable information which you no longer need.

– Buy a safe for your personal information at home.

– Do not give any personal information or credit card details to anyone via phone or email unless you are sure the site is secure, and or you can verify the company details.

– Be aware of who gets our personal information and for what purposes. What can these people do with the information they are gathering? For instance, is it really necessary for the site you are registering on to have your date of birth?

– Keep up to date with the latest scams by subscribing to the government’s ‘SCAM watch’ website. For a list of ways your computer can put you at risk, visit the governments Stay Smart Online website www.staysmartonline.gov.au.

– Check your credit file regularly.

If you or someone you know needs help recovering their credit rating following identity theft, contact MyCRA Credit Repairs, www.mycra.com.au or call tollfree on 1300 667 218 for confidential advice and help restoring your good name.

* OECD Committee on Consumer Policy, Online Identity Theft, February 2009, p. 37

Image: Salvatore Vuono / FreeDigitalPhotos.net

24/01/2012
Can official Australian documents be forged to commit identity fraud?

It is estimated identity theft costs Australia $1 billion per year.* When identity theft damages the victim’s credit rating – it is because the fraudster has been able to overtake credit accounts, or has gained access to enough personally identifiable information from the victim to forge new identity documents. This gives the fraudster access to credit cards, loans, even mortgages which allows them to extract significant amounts of money from the victim without them realising it straight away.

If credit accounts are not repaid – after 60 days the credit file holder is issued with written notification of non-payment and the intention for the creditor to list a default on the person’s credit file. It is at this moment that some people who were previously unaware of any problems find out they have been victims of this more sophisticated type of identity theft. But often the credit file holder has also had their contact details changed – and this means it is not until they apply for credit in their own right and are refused that they find out about the identity fraud. This can be a significant time after the initial crime.

Over the past year there have been reports in Western Australia of an elaborate property scam, in which overseas-based owners had their homes sold from under them by identity thieves. One property had been sold and settled months before the owner had any knowledge.

“It is clear it was a sophisticated outfit that scammed the owner, the real estate agent, the settlement agent, the banks, and more importantly and critically, the Department of Land Administration (DOLA),” Real Estate Institute of Western Australia (REIWA) spokesperson Brian Greig told ZD Net when the story broke in September 2010.

For identity theft victims who have had their credit rating affected, loss of money is just the beginning of their trouble. They lose the ability to borrow money. Dreams can be put on hold. Families and businesses can be put under immense stress. They can’t even get a mobile phone plan – and they are looking at a 5 year term for a default.

Recovery is difficult. It is up to the identity theft victim to prove to creditors they did not initiate the credit in the first place. The victim is required to produce Police reports, bank statements and other documentation to prove their case. Their whole life is turned upside down in a desperate attempt to recover their good name. They often need professional help from a credit rating repairer as well as Police and Courts.

The production and verification of key identification documents in Australia plays a crucial role in ensuring better security for individuals against this type of identity crime.

Clearly the Government agrees there is a great need for a strong, unified identification system, but have they been effective in making this happen?

In 2005 the Attorney-General’s department began plans to launch a Documentation Verification Service (DVS) as part of its National Identification Security Strategy (NISS). The DVS is intended to provide an electronic validation platform that allows authorised government agencies to cross-check identity documents to identify their clients and prevent identity theft or fraud.

“It helps protect people’s identity and their privacy by allowing documents commonly used as evidence of identity to be checked electronically, quickly and directly by the document’s issuing authority,” Attorney-General Robert McClelland said recently in a media release.

“Through the DVS it is possible to verify the validity of Australian-issued passports, visas, as well as birth, marriage and change-of-name certificates and driver licenses from States and Territories.”

But the road to implementation of this system has been neither cheap (costing $25 million by 2010), or easy, with many reports of agencies failing to implement the system.

Technology and security publication, CSO criticised the slow take-up of the service in its article ‘Australia crawls towards its answer to identity fraud’.

The story features the Australian National Audit Office’s report on the program’s implementation. The Report slammed the program’s sluggish roll out last April, noting that the “rarely used” system was unlikely to strengthen Australia’s personal identification process in the near future.

It says the main problem was that many of the identity issuer and user agencies, such as Centrelink, the Department of Immigration, and state road authorities and birth and death registries, were not connected to DVS. Verification using the system also took longer than 20 seconds in a quarter of transactions, eroding its promised efficiency gains and convenience.

This week the Attorney-General’s department announced 200,000 documents had been verified using the system. It says with the full commitment of state and territory governments now in place the value of the system is being demonstrated, with a number of Commonwealth and state agencies using it for processes that require identity verification.

It is not clear on the volume of agencies who have committed to adopting the DVS as part of their client registration process. The AG says there are a “wide range” of agencies, which include revenue, superannuation, electoral, land title and service delivery agencies.

Australians are facing an ever increasing number of threats against their identity. According to an identity theft survey commissioned by the Attorney-General himself, 1 in 6 people in Australia have been or know someone who has had their identity misused in some way in the past 6 months.

With this knowledge, it would seem all agencies should be implored to take up this service or perhaps we should look again at why some agencies are failing to use it. Surely a streamlined approach to document verification is essential protection for Australians.

One thing is certain, if identity theft really is the emerging crime with the magnitude and scope that is reported, people need to know the fundamentals that make up their identity – their passports, their licences and their birth certificates are bullet-proof from attack.

* OECD Committee on Consumer Policy, Online Identity Theft, February 2009, p. 37

Contact MyCRA Credit Repairs for further help with identity theft, or to repair a credit rating on 1300 667 218.

Image: Photostock/ FreeDigitalPhotos.net

17/11/2011
Let me count the ways…identity theft news

This week the media has reported on a number of major instances of identity theft which all confirm the fact that as the Australian Crime Commission (ACCC) reports, identity theft is the “fastest growing crime in the country”.

The National Identity Fraud Awareness Week, running this week from 17-23 October has thrust identity theft issues in Australia right into the spotlight.
It almost looks like there has been a ‘storm’ of identity theft – with warnings and recorded cases in most major news over the past few days.

The press coverage of major identity theft news in this country is interesting. It brings to light the possibility that this news could happen on any given week, and that because of the NIFAW, these instances have been given extra attention by the press. This should cement for Australians the emergence of a very real crime with often dire consequences.

Identity theft can not only impact a person’s finances, but also their ability to borrow in the future. By extracting personal details and using those to take out credit in their victim’s name, fraudsters can take a person’s good credit rating and basically destroy it.

A significant amount of a person’s ability to borrow in the future rests on their credit file, which is the file the credit reporting agencies keep on each person who is credit active in this country. If a potential borrower has any adverse listings showing up on their credit file, lenders will generally refuse credit. The catch is…adverse listings remain on credit files for 5-7 years depending on the type of listing. So an identity theft victim can have that crime impact them for a significant time following the event if their name has been used to obtain credit in fraudulent circumstances.

And recovery is not as simple as calling creditors and explaining what has happened. Under Australian credit reporting law, often the victim requires a great deal of documentary evidence, including Police reports to prove they did not initiate the credit.

So identity fraud awareness should continue every day, with more focus from Governments, Police, Companies’ and most importantly, consumers on ways to stay protected from identity crime.

The ACCC’s website has a great host of information on identity crime, which includes a list of preventative tips, which people should print out, talk about and put into practice in their lives.

Here are some of those media reports which we found significant:

Credit card fraud

Raids in Sydney’s Ashbury and Haymarket yesterday uncovered a substantial identity crime operation. Police found 12,000 fake credit cards, with a face value of $30m, a number of blank NSW driver’s licences, computer files and equipment allegedly used in the manufacture of fraudulent documents.
The Daily Telegraph reported in its story ‘Fake credit cards worth $30m seized along with drugs and cash’ that each card had a credit limit of $2500.

Amongst the seizures were $20,000 in cash, 90 grams of amphetamines, drug paraphernalia and designer clothing and jewellery valued at about $100,000.
The operation was carried out by the Identity Security Strike Teams (ISST) – made up of Australian Federal Police, NSW Police Force, Roads and Traffic Authority and the Department of Immigration and Citizenship.
The teams investigate serious and complex identity security matters forming a collaborative network among law enforcement agencies to effectively deal with this crime.

Bank account fraud

The Sydney Morning Herald reported this morning on a fraud scandal involving two major Australian banks. The story ‘Citibank left with
$500,000 fraud bill after impostor scam’ details the findings of a NSW Supreme Court judgment from an incident in which Citibank and National Australia Bank and their customers were caught up in a circumstance of fraud.

In November 2010, Citibank’s Sydney branch received a fax from what appeared to be a Citibank client instructing the transfer of US$500,000 from his multi-currency at call account, to a NAB account jointly held in his name.

Using the SWIFT international clearing house system of international funds transfers, Citibank transferred the money to the NAB account. A few days later, NAB’s World Square branch received faxes of three international telegraphic transfer application forms, each ostensibly signed by the same client.
The first form, dated in October, requested a transfer of $15,000 to an HSBC Hong Kong account.

The second and third forms, dated November, both requested $225,000 transfers to HSBC Hong Kong accounts.

The Herald reports the NAB assistant branch manager checked the signature on the forms against the client’s signature on its verification system, and as there were sufficient funds, transferred the sums.
However, the faxed instructions to both banks were false.
The client and the joint signatory on the NAB account had sued the banks, and had since settled and had their money returned.

Judy Hitchen, a spokeswoman for Citibank said the customers were ”the unfortunate victims of a sophisticated identity theft”.
”The court noted that there was no allegation of negligent conduct or failure by the banks to meet relevant banking standards. In fact, through verification and control systems in place at the time, we were able to constrain the losses by detecting and preventing a subsequent attack on the customers’ account,” she said.

The case is being investigated by Australian and overseas police.

Dumpster diving to steal personal information

Today Tonight also hit identity theft this week, with a story on what is known as ‘dumpster diving’. The story titled ‘Identity theft alert’ featured cyber-fraud hunter from SOPHOS, Rob Forsyth. He revealed that dumpster diving – where crooks go through people’s rubbish bins looking for personal information – is a ‘nightly epidemic’.

“They [fusion_builder_container hundred_percent=”yes” overflow=”visible”][fusion_builder_row][fusion_builder_column type=”1_1″ background_position=”left top” background_color=”” border_size=”” border_color=”” border_style=”solid” spacing=”yes” background_image=”” background_repeat=”no-repeat” padding=”” margin_top=”0px” margin_bottom=”0px” class=”” id=”” animation_type=”” animation_speed=”0.3″ animation_direction=”left” hide_on_mobile=”no” center_content=”no” min_height=”none”][fraudsters] know, because it’s public information which councils have pick-ups on which day, and whether it’s garden waste or recycled waste, and they will cruise through those streets in the middle of the night and go through the garbage bins,” Forsyth said.

Today Tonight revealed that two in five Australians put old bank statements and other key personal papers into recycling.

Identity fraudsters will return over weeks, compiling piece by piece, until the jigsaw is complete, and then selling that abroad – dumped bank statements, credit card offers, phone bills, which already bear the person’s name and address.

“That waste paper is worth millions to the right people,” Crime Stoppers Australia CEO Peter Price said.
Recycling robbery is now his number one target in a national identity fraud awareness campaign being launched next Monday.
“In some instance there’s a black market where people actually bid for this information, almost like an on-line auction, and they’ll start using that information to buy stuff almost immediately,” Price explained.

Once the information is stolen, your identity is shipped around the world in seconds, and that’s when the cyber hunters come in.

Identity theft and cyber fraud cost Australia $8.5 billion every year. One in five Australians will be hit, more than four million people, and it’s getting worse every day.

Data breach threat prevented

Australian Super account fraud has been a growing phenomenon in Australia, with Police announcing official warnings in June for Super account holders to take care of their accounts and look for any changes that may point to identity theft.

It was revealed on Tuesday that an Australian Super Fund’s computer system was exposing its members to a possible data breach.

The Sydney Morning Herald reported in its story ‘Super bad: First State set police on man who showed them how 770,000 accounts could be ripped off’ about an account holder (who happened to be a security consultant) of Superannuation fund First State, stumbling upon a major flaw in the company’s data base. The error allowed the account holder to download the account information of First State customers.

“…the details revealed on the statements were a fraudster’s dream, including full names, addresses, email addresses, membership number, age, insurance information, superannuation amount, fund allocations, beneficiaries and employer information.

Nigel Phair, a former cyber cop turned cyber crime consultant, said the information obtained could be used to take over customer accounts. “Since superannuation is a set and forget saving mechanism, account holders may only suspect an account takeover when they receive their annual statement (assuming they read it in detail),” he said.

First State Super, which sent a letter to some members on October 7 informing them of the breach, has over 770,000 members and over $30 billion in funds under management. A large portion of its members are NSW public sector employees and their spouses, including police, politicians and magistrates.

Thanks to the good work of the account holder, the data breach threat was fixed immediately, but Phair says had this exploit been discovered by someone with malicious intent then the outcome would have been significantly more serious.

A recent global survey reveals widespread concern over data breaches and the security of personal information. A survey conducted online by Harris for US-based identity management specialist SailPoint, showed the majority of adults in the United States, Great Britain and Australia are worried about possible exposure of their personal information, and a large percentage of adults have lost confidence in how companies protect their personal information.
For people who need help with credit repair following identity theft, or for extra information on credit files and identity theft, call MyCRA Credit Repairs tollfree on 1300 667 218 or visit the main website www.mycra.com.au.

Image: thanunkorn: FreeDigitalPhotos.net[/fusion_builder_column][/fusion_builder_row][/fusion_builder_container]

20/10/2011
National Identity Fraud Awareness Week: Keeping your credit file safe from fraud

Identity theft and fraud is again on the agenda for Australians. This week is National Identity Fraud Awareness Week (NIFAW) – which runs from 17 to 23 October.

To tie in with this week, the Australian Federal Police have today gone live with an Identity Fraud survey on their website, aimed at empowering people to protect themselves from the serious consequences of identity crime.

We encourage everyone to take this survey. Currently the statistics on identity theft may be skewed due to a lack of reporting of the crime. Sometimes this is due to embarrassment, and other times it is because people believe the financial loss is minimal. Unfortunately, that may paint a less scary picture of identity fraud than should be the case.

The Herald Sun in its article,’If you think you’re identity is safe, think again’ reported NIFAW spokesperson, Peter Campbell as saying it was worrying that most Australians underestimated the prevalence of identity fraud in this country.

“A total of 52 per cent of those surveyed estimated that less than 100,000 Australian were victims,” he said.

“However, this latest survey shows the true figure to be 2.6 million – a very significant difference. Mr Campbell says these victims all lost over $1000.

“We all need to be aware of the risks and take responsibility for our personal information to prevent becoming a victim.”

An important point coming from these statistics, is the impression amongst Australians that identity fraud is not serious, or doesn’t really have the potential to ruin someone’s life. Even at low amounts, fraud can have significance beyond the minimal monetary loss.

When identity fraud is initiated due to criminals having access to a person’s personal details and new credit is issued in the person’s name – often the victim is unaware of non-payments until they have defaults attributed to them on their credit file. Many people don’t pick up on it until they attempt to take out credit in their own right and are refused because they have these adverse listings they have no knowledge of.

The difficulty in this instance is in investigating the origin of the fraud, and convincing creditors the credit file holder has been the victim of identity fraud. This generally requires lots of documentary evidence that may or may not be available, and Police reports.

Not only can people potentially lose money through identity fraud, they can also lose their ability to obtain credit in the future.

Defaults through late payments, once listed by creditors remain there for 5 years if the victim is unable to convince them the fraud occurred and have the adverse listing/s removed. People can’t even get a mobile phone plan when they have defaults, let alone personal loans or mortgages.

The other nightmare that can come about when fraudsters’ gain access to their victim’s credit file, is the potential that they can generate significant amounts of credit debt in the victim’s name. Some victims have had large amounts of credit taken out in their name, white goods and cars purchased, even in some cases properties mortgaged and sold in their names.

The AFP urges people to take a stronger stance on personal protection from identity fraud, as the circumstances in which fraud occurs are not always simple.

“Identity fraud is an emerging threat to Australia and is growing rapidly. Be aware that identity fraudsters are specialists at manipulating their victims, including their trust, friendliness, loneliness, fears, concerns or financial situation”, Commander Chris McDevitt from the AFP says.

The AFP hosts multi-agency Identity Security Strike Teams (ISST’s) in Sydney, Brisbane and Melbourne. The teams work closely with state law enforcement partners, financial institutions and government agencies to address the issue of identity theft for financial gain.

Whilst banks have fraud insurance to help reimburse identity fraud victims, Australians should be aware there is no ‘reimbursement’ for future monies lost due to identity fraud affecting a person’s credit file 5 years. A bad credit rating can severely financially disadvantage individuals. People are unable to obtain credit through normal channels while defaults are present on their credit file. Often they are forced into finance at higher interest rates which can cost them tens of thousands over the term of the default.

Our message at MyCRA Credit Repairs is: please take steps to protect your credit rating from fraud!

Educate yourself – visit the government sites like SCAMwatch, Stay Smart Online, and the Attorney-General’s website. If people are interested in keeping up to date with what could be occurring – say in cyber-circles they can visit technology sites like ZD Net Australia or even subscribe to MyCRA’s RSS Feed for updates on security issues affecting credit files.

Know what’s on your credit file – grab a free copy of your credit file today from one or more of Australia’s credit reporting agencies, Veda Advantage, Dun & Bradstreet, and TASCOL in Tasmania which will be mailed to you within 10 days.

Your credit report is free every 12 months – take advantage of this by ordering a copy every year. Make sure there are no defaults currently attached to your file. If they shouldn’t be there or there are errors – you may be eligible for credit repair.

If you feel vulnerable to fraud, for a fee Veda offers an ‘alert’ service, which informs you of ANY changes to your credit file such as a change of contact details or a credit enquiry, which would point to you being a victim of identity theft – possibly BEFORE there are harmful defaults put against your name.

For more information on identity theft, or help with credit repair following identity theft, contact MyCRA Credit Rating Repairs tollfree on 1300 667 218 or visit our website www.mycra.com.au.

Image: Chris Sharp / FreeDigitalPhotos.net

17/10/2011
Internet dating scams rampant in Australia

Lonely hearts watch out – your wallets or your good credit rating could be next!

It was revealed by Queensland’s Courier Mail last week that more than $15 million was lost by victims of dating scams last year. This was perpetrated by overseas criminals mainly from West Africa, masquerading as online love interests.

In response, dating websites in Australia will be now be required by the Australian Competition and Consumer Commission to display scam warnings in an attempt to combat one of the fastest growing types of scam, preying on lonely people. It is threatening action against companies that fail to comply.

A top-level fraud conference on the Gold Coast was told almost 600 Australians had lost $15.1 million to cyber-criminals posing as potential partners, with one-in-five being duped of more than $100,000.

Police Commissioner Bob Atkinson said romance scams had become the “fraud of choice” and victims were being left financially and emotionally crushed.

“We’re seeing thousands of Australians sending millions of dollars to criminals overseas every month,” he told the International Organised Fraud Symposium at Sanctuary Cove.

“Apart from losing large amounts of wealth and in some cases their homes as a result of this brutal type of offence, some people take suicide as an option,” he said.

And the victims? Mostly elderly widows.

Queensland Police Fraud Squad chief superintendent Brian Hay said women “are twice as likely to be victims”.

“It’s particularly savage. We’re talking about vulnerable people who put their heart on the line and lose their house and life savings as well,” he said.

How the scams work

The Government’s SCAMWatch website explains in more detail how these dating scams work.

“Scammers target victims by creating fake profiles on legitimate internet dating services. Once you are in contact with a scammer, they will express strong emotions for you in a relatively short period of time and will suggest you move the relationship away from the website, to phone, email and/or instant messaging. Scammers often claim to be from Australia, but travelling or working overseas.

They will go to great lengths to gain your interest and trust, such as sharing personal information and even sending you gifts. Scammers may take months, to build what seems like the romance of a lifetime and may even pretend to book flights to visit you, but never actually come. Once they have gained your trust they will ask you (either subtly or directly) for money, gifts or your banking/credit card details. They will pretend to need these for a variety of reasons.” The website explains.

How scams affect the victims

For people who have fallen for this type of scam, generally they are robbed of money. But in some cases, the fraudsters can have enough personal information about their victims to be able to get credit cards or loans or even mortgage properties in their name.

The costs of identity theft can be significant long term for the victim and are magnified by the fact that identity fraud is not often detected until the victim attempts to take out credit in their own name and is refused due to credit rating defaults they didn’t initiate.

It can be quite a shock for someone to realise their entire financial freedom has been taken away, along with any monies that have been stolen from them. Basically someone with credit file defaults finds it extremely difficult to obtain credit for 5 years while the listing is part of their credit record.

Any kind of credit account (from mortgages and credit cards through to mobile phone accounts) which remains unpaid past 60 days can be listed as a default by creditors on the victim’s credit rating. Credit rating defaults remain on credit files in Australia for 5 years. The consequence of people having a black mark on their credit rating is generally an inability to obtain credit.

Repairing a credit rating in Australia can sometimes be difficult for the individual to undertake. By law in Australia, if a listing contains inconsistencies the credit file holder has the right to negotiate their amendment or removal, but the difficulty is, to clear their good name, the identity theft victim needs to prove to creditors they did not initiate the credit. Not only are victims generally required to produce police reports, but large amounts of documentary evidence to substantiate to creditors the case of identity theft.

SCAMwatch outlines some ways people can protect themselves when dating online:

-ALWAYS consider the possibility that the approach may be a scam…Try to remove the emotion from your decision making no matter how caring or persistent they seem.
-Talk to an independent friend, relative or fair trading agency before you send any money. THINK TWICE before sending money to someone you have only recently met online or haven’t met in person.
-NEVER give credit card or online account details to anyone by email.
-Be very careful about how much personal information you share on social network sites. Scammers can use your information and pictures to create a fake identity or to target you with a scam.
-If you agree to meet in person, tell family and friends where you are going. If this includes overseas travel, consider carefully the advice on www.smarttraveller.gov.au before making any plans.
-Where possible, avoid any arrangement with a stranger that asks for up-front payment via money order, wire transfer or international funds transfer. It is rare to recover money sent this way.
-If you think you have provided your account details to a scammer, contact your bank or financial institution immediately.
-Money laundering is a criminal offence: do not agree to transfer money for someone else.

For more information, or for people who need help restoring a credit rating following identity theft contact MyCRA Credit Repairs tollfree 1300 617 218 or visit the website www.mycra.com.au.

Image: renjith krishnan/ FreeDigitalPhotos.net

13/10/2011
Internet fraud can happen to anyone

Media Release

3 October 2011

Many of the new forms of online fraud are sophisticated and elaborate – often even fooling those who believe they are computer-savvy, according to a national credit repairer.

Director of MyCRA Credit Repairs, Graham Doessel dismisses claims victims of online fraud are stupid and are ‘asking’ to be ripped off and says keeping abreast of current scams is sometimes the only way to avoid being a victim.

“Some of my clients have been cleverly fooled by scammers, who have weaved a tangled web of lies and deceit. It is not just a case of ‘oh we were asked to send money so we did’ – most people believed they were dealing with legitimate companies and have been unlucky to end up on the wrong end of fraud,” Mr Doessel says.

Mr Doessel’s comments come as Superintendent Hay, head of the Fraud and Corporate Crime Group, told the Brisbane Times recently, each month about 2000 Queenslanders transferred a total of $2 million to scammers in Nigeria and Ghana.

Superintendant Hay, joined Investigators from Nigeria, Ghana and the United States at a conference south of Brisbane last week, focused on tackling the global “fraud pandemic”.

He urged people to have more compassion for victims of scams.

“Fraud victims are victims of a crime, they need our respect and need our support and need our help to rebuild their lives,” he says.

Mr Doessel says his company helps people clear adverse listings from their credit file which they believe should not be there. He says when a client experiences identity theft which leads to the scammer taking out credit in their name, they are left financially crippled.

“Basically the victim ends up with defaults on their credit file which unfortunately means they are black listed from credit for 5 years. These victims can’t borrow for anything – they can’t even take out a mobile phone plan,” he says.

Identity theft and subsequent fraud has become rampant worldwide. A survey commissioned by the Attorney-General’s office in July showed 1 in 6 Australians had been or knew someone who had been the victim of identity theft or misuse.

The survey also revealed that the majority of identity theft or misuse occurred over the Internet (58 per cent), or through the loss of a credit or debit card (30 per cent). Stolen identify information was primarily used to purchase goods or services (55 per cent) or to obtain finance, credit or a loan (26 per cent).

Mr Doessel says by blaming the victims of identity theft and scams, we are making light of the often sophisticated nature of fraud and for this reason more people could possibly fall victim to it in the future.“

People need to know this business is lucrative, and the fraudsters are vehement. New scams are being cooked up every day to dupe people into giving over their money or their personal details. Just because people aren’t fooled by the current scams, doesn’t mean they are totally immune,” he says.

He says internet users need to keep up-to-date with all scams being perpetrated in the community, and this can start with subscribing to the Government’s Stay Smart Online, and SCAMWatch websites, which alerts people to new scams and viruses as they arise.

“Unfortunately this is a war we are all waging against unknown criminals from an unknown location, that can be whoever they want to be in order to steal people’s money or their good name. Fighting it starts with risk awareness and being extremely protective over who gets our personal information,” he says.

/ENDS.

Please contact:

Lisa Brewster – Media Relations Mob: 0450 554 007 media@mycra.com.au
Graham Doessel – Director Ph 07 3124 7133

www.mycra.com.au www.mycra.com.au/blog 246 Stafford Rd, STAFFORD Qld
MyCRA Credit Repairs is Australia’s leader in credit rating repairs. We permanently remove defaults from credit files.

Links:
http://www.brisbanetimes.com.au/technology/technology-news/fraud-victims-just-dont-listen-police-20110927-1kv5t.html#ixzz1Zg5GiF9x
http://www.ag.gov.au/www/ministers/mcclelland.nsf/Page/MediaReleases_2011_ThirdQuarter_3July2011-Newresearchshowsidentitytheftaffectsoneinsixpeople

Image: Michelle Meiklejohn / FreeDigitalPhotos.net

13/10/2011
Big arrest in NY reveals inner workings of identity theft ring

In New York this weekend, huge arrests have been made, unravelling an identity theft ring involving counterparts in China, Europe and the Middle East. 111 people were arrested and more than 85 are in custody.

The Herald Sun reported on Saturday that five separate criminal rings operating out of Queens, New York have been dismantled:

They were hit with hundreds of charges, said Queens District Attorney Richard Brown, calling it the largest fraud case he’d ever seen in his two decades in office.

“These weren’t holdups at gunpoint, but the impact on victims was the same,” Police Commissioner Raymond Kelly said. “They were robbed.”
The enterprise had been operating since at least 2010 and included at least one bank and restaurants, mostly in Queens.

Authorities say the graft operated like this: At least three bank workers, retail employees and restaurant workers would steal credit card numbers in a process known as skimming, in which workers take information from when a card is swiped for payment and illegally sell the credit card numbers. Different members of the criminal enterprise would steal card information online.

The numbers were then given to teams of manufacturers, who would forge cards from Visa, MasterCard, Discover and American Express. Realistic identifications were made with the stolen data.

The plastic would be given to teams of criminal “shoppers” for spending sprees at higher-end stores, including Apple, Bloomingdale’s and Macy’s. The groups would then resell the merchandise oversees to locations in China, Europe and the Middle East.

All told, more than $US13 million ($13.4 million) was spent on iPads, iPhones, computers, watches and fancy handbags from Gucci and Louis Vuitton, authorities said.

The suspects also charged pricey hotel rooms and rented private jets and fancy cars, prosecutors said.
Detectives with language skills spent hours translating Russian, Farsi and Arabic during the investigation, Mr Kelly said…

And, Mr Kelly said, criminals are getting more sophisticated. “Thieves have an amazing knowledge of how to use technology,” he said.

“The schemes and the imagination that is developing these days are days are really mind-boggling.”

Could this be happening in Australia?

The cold hard facts are – yes! The ‘beauty’ of identity crime – and why it’s so lucrative, is because criminals can be part of a worldwide network – they are no longer reliant on simply their own knowledge and skills.

So skimmers can then on-sell credit cards and details on ‘carder’ sites which are then purchased by other criminals, often in other countries. Or as was the case in the NY ring – skimmers can be working out of one country but the network’s origins can be spread across the world.

This makes the criminals so much harder to catch and that much more powerful.

In the Australian Crime Commission’s Crime profile series on Credit Card Fraud, they say that card fraud has grown rapidly in the past decade:

“…counterfeiting or skimming of credit cards cost Australians more than $45 million,” the ACCC says.

The Australian Crime Commission gives a list as to some of the ways criminals have misused credit cards in Australia:

How Card Fraudsters Work…

Card skimming—the criminal copies information from the card’s magnetic strip from which counterfeit copies can be made. Common scenarios for skimming are restaurants or bars where the skimmer has possession of the victim’s credit card out of their immediate view. Skimming may also occur where criminals put a device over the card slot of an ATM which then reads the magnetic strip as the user unknowingly passes their card through it. These devices are often used in conjunction with a pinhole camera to read the user’s Personal Identification Number (PIN) at the same time. Criminals may also tamper with EFTPOS terminals in order to gather card information.

Buying credit card information—in 2009, credit card information was the most commonly sold item in the underground economy, accounting for 19 per cent of the items for sale. Stolen card data can be sold for as low as US 85c per card when bought in bulk. Criminals may couple this information with details harvested from social networking sites to commit frauds.

Counterfeit cards—criminals gain details of a current valid cardholder, usually from the internet. They then emboss blank white plastic cards with stolen numbers and the magnetic stripe on the card is encoded with matching numbers and the signature panel on the card installed. Identifying logos and colour printing are then added to mimic a real card.

Fraudulent use of debit card PINs—cardholders may disclose their PINs unwittingly or through coercion or through methods such as skimming. Stolen cards and PINs may be used to make unauthorised cash withdrawals.

Card theft—criminals steal cards and make purchases by forging the cardholder’s signature, or alter the encoded details on the card or even transfer those details to a counterfeit card or to several cards.

Application fraud—criminals obtain the personal details of a real person (such as from utility bills or bank statements stolen from post boxes, or through social networking sites), and use this information to acquire credit cards in that name. The offender then uses the cards to buy goods or services. Alternatively, a criminal uses false identification details to obtain a legitimate card in a false name. Legitimate cards will then be issued to an individual who will later default on paying monies owed and abscond.

Account takeover—criminals gather information on an intended victim (using the same techniques described above), then contact that person’s card issuer masquerading as the genuine cardholder and asking for mail to be redirected to a new address. The criminal then reports the card lost and asks for a replacement to be sent.

Internal or employee fraud—unauthorised transactions on business credit cards perpetrated by a criminal who has deliberately infiltrated an organisation, or an employee who has criminal motivations.

Hacking—criminals may hack into databases of account numbers which are held by internet service providers or other businesses that hold customer information, or by intercepting account details which travel in unencrypted form. Or, they may interfere with bank computers in order for sums in excess of account credit balances to be withdrawn.

Online scams—customers who make use of false credit card details or merchants who fail to honour online agreements.

Phishing—sending an email to a user that makes false claims in an attempt to trick them into revealing credit card information so money can be obtained from accounts.

Stored value card fraud—card readers are being programed to deduct greater value from the card than that authorised by the user, or sales staff could intentionally deduct greater sums than they are authorised to deduct. Sums which are rounded off to the nearest five cents could then be skimmed to the terminal owner’s advantage.

Carding—a process criminals use to verify the validity of stolen card data. To do this, criminals will present the card information they have obtained to buy something small on a website that has real-time transaction processes. If the card is processed successfully, the thief knows the card is still good.

In many of these scams, it is not only the victim’s finances which are being stolen – it is also their ability to obtain credit. When scammers gain access to a victim’s credit file, they are able to take out loans in the victim’s name. Once these unpaid loans are defaulted on – creditors will place a default listing/s on the victim’s credit file, which remains on their file for 5 years.

So not only do they lose money, but their chances of getting loans, mortgages, even mobile phone plans are destroyed for 5 years if they are victims of identity theft in this way.

And, unlike a bank – which often has insurance to cover unauthorised transactions, there is no safety net for identity theft victims in the Australian credit reporting system. The victim often has a difficult time having these adverse listings removed – and needs to provide lots of documentary evidence to prove they did not initiate the credit, to negotiate with creditors to have the offending entries removed.

So how do people protect themselves against becoming victims of credit card fraud?

There needs to be a psychic shift in much of the Western world about the way people think about credit cards – they need to be as secure if not securer than money, as they can be more of a danger to people’s financial security if misused than cash.

Here are some ways people can protect themselves against identity theft from credit card fraud:

– Always check the ATM or EFTPOS terminal for any suspicious boxes that could be skimming devices. If in doubt – don’t use it.
– Always cover their PIN when using terminals.
– Never let anyone walk out of sight with their credit card
– Always check their card statements and report any unauthorised transactions – however small – to the bank immediately.
– Regularly keep up to date with what is on their credit file. People can check their credit file by obtaining a written report for free every 12 months – but if they are suspicious of or vulnerable to fraud they can also for a fee obtain a credit report more often. If there are any discrepancies of credit or adverse listings that should not be there they should act immediately to notify Police.

If people need help with credit repair following identity theft from credit card fraud, they can contact a credit rating repairer, such as MyCRA Credit Repairs, who can help restore their ability to obtain credit. Call them tollfree 1300 667 218.

Image: worradmu / FreeDigitalPhotos.net

10/10/2011
Fears about data breaches are justified

Media Release
22 September 2011

Australians have every right to be concerned about data breaches and loss of personal details, as personal information has become a valuable commodity used to commit identity fraud and potentially ruin the victim’s financial future, a national credit repairer says.

Director of MyCRA Credit Repairs, Graham Doessel says a recent survey revealing concerns about data breaches shows we are all worried about where our personal information could be put at risk, and this is not without reason.

“More and more of my clients have been through the ringer attempting to have black marks removed from their credit file due to identity theft, simply because our education, our legislation and our technology is unable to keep up with fraudsters. People want to know their details are going to be safe when they shop, when they use the internet and with the companies that have their details in their computer systems,” Mr Doessel says.

This comes as a global survey reveals widespread concern over the security of personal information. A survey conducted online by Harris for US-based identity management specialist SailPoint, showed the majority of adults in the United States, Great Britain and Australia are worried about possible exposure of their personal information, and a large percentage of adults have lost confidence in how companies protect their personal information.

“The widespread impact of data breaches like Epsilon and Sony PlayStation, where millions of consumers were impacted around the world, is making customers more cautious about conducting business with certain financial institutions and retailers,” said Jackie Gilbert, vice president of marketing and co-founder at SailPoint.

Mr Doessel says personal information is like gold to identity thieves.

“Basically, a lot of identity fraud is committed by piecing together enough personal information from different sources in order for criminals to take out credit in the victim’s name. Often victims don’t know about it right away – and that’s where their credit file can be compromised,” he says.

He says once the victim’s credit rating is damaged due to defaults from this ‘stolen’ credit, they are facing some difficult times repairing their credit rating in order to get their life back on track.

“These victims often can’t even get a mobile phone in their name. It need not be large-scale fraud to be a massive blow to their financial future – defaults for as little as $100 will stop someone from getting a home loan,” he says.

Once an unpaid account goes to default stage, the account may be listed by the creditor as a default on a person’s credit file. Under current legislation, defaults remain on the credit file for a 5 year period.

“What is not widely known is how difficult credit repair following can be – even if the individual has been the victim of identity theft, there is no guarantee the defaults can be removed from their credit file. The onus is on them to prove their case and provide copious amounts of documentary evidence” he says.

Mr Doessel says the best defence an individual can take against identity theft is to get educated on how their personal information can be put at risk.

“Sites like the Government’s SCAMwatch website, and the Stay smart online website, can give people good practical tips for keeping their information secure,” he says.

But he also says in the case of data breaches, it comes down to a need to know basis.

“At best we can minimise the amount of people who hold our personal information. People should always question the need for it to be handed over. If it is not essential, don’t do it.”

“Unfortunately it seems everywhere we turn some company has been hacked – and it seems every entity with a computer is vulnerable. It is still extremely scary the level of risk our personal information undergoes these days when it is stored online,” he says.

He says it is important for people to keep up to date with what is on their credit file, to be alerted to any entries which point to a theft of identity.

Under current legislation a credit file report can be obtained for free every 12 months from the major credit reporting agencies Veda Advantage, Dun and Bradstreet , Tasmanian Collection Service and Experian and is sent to the owner of the credit file within 10 working days.

For those who are vulnerable to identity theft, they can pay extra with credit reporting agency, Veda Advantage to have their file on an ‘alert’ system, which tracks any changes to their credit file that may occur within a 12 month period.

Mr Doessel says people who suspect identity theft should report the matter immediately to Police, no matter how insignificant they think the fraud is.

“This crime is not very widely reported. But it is only through people reporting identity theft that any real statistics get collated on this issue. Likewise, if people want to try and repair their credit rating, the first thing I tell them is to make sure they have a Police report,” he says.

/ENDS

Please contact: Lisa Brewster – Media Relations Mob: 0450 554 007 media@mycra.com.au
Graham Doessel – Director Ph 07 3124 7133

www.mycra.com.au www.mycra.com.au/blog

246 Stafford Rd, STAFFORD Qld

MyCRA Credit Repairs is Australia’s leader in credit rating repairs. We permanently remove defaults from credit files.

Link: SailPoint Survey

Image: renjith krishnan/ FreeDigitalPhotos.net

29/09/2011
Is Facebook’s face recognition putting your privacy at risk?

German officials have been quick to protect citizens against possible invasions of privacy and identity theft . Last week they met with Facebook to demand policy change to its biometric function.

Facebook agreed to a voluntary code of conduct to protect its users’ data. The issue was over Facebook’s facial recognition function, which it has been using since December last year. The function catalogues the faces of users, making ‘tag’ suggestions automatically.

Technology commentators CIO published the story ‘Facebook bows to stricter German culture’:

“A few weeks ago, the State of Schleswig-Holstein had ordered all state sites to remove Facebook’s “like” button, and threatened to impose hefty fines on those that didn’t. It said Facebook builds profiles of users and non-users alike with the “like” button’s data, which violates German law.
And in early August the head of the German data protection authority asked Facebook to disable its facial recognition feature and argued that facial recognition amounts to unauthorized data collection on individuals.

“It’s obvious that this makes people very nervous when it comes to privacy,” said Carsten Casper, a Gartner privacy analyst, reports the BBC.

The code of conduct agreement was announced after Richard Allan, Facebook’s director of European public policy, met last week with Germany’s Interior Minister Hans-Peter Friedrich in Berlin and a state parliamentary committee in Kiel, according to ZDNet.

“With Facebook’s willingness to sign up for this self-regulation … the debate over the extent to which German data protection law applies to Facebook has been considerably defused,” the Interior Ministry said, according to German news website The Local.

What is interesting, is that no other countries have found this function to be a threat to privacy. Or the framework of privacy laws in other countries may not exist to prevent its use.

Back in June there were concerns over the potential privacy dangers of the introduction of face recognition technology to Facebook. This comes from an article from The Wall Street Journal for The Australian:

The technology also raises concerns that Facebook has built a potentially sensitive database of its more than 600 million users based on their facial characteristics, even as other tech titans such as Google say they’ve stopped short of adding facial recognition to some of their services.

“Facebook users thought they were simply tagging their friends. Turns out Facebook was building an image profile database to automate online identification,” said Marc Rotenberg, executive director of the Electronic Privacy Information Centre, a privacy group based in Washington.

In a statement, Facebook said it “should have been more clear with people during the roll-out process when this became available to them.”

Personal information is a valuable commodity these days. The Australian Crime Commission cites identity theft as the fastest growing crime in Australia and much of it is about profile building and data gathering in order to commit identity fraud against unknowing victims, often in other countries.

And it is ordinary people that are most at risk of identity theft and a subsequent bad credit rating. Commentator Stilgherrian recently shared these insights into identity theft:

Or, in the case of identity theft, when someone takes out $50,000 of loans in your name? That happens through the gradual accumulation of personal data. Your name and email address from a list stolen from a hacked website, cross-matched with your street address from another, your date of birth from a third, and so on.

These databases can contain millions of people’s details. They’re traded in shady online markets where people buy the pieces missing from the databases they already have, merge them, refine them, mark ‘em up and sell ‘em on until eventually there’s enough to turn it all into a credit application. It’s then laundered though “money mules”, people recruited in the belief they’re making money at home with just a computer.

Is facial recognition just the missing piece of the puzzle scammers need to completely annihilate their victims’ lives?

How to avoid identity theft

Public education can go a long way to lessening the instances of identity theft. The Government’s Stay Smart Online website recommends Australians follow these 8 top tips for increasing their resistance to identity fraud, and avoiding the loss to their bank balance and potentially their good credit rating:

1. Install and renew your security software and set it to scan regularly.
2. Turn on automatic updates on all your software, including
your operating system and other applications.
3. Think carefully before you click on links or attachments, particularly in emails and on social networking sites.
4. Regularly adjust your privacy settings on social networking sites.
5. Report or talk to someone about anything online that makes you feel uncomfortable or threatened – download the government’s Cybersafety Help Button.
6. Stop and think before you post any photos or financial or personal information about yourself, your friends or family.
7. Use strong passwords and change them at least twice a year.
8. Talk within your family about good online safety.

Where to go for help following identity theft

Sometimes unravelling the tangled ‘web’ of online identity fraud for the purposes of negotiating with creditors to restore someone’s good credit rating is a minefield that many individuals have neither the time nor the skill set for.

Credit repairers are more commonly involved in assisting people in cases of identity fraud due to a better knowledge of legislation and ability to work within it when negotiating with creditors over the victim’s financial future and to clear their credit file.

For more information on identity theft and help with clearing your credit file, contact MyCRA Credit Repairs or call tollfree 1300 667 218.

Image: Salvatore Vuono/ FreeDigitalPhotos.net

15/09/2011
Survey reveals Perth most at risk of identity theft

A survey on identity theft risks released by internet security software company AVG today reveals the Australian cities most at risk of online identity fraud and data loss.

The survey of online and mobile consumer behaviour was conducted over 2 weeks in August, and involved 1250 consumers across 5 states of Australia who own an Internet-connected device and have Internet-access at home.

Results showed Perth respondents were most at risk for stolen identities, digital fraud and data loss, followed by Brisbane, then Sydney and Melbourne in equal third and Adelaide ranking fifth as the most security savvy city.

Here are AVG’s findings :

Overall Results

Across the board, the survey showed many Australians are putting themselves at risk of identity theft, viruses and malware with poor PC security habits and a lack of comprehensive protection. Of those surveyed in the five cities:

•         22 per cent have been the victim of a phishing scam

•         25 per cent have shared online passwords with at least one other person

•         12 per cent do not run an anti-virus scan at least monthly

•         73 per cent do not use an identity monitoring service or other form of identity protection service.

Recently we blogged about mobile security and the need for people to secure their smartphone to prevent identity theft. Interestingly, AVG’s survey revealed how little users considered the value of security on their mobile devices.

While most of those questioned (77 per cent) use three or more passwords online, less than one in five (18 per cent) had changed the password on their mobile device in the past year.

“Consumers are getting better at recognising and addressing online threats, but it’s vital to ensure all your bases are covered. Taking some security measures and overlooking others — such as backing up your PC and not your smartphone — is like locking your door and leaving the windows open. Comprehensive online protection means covering all Internet-enabled devices – smartphone, tablet and PC,” said Lloyd Borrett, Security Evangelist at AVG (AU/NZ).

In terms of credit repair –the statistics are interesting. MyCRA certainly has seen a few clients from Perth who have claimed to be victims of identity fraud.

Often it is not understood how easy it is for criminals to steal peoples’ personal information or bank details online, and then use that information to take out credit in the victim’s name. It is also not realised how widespread the problem is becoming.

A recent survey of online fraud reveals one in 10 people have lost money to online fraud in the past year. That figure has doubled in four years.

There can be great difficulty for people in recovering their clear credit file following identity theft. Particularly with some of the more sophisticated forms of identity theft, often the victim is not aware their credit file has been used right away. Often people don’t know they are victims until they apply for credit and are flatly refused. Some have even had properties mortgaged in their name.

Credit rating defaults remain on credit files in Australia for 5 years. The consequence of people having a black mark on their credit rating is generally an inability to obtain credit. Most of the major banks refuse credit to people who have defaults, or even too many credit enquiries.

By law in Australia, if a listing contains inconsistencies the credit file holder has the right to negotiate their amendment or removal.

But to clear their good name, the identity theft victim needs to prove to creditors they did not initiate the credit – which can be difficult. Not only are victims generally required to produce police reports, but large amounts of documentary evidence to substantiate to creditors the case of identity theft.

In terms of preventing this crime, there is a host of information for internet users, but many people don’t learn about identity theft until they or someone they know becomes a victim.

The Government has two websites with a host of information about safe computer use for internet users. Its Stay Smart Online website gives people information on how they can secure their computer, as well as safety tips for the whole family.

The SCAMwatch website www.scamwatch.gov.au specifically warns internet users about scams in the community. Visitors can log on to an alert system for any new scams which are found to threaten the safety of people and their personal information.

The Stay Smart Online website recommends Australians follow these 8 top tips for increasing their resistance to identity fraud, and avoiding the loss to their bank balance and potentially their good name:

1. Install and renew your security software and set it to scan regularly.
2. Turn on automatic updates on all your software, including your operating system and other applications.
3. Think carefully before you click on links or attachments, particularly in emails and on social networking sites.
4. Regularly adjust your privacy settings on social networking sites.
5. Report or talk to someone about anything online that makes you feel uncomfortable or threatened – download the government’s Cybersafety Help Button.
6. Stop and think before you post any photos or financial or personal information about yourself, your friends or family.
7. Use strong passwords and change them at least twice a year.
8. Talk within your family about good online safety.

For more information on credit rating repair following identity theft, people can visit the MyCRA Credit Repairs website www.mycra.com.au.

Image: jscreationzs / FreeDigitalPhotos.net

Image: Stuart Miles / FreeDigitalPhotos.net

08/09/2011
Is your smartphone use increasing your risk of identity theft?

A recent survey found that over half of all mobile phone users own a smartphone. The survey conducted by TNS Mobile Life found 52% of mobile users own a smartphone device, which is an increase of 24 per cent from 2010.

But unfortunately fraudsters are also aware of this. People should be wary about the possible risks to the security of their personal information when they are using their smartphone.

The fact that people are using these devices to log in to social networking, use email, download applications and access bank accounts means they also need to be careful they are not opening the door to identity theft. This could leave them hugely out of pocket, and potentially ruin their credit rating.

Security firm Earthwave Managed Services guest blogged on CSO this week, and warned readers about emerging identity theft risks with smartphones.

“The smartphones of today don’t just make calls and take pictures. They serve as handheld PC’s and can potentially provide a thief with enough information about your online presence so that further theft of finances and identity can occur,” the firm says.

Earthwave says the same types of malicious malware and viruses that are present on home computers are being directed to smart phones, but there is a gap in adequate security in this area. Here’s how they say people’s personal information can be compromised:

“The malware could be injected using a PDF document, an image on a website, an e-mail or even embedded in webpage code. While the PC and notebook fall victim to the same attacks, the smartphone is even more vulnerable due to sluggish software development and user naivety…

“The hype surrounding the app-race gives attackers another means of entry – App Stores. Cyber criminals can code apps which include malware with the aim of gaining anonymous and complete access to the data residing on the phone,” the firm says.

Earthwave says people should adhere to the same security practices as those applied to their notebook to prevent smartphone identity theft. They suggest four security measures to take:

1. Install firmware updates that resolve security issues.
2. Always use strong passwords and stay vigilant with your email and web browsing.
3. Always be extremely careful what information you provide on social networking sites
4. Configure websites containing personal or financial information to be encrypted for the entire session, if the site provides this functionality.

Identity theft can be devastating for the victim, and many times they face an uphill battle with their credit rating following it. If the crime is sophisticated – as could be the case with malware-generated identity theft, the virtual stealing of someone’s good name can go undetected for a significant time.

Often it is not until the victim applies for credit somewhere and is refused that they realise their personal information has been stolen and identity fraud has been committed against them. People may have credit applications as a minimum and possibly defaults, mortgages and mobile phones attributed to them incorrectly.

Once any account remains unpaid past 60 days, the debt may be listed by the creditor as a default on a person’s credit file. Under current Australian legislation, defaults remain listed on the victim’s credit file for a 5 year period.

What is not widely known is how difficult recovery from identity theft can be. Unfortunately there is no guarantee defaults can be removed from a person’s credit file. The onus is on the identity theft victim to prove to creditors they didn’t initiate the debts. But for the victim who is virtually robbed of their financial freedom, it is a point worth fighting for.

For more information on identity theft, or for help with credit repair following identity theft, visit the MyCRA Credit Repairs website.

Image: Salvator Vuono / FreeDigitalPhotos.net

01/09/2011
Australian PlayStation users given free identity theft protection for a year

Finally Sony has recognised the possible threat that was made to the personal information of its 1.5 million Australian PlayStation users. After one of the world’s biggest data breaches occurred on the PlayStation Network in April, Sony has come to the party with an offer of free identity protection for the year.

The Sydney Morning Herald reports about this in its story ‘Sony offers free ID theft protection to Aussies.’

The package includes “CyberAgent Internet Surveillance”, whereby CS Identity’s technology scours the internet for unauthorised use of your identity. The firm conducts 24/7 monitoring of criminal web pages, chat rooms, bulletin boards and file sharing sites to identify trading or selling of customers’ personal information.

Identity restoration is also included, which involves the firm helping customers restore their identity after becoming the victim of identity theft.
The data stolen during the breach includes names, gender, addresses, email addresses, birthdays and login passwords for Sony’s PlayStation Network and its Qriocity music streaming service.

All up 1,560,791 Australian accounts were affected – 280,000 of which had credit card details. This is a fraction of the 77 million total accounts exposed worldwide.

Security experts have warned that even without credit card details, hackers could use the other stolen details to construct highly targeted and believable attacks designed to steal more personal information and/or infect computers.

The SMH says the Australian Privacy Commissioner, Timothy Pilgrim, has been investigating the breach, and they say it is still ongoing. In May we blogged about Australia’s Privacy Laws, as they relate to data breaches.

The Government is set to introduce tougher Privacy Laws following this data breach. One of which will be mandatory notification laws, helping to protect Australians from identity theft following any future data breaches, and another which will allow victims of identity theft following a data breach to be able to obtain some kind of compensation for any loss they may receive.

The Sydney Morning Herald recently reported one in 10 Australians who use the internet have lost money to online identity fraud over the past year, according to VeriSign Authentification Services. We recently blogged that these fraud figures have doubled since 2007. The cost of this is estimated to be $1.286 billion during the past year.

But the real cost of identity theft comes when a person’s credit file is impaired. When identity theft affects people’s credit files there is no reimbursement for losing the money they could borrow. But victims often lose their dream home, can’t borrow for their business and can’t get the new car they wanted.

Often victims don’t know about the fraud until they apply for credit and are refused because they have a bad credit rating.

Image: Arvin Balaraman / FreeDigitalPhotos.net

25/08/2011