MyCRA Specialist Credit Repair Lawyers

Tag: Identity Theft

  • Ordinary Australians are most at risk of identity theft

    A leading commentator on technology issues, Stilgherrian has warned readers of ABC’s opinion column ‘The Drum’ that the idea perpetuated by the media that identity theft is mostly a risk for governments and big business is masking the more significant occurences of identity theft to individuals in Australia and the world.

    “Indeed, the stories that get reported are chosen precisely because they can provide simple narratives and archetypical characters with clear motives, not because they’re significant battles in the perpetual cops-versus-crims war for control of the internet,” he says.

    Stilgherrian says the real truth of identity theft is that the typical victim is an ordinary person who has fallen prey to the vast criminal network which exists on the internet.

    First, these crimes are committed on a vast scale. Criminal processes are orchestrated globally, automated, and supported by thousands of unwitting, disposable minions. If only a tiny percentage of people fall for scams, we’re still talking millions of dollars.

    Second, the bad guys are good at this. Really good. Blaming the victims is inappropriate. “They had it coming to them”?Really?

    Third, it all connects up. Fifty bucks went missing from your credit card precisely because the number had been stolen from a poorly-secured online store. The legitimate website popped up the message from the fake anti-virus product because it, too, was poorly secured and had been hacked automatically by software that probed a hundred thousand websites one night.

    Or, in the case of identity theft, when someone takes out $50,000 of loans in your name? That happens through the gradual accumulation of personal data. Your name and email address from a list stolen from a hacked website, cross-matched with your street address from another, your date of birth from a third, and so on.

    These databases can contain millions of people’s details. They’re traded in shady online markets where people buy the pieces missing from the databases they already have, merge them, refine them, mark ’em up and sell ’em on until eventually there’s enough to turn it all into a credit application. It’s then laundered though “money mules”, people recruited in the belief they’re making money at home with just a computer.

    Stilgherrian’s commentary highlights the fact that identity theft can occur to anyone. We also want people to know these important points:

    * Often, people don’t know identity theft has occurred to them, until they apply for credit and are refused.

    * Often, a person’s credit file can end up with a long list of defaults put there by someone who has used the victim’s good name to obtain credit.

    * Credit file defaults are debilitating – leaving people unable to obtain home loans, personal loans, even mobile phone plans during the term of the listing which is generally 5 years.

    * Credit file damage due to identity theft can be very difficult to rectify. To clear their good name, the identity theft victim needs to prove to creditors they did not initiate the credit – which can be difficult. Not only are victims generally required to produce police reports, but large amounts of documentary evidence to substantiate to creditors the case of identity theft.

    How to avoid identity theft

    Public education can go a long way to lessening the instances of identity theft. The Government’s Stay Smart Online website recommends Australians follow these 8 top tips for increasing their resistance to identity fraud, and avoiding the loss to their bank balance and potentially their good name:

    1. Install and renew your security software and set it to scan regularly.

    2. Turn on automatic updates on all your software, including
    your operating system and other applications.

    3. Think carefully before you click on links or attachments, particularly in emails and on social networking sites.

    4. Regularly adjust your privacy settings on social networking sites.

    5. Report or talk to someone about anything online that makes you feel uncomfortable or threatened – download the government’s Cybersafety Help Button.

    6. Stop and think before you post any photos or financial or personal information about yourself, your friends or family.

    7. Use strong passwords and change them at least twice a year.

    8. Talk within your family about good online safety.

    Where to go for help following identity theft

    Sometimes unravelling the tangled ‘web’ of online identity fraud for the purposes of negotiating with creditors to restore someone’s good name is a minefield that many individuals have neither the time nor the skill set for.

    Credit repairers are more commonly involved in assisting people in cases of identity fraud due to a better knowledge of legislation and ability to work within it when negotiating with creditors over the victim’s financial future.

    For more information contact MyCRA Credit Repairs or call tollfree 1300 667 218.

    Image: Danilo Rizzuti / FreeDigitalPhotos.net

  • Online identity fraud numbers doubled in four years

    The Sydney Morning Herald recently reported one in 10 Australians who use the internet have lost money to online identity fraud over the past year, with those losses reported to total $1.286 billion. The story, titled ‘Online ID fraud losses explode to $1.3bn a year’ featured a survey of 2510 Australians conducted in June by Galaxy Research, for Authentification Service company VeriSign.

    Identity crime is getting quite a lot of attention in Australia lately, with Channel 10’s 7pm Project running a story on identity theft this week. The Government also recently reported survey results on identity theft which reveal 1 in 6 Australians may be affected or know someone who has been affected by identity theft or misuse.

    If the VeriSign Online Fraud Barometer figures are an accurate reflection of identity fraud numbers in Australia – the figures have massively jumped from figures reported by the Australian Bureau of Statistics in its Personal Fraud Survey conducted in 2007. This survey (conducted with over 16,000 Australians) found just over 800,000 people have been victims of personal fraud, with combined losses of $977 million. These figures were across the board for fraud, including but not exclusive to internet use.

    The 2007 ABS figures represented 5% of the population. This new survey demonstrates a doubling in identity theft numbers for the internet alone to 10% of the population in just 4 years.

    This escalation in identity fraud numbers would be a direct result of an increase in internet use.

    Figures from 2008-9 from the ABS on the use of internet in Australian households showed 72% of households had access to a computer. It will be interesting to see what statistics on household internet use will arise from the 2011 Australian Census.

    People are increasingly conducting their social lives, their finances and their business on the internet. So, the freeing of information leads to increased opportunity for criminals.

    The government’s scamwatch website has extensive information on current scams that are plaguing the internet. There are so many forms of scams to be wary of out there, it is frightening.

    Cyber security consultant Alastair MacGibbon, former head of the AFP’s High Tech Crimes unit, broke it down into four main ways people could have their credentials compromised online:

    1. Entering details such as credit card and banking information into a website that is run by crooks.

    2. Handing card details over to a legitimate site but they are then stolen from the site itself through a security flaw.

    3. Man in the middle attacks, where a legitimate site is infected by malware and credit card details are stolen from users as the transaction is underway.

    4. Having a virus planted on your own computer which sucks up credit card details and passwords and sends them to criminals.

    What is not known from the recent figures is how many of those identity fraud victims have had the crime impact their credit rating.

    Typically, when fraudsters take out credit in someone else’s name, the victim is not aware of the fraud immediately. Any kind of credit account (from mortgages and credit cards through to mobile phone accounts) which remains unpaid past 60 days can be listed as a default by creditors on the victim’s credit rating.

    So the fraudster could abuse someone’s good name all over town and it is not until the victim applies for credit and is refused, that they learn about the identity theft and subsequent fraud.

    Credit rating defaults remain on credit files in this country for 5 years. The effect of people having a black mark on their credit rating is generally an inability to obtain credit. Most of the major banks refuse credit to people who have defaults, or even too many credit enquiries, so it is really essential to keep a clean credit record.

    It is actually quite difficult to go about removing defaults from credit files, regardless of the source. Most creditors will tell people listings are only marked as paid if they have been paid and remain there for the required 5 years. But by law in Australia, if a listing contains inconsistencies the credit file holder has the right to negotiate their amendment or removal.

    To clear their good name, the identity theft victim needs to prove to creditors they did not initiate the credit – which can be difficult. Not only are victims generally required to produce police reports, but large amounts of documentary evidence to substantiate to creditors the case of identity theft.

    So as they say,prevention is always better than the cure.

    The Government’s Stay Smart Online website recommends Australians follow these 8 top tips for increasing their resistance to identity fraud, and avoiding the loss to their bank balance and potentially their good name:

    1. Install and renew your security software and set it to scan regularly.

    2. Turn on automatic updates on all your software, including your operating system and other applications.

    3. Think carefully before you click on links or attachments, particularly in emails and on social networking sites.

    4. Regularly adjust your privacy settings on social networking sites.

    5. Report or talk to someone about anything online that makes you feel uncomfortable or threatened – download the government’s Cybersafety Help Button.

    6. Stop and think before you post any photos or financial or personal information about yourself, your friends or family.

    7. Use strong passwords and change them at least twice a year.

    8. Talk within your family about good online safety.

    For people who already suspect they have had their good credit rating compromised due to identity theft, MyCRA Credit Repairs can possibly assist in removing defaults from their credit file. Call us on this toll-free number 1300 667 218, or visit our website for more information www.mycra.com.au .

    Image: photostock / FreeDigitalPhotos.net

  • Is your child’s internet use putting your credit rating at risk?

    Media Release

    18 July 2011

    Parents who allow children and young adults to have free reign of the computer, and who don’t apply meaningful cyber-security measures at home are putting themselves at risk of identity theft, and threatening the family’s good credit rating, a national credit rating repairer warns.

    Director of MyCRA Credit Repairs, Graham Doessel says experience is showing us it is not enough for people to simply download anti-virus software and assume they are protected against identity theft.

    “Every day there’s more and more reported cases of identity theft via the cyber-world, with criminals gaining access to personal information online, in order to commit identity fraud in the victim’s name.”

    “While the internet is an essential tool for children to be competent with, parents have to be realistic about what kind of protection they are affording their family when they allow the control of the family computer to rest solely with their child,” he says.

    Mr Doessel says the dangers of children downloading viruses, participating in scams, releasing credit card details and disclosing personal information and passwords to criminals can all be minimised by parents taking an active role in their child’s internet use, and constantly updating their own cyber-awareness.

    “Gone are the days of people joking about how their children’s knowledge of the internet has surpassed their own – the scary fact  is it’s happened. The threat of criminals taking advantage of a parent’s lack of expertise is real, and people should do all they can to stay ahead of what is becoming the fastest growing crime in the country,” he says.

    A U.S. study released earlier this year, showed that of the 20 million minors who actively used the social networking site ‘Facebook’ in the past year, 7.5 million—or more than one-third—were younger than 13 and not supposed to be able to use the site.

    “Among young users, more than 5 million were 10 and under, and their accounts were largely unsupervised by their parents,” the report revealed.

    It also revealed that one million children were harassed, threatened, or subjected to other forms of cyber-bullying on  Facebook in the past year.

    “Clearly, using Facebook presents children and their friends and families with safety, security, and privacy risks,” the report said.

    Mr Doessel says fraudsters are often extremely good at extracting personal information from adults, so doing the same with children would be a walk in the park.

    “The amount of personal information that many young people have freely available for viewing on Facebook is frightening. We may say it is harmless, but what’s to say fraudsters can’t sit on that information and wait until their victims come of age to commit fraud in their name?”

    “Other parents alarmingly give over their credit card details to their children to use when downloading music or games, or use the same passwords for ITunes that they may use for their bank accounts. This information in the wrong hands can see someone taking out credit in the victim’s name, and completely destroying their financial future” he says.

    Mr Doessel says a major downfall to being an identity theft victim is not only the initial loss of monies, but if the fraud sees accounts in the victim’s name going undetected and unpaid past 60 days, a person’s credit file can be ruined for 5-7 years due to defaults.

    “It need not be major fraud to be a massive blow to the identity theft victim. Unpaid accounts for as little as $100 can have the same negative impact on someone’s ability to obtain credit as a missed mortgage payment. So any misuse of someone’s credit file can be extremely significant,” he says.

    For parents who want to educate themselves about the risks of cyber-crime, the Government has put together the CyberSmart website, encouraging parents and kids to be aware of the dangers the internet may pose for children.

    The Government recommends the close monitoring of all children’s internet use. Some of the other recommendations it makes include:

    – Be aware of and involved in children’s internet use. Bookmark a list of ‘favourites’ for them. Encourage children to share new websites and explore together. Assist them whenever they need to disclose personal information.

    – Talk to children about personal information and why it is special.

    – Consider creating a family ‘fun’ email account separate from all other accounts for the child’s use. This way it can be deleted if misused.

    – Consider using filters, labels and safe zones to manage children’s

    – Install and update anti-virus and other e-security software to restrict unauthorised access to data on the home computer and protect that data from corruption. Turn firewall on, set computer to automatic scan and update regularly.

    If people suspect identity theft has affected their credit file, they can contact MyCRA Credit Repairs www.mycra.com.au for help with obtaining a copy of their credit report, and removing any discrepancies from their credit file.

    /ENDS

    Please contact:

    Lisa Brewster – Media Relations
    Mob: 0450 554 007 media@mycra.com.au

    Graham Doessel  – Director

    Ph: 07 3124 7133

    http://www.mycra.com.au

    MyCRA Credit Repairs is Australia’s leader in credit rating repairs. We permanently remove defaults from credit files.

    Links:

    http://www.consumerreports.org/cro/magazinearchive/2011/june/electronics-computers/state-of-the-net/facebook-concerns/index.htm

    http://www.cybersmart.gov.au/

    http://www.cybersmart.gov.au/Parents/Cybersafety%20issues/Protecting%20personal%20information/Identity%20theft.aspx

    Image: Picture Youth / FreeDigitalPhotos.net

  • Australia’s identity theft prevention improving

    It seems the nation has ramped up its focus on identity theft. We are more fearful of this crime than we are of a terrorist attack, and this is due in part to recent global data breaches which have directly affected the security of Australians. It is also due to the long lasting effects of identity theft and the difficulties that can ensue with our credit rating.

    Improvements occurred to our national strategy on identity theft this week, with the Attorney-General, Robert McLelland announcing two more states have signed on to the Government’s national Document Verification Service (DVS). This service allows authorised government agencies to cross-check identity documents to prevent identity theft or fraud.

    Identity theft occurs when someone uses our personal details without our knowledge for the purposes of fraud. It is occurring more readily than ever with the mass use of technologies such as the internet, social networking, i-phones and credit cards.

    Nowadays we conduct so much of our financial and personal business online and via our phones. When we shop online – we give over passwords, personal details and credit card details. When we want to catch up with someone, we do it via Facebook or Twitter – giving over details like where we are, who we’re with, when we are away from home.

    The reason we do all of this is because it is so darn convenient and fun. Our relationships can change, improve. Sometimes jumping online to pay our bills or pick up some birthday presents can be the only way we have time to get those things done nowadays.

    Unfortunately, it is also a convenient way fraudsters can extract details which may be used in order to set up fake identification in our name. Criminals may only need a small amount of very precise information about us to go about requesting ‘replacement’ copies of our documentation, or to create a fake document that can all be used to obtain credit in our name.

    Apart from the initial monies which may be lost due to fraud, the major consequence of identity theft is the destruction of our credit rating. A bad credit rating means most people are black listed from obtaining mortgages, personal loans, credit cards and even mobile phone plans for the term of the listing which is 5-7 years. Any way the Government can improve its system to protect people from this kind of fraud should be well received.

    This week, Victoria and Western Australia joined the rest of Australia in using the DVS, which Mr McLelland says will allow documents commonly used as proof of identity to be quickly checked electronically by the issuing agency.

    “For example, if you are using your Australian Passport as proof of identity to apply for a copy of a NSW Driver License, the NSW Roads and Traffic Authority will now be able to instantly verify the authenticity of the passport with the Australian Passport Office.  This ensures that documents haven’t been cancelled or personal information falsified.” Mr McLelland says.

    He says the purpose of the DVS is purely to allow authorities to verify document authenticity, and no information will be retained on any central database.

    “A number of State and Territory and Commonwealth Government agencies are already using the system. It’s already possible to verify the validity of Australian-issued passports, visas, and birth certificates and driver licenses from other States and Territories through the DVS,” he says.

    However, according to a recent article by CRN Magazine’s Liz Tay, an audit conducted last year by the Australian National Audit Office found the $28.3 million service had “significant problems” and was rarely used.

    “Auditors reported that the DVS performed less than ten transactions a day – well under initially expectations of one million a day – and was weighed down by issues with timeliness and accuracy,” the article says.

    This comes as the Government released results from an identity theft survey last week which showed 1 in 6 Australians have been or know someone who has been a victim of identity theft or misuse in the past 6 months.

    Let’s hope the government takes the necessary steps to improve its system to ensure it is genuinely going to make progress in the fight against this ever-growing war on identity crime.

    Suspect identity theft? Visit the MyCRA Credit Repairs website for help with what to do and how to repair your credit rating following identity theft.

    Image: Salvatore Vuono / FreeDigitalPhotos.net

  • Australia part of ‘Quintet’ of nations meeting to discuss cyber-crime

    Identity theft is proving to be the new wave of crime, and the worst part of it is – it hits twice, once when the initial fraud takes place, and secondly when the victim’s credit rating – their good name, is tarnished, leaving them unable to take out credit for up to 5 years.

    Cyber-crime is now such a serious global threat – to individuals, businesses and governments that nations will continue to join together in its fight.

    Discussions on cyber-crime are being held in Sydney later this week with Attorneys-General from Australia, the U.S. and their counterparts in the U.K., Canada and New Zealand attending.

    The ‘Quintet’ as it is termed, will meet 14-15 July, and will focus on joint and cooperative actions that can be taken to address the growth of international cyber threats. This is the first time the U.S. Attorney General has been to Australia in several decades.

    Australian Attorney-General, Robert McLelland says fighting cyber-crime is a global task.

    “It is a complex policy and law enforcement challenge because of its transnational nature and use of rapidly evolving technology.

    “The global nature of cyber crime is such that no nation alone can effectively combat the problem, making international cooperation and engagement essential components of an effective response.”

    “That’s why renewed international vigilance is such a priority for all five countries,” he says.

    This meeting also follows the recent introduction into Australian parliament of the Cyber-crime Legislation Amendment Bill 2011. Swift changes to Australia’s laws were made late last month, in order to bring them in to line with the other 40 countries which have joined the European Convention on Cybercrime.

    Increased episodes of cyber-attacks and cyber espionage have sparked these changes, and have prompted many countries to increase their vigilance in what has now been termed a ‘war’ against cyber-crime.

    “In the last six months alone, Australia’s Computer Emergency Response Team has alerted Australian business to more than a quarter of a million pieces of stolen information such as passwords and account details, allowing them to rectify and protect against potential attacks,” Mr McLelland said when announcing the new legislation in June.

    Identity theft is the fastest growing crime in the country, according to the Australian Crime Commission. In addition, an identity theft survey released by the Government last week showed that 1 in 6 people have been a victim, or know somebody who has been a victim of identity theft or misuse in the past six months. The majority of identity theft or misuse
    occurred over the Internet (58 per cent), or through the loss of a credit or debit card (30 per cent).  Stolen identify information was primarily used to purchase goods or services (55 per cent) or to obtain finance, credit or a loan (26 per cent).

    Those are frightening statistics for ordinary individuals who are trying to navigate the cyber-world. To know governments are running up hill trying to catch these crooks and prevent cyber-attacks in their own offices – leaves little hope for those who may not be so computer savvy in trying to protect themselves against identity theft.

    The problem with identity theft is, often it goes undetected until people go to apply for credit and are flatly refused due to blemishes on their credit file they did not initiate. Unfortunately when a creditor places a default on a person’s credit file, it remains there for 5 years, greatly hindering someone’s chances of obtaining further credit. Some are even unable to take out a mobile phone plan.

    Keeping identity theft at bay online

    Education and action are the winning combinations in preventing cyber-crime at home and its corresponding evils – identity theft, identity fraud and credit file destruction.

    Here are some quick tips to help people protect themselves and their credit rating:

    1. Keep virus software up to date. Install automatic updates and perform
    regular virus scans.

    2. Keep privacy settings secure on all social networking sites.

    3. Change passwords regularly and use a variety of passwords for different purposes.

    4. Check all credit card and bank statements each time they come in.

    5. Do not give over personal information or credit card details online unless the site is secure, and company details can be verified.

    6. Be aware of who gets our personal information and for what purposes. What can these people do with the information they are gathering? For instance, is it really necessary for the site we are registering on to have our date of birth?

    7. Visit the government’s stay smart online website, and sign up for alerts.

    8. Check our credit file for free every 12 months. By requesting a copy of our
    credit file from one or more of the major credit reporting agencies,Veda Advantage, Dun & Bradstreet and Tasmanian Collection Service (TASCOL) we can be aware of any discrepancies which may need to be investigated. Often it is only through a credit check which comes back with defaults on our credit file do we realise we have been victims of identity theft.

    9. Report any incident of identity theft, no matter how small, or even if we have been reimbursed for the damage – to the Police. The more of us who report identity theft, the more effective will be our Government and Police response to it in the future.

    For people who are already identity theft victims, it can be difficult to navigate the current credit reporting system to have the offending defaults removed from their credit file.

    MyCRA Credit Repairs can completely remove defaults from credit files that have errors, are unjust or just shouldn’t be there.

    Visit MyCRA for more help with credit rating repair following identity theft.

    Image: jscreationz / FreeDigitalPhotos.net

  • Privacy Commissioner releases findings on Telstra mailout error

    Whenever the public are in danger of having their credit file tarnished due to data breaches which can result in identity theft, it is important to warn them.

    Recent news from the OAIC (Office of the Australian Information Commissioner on a botched Telstra mailout has come forth.

    The OAIC today released the findings of its investigation into the Telstra
    mailing error     which resulted in around 60,000 Telstra customers’ personal information being sent to other customers.

    Australian Privacy Commissioner, Timothy Pilgrim opened an investigation after Telstra notified him of the incident in October 2010.

    Mr Pilgrim found that while Telstra did breach the Privacy Act in terms of disclosing personal information of its customers to a third party, it was not due to any failings of the security of its system, but simple human error.

    The investigation revealed that Telstra had a range of security measures in place to protect customer personal information involved in mail campaigns. These measures include privacy obligations in agreements with mailing houses, privacy impact assessments at the outset of mail out initiatives, and procedures to ensure staff handle personal information appropriately during mail campaigns.

    “In this instance, taking into account the range of measures Telstra has in place for mail campaigns, I consider that the one-off human error that occurred does not mean that Telstra failed to comply with its obligation to take reasonable steps to protect the personal information of its customers. Therefore, I consider that Telstra has not breached this particular aspect of the Privacy Act,” the Privacy Commissioner said.

    The Commissioner also noted Telstra’s fast notification of the data breach.

    Mr Pilgrim did say, however, that if an individual complaint came to them following this matter, the complaint would be considered on its own merits.

    “Incidents such as this one highlight how important it is for all organisations to take steps to protect their customers’ privacy. If such an incident does occur, it is best practice to notify the OAIC as soon as possible and take action immediately to prevent further breaches,” he said.

    This incident brings to light a section of Australian privacy law that needs to improve. Luckily, in this incident, Telstra did the right thing and notified its customers and the Privacy Commissioner of the data breach immediately.

    But when the Sony PlayStation data breach occurred in May, Sony did not notify its customers of the data breach immediately, they took about a week. In that time its customers were vulnerable to identity theft, and there was nothing our Government could do as recourse. Our data breach notification laws currently do not require companies to notify its customers immediately following a data breach.

    The Australian Law Reform Commission has made a recommendation for amendments of this law to occur, and the Government is currently considering it.

    The dangers of data breaches

    If the wrong person gets hold of someone’s personal details, they can potentially build a profile of identity documentation that can give them the opportunity to commit fraud.

    Fraudsters who have access to small pieces of specific information on someone can then build on that profile, eventually requesting ‘replacement’ copies of drivers licences and can then access bank accounts, get credit cards, apply for loans, phone accounts, and in some cases, buy property in someone else’s name. There are some identity theft cases where fraudsters have even mortgaged or sold the family home of their identity theft victims.

    Once someone’s identity has been stolen, their credit file is generally tarnished. This credit file blemish will unfortunately haunt the victim for 5 years while the listing/s remain on their credit file. Credit file blemishes generally deny someone access to most credit for the term of the default.

    It is important for everyone to know they can order a free copy of their credit file report every year from one or more of the credit reporting agencies in Australia, Veda Advantage, Dun and Bradstreet and Tasmanian Collection Services.

    Contact MyCRA Credit Repairs for help with repairing credit files following identity theft.

    Image: Luigi Diamanti/ FreeDigitalPhotos.net

  • Government survey reveals our fears of identity theft

    A Governement survey on identity theft reveals 9 out of 10 Australians are concerned or very concerned about identity theft and misuse. Rightly so, considering the grave danger it poses to a victim’s financial future through destroying their good credit rating.

    The identity theft survey, details of which were released by Attorney-General Robert McLelland, was an independent survey of 1200 people conducted by Di Marzio Research.

    It also showed that 1 in 6 people have been a victim or known somebody who has been a victim of identity theft or misuse in the past six months.

    The majority of identity theft or misuse occurred over the Internet (58 per cent), or through the loss of a credit or debit card (30 per cent).  Stolen identify information was primarily used to purchase goods or services (55 per cent) or to obtain finance, credit or a loan (26 per cent).

    Current statistics from the Australian Crime Commission, points to identity theft possibly costing the Australian economy $1 billion per year. The other cost that’s not so widely reported is the expense to the many credit files that occurs as a result. People have their lives put on hold with credit rating defaults they are not responsible for, stopping them from obtaining most credit for up to five years.

    More and more of MyCRA’s clients have been through the ringer attempting to have black marks removed from their credit file due to identity theft. They are often unable to obtain even a mobile phone in their name if their credit file contains defaults and it need not be large-scale fraud to amount to a finance decline.

    This survey follows the Government’s introduction of new legislation the ‘Cybercrime Legislation Amendment Bill 2011’ into Parliament last week, which amends several current laws in order to comply with the only international treaty on cybercrime. This was an attempt to come up to speed with other countries in the fight to tackle an international wave of cyber-attacks.

    Once an account remains unpaid past 60 days, the debt may be listed by the creditor as a default on a person’s credit file. Under current Australian legislation, defaults have to remain listed on the victim’s credit file for a 5 year period.

    What is not widely known is how difficult credit repair can be – even if the individual has been the victim of identity theft. Unfortunately there is no guarantee defaults can be removed from their credit file. The victim has to provide copious amounts of documentary evidence to prove the fraud.

    How does my credit file get affected?

    It begins by fraudsters gaining access to a victim’s account details, or personal details. This then allows them to access the victim’s good credit rating.

    Often the victim is unaware their information has been stolen until they apply for credit and are flatly refused. Generally, by the time police become involved, a client may have credit applications as a minimum and possibly defaults, mortgages and mobile phones already attributed to them incorrectly.

    Once an account remains unpaid past 60 days, the debt may be listed by the creditor  Australian legislation, defaults have to remain listed on the victim’s credit file for a 5 year period.

    What is not widely known is how difficult credit repair can be – even if the individual has been the victim of identity theft. Unfortunately there is no guarantee defaults can be removed from their credit file. The onus is on the victim to prove their case and provide copious amounts of documentary evidence.

    What can I do to prevent identity theft?

    In order for people to prevent identity theft affecting their credit rating, the best defence they can take is to get educated. They should learn how their personal information can be put at risk, aiming to keep their personal information as secure as possible, both online and off. They should change passwords regularly, conduct regular virus software updates, and be wary of providing unnecessary information to companies online, just to name a few ways. As instances like the Sony PlayStation  data breach shows, people relying on other companies to do it for them can often result in vulnerability to fraud.

    People should also educate themselves on the latest scams that are going around, whilst also keeping an eye on what’s happening with their credit file, being alert to any changes which may occur.

    People can contact one or more of the major credit reporting agencies, Veda Advantage, Dun and Bradstreet and Tasmanian Collection Services (TASCOL) to request a free copy of their credit file. With Veda Advantage, they can also for a fee, sign up to Veda’s Alert system, which notifies the credit file holder of any changes which occur to their account within a 12 month period.

    If people find they are victims of identity theft, probably the best way to go about removing defaults is to enlist the help of a credit rating repairer, who can negotiate with creditors on their behalf, giving them the best possible chance of having the defaults removed completely from their credit file.

    Contact MyCRA Credit Repairs for more details.

    Image: Louisa Stokes/FreeDigitalPhotos.net

  • Identity theft warning: Microsoft phone scam

    Microsoft customers should be alerted to possible identity theft, as a phone scam involving fake computer security engineers who contact them personally offering to fix problems they have detected on their computers escalates in Australia.

    The scam, which Microsoft has been warning its customers about since last year, has even affected the head of CPA Head of Accounting Policy, Denis Pratt – according to a story ‘Microsoft Tech-Support Phone Scam Escalates,’ posted by business website SmartCompany yesterday.

    Mr Pratt told SmartCompany he was contacted on his home phone this week by people claiming to be from “Windows technical support” who knew his name and address. He said the callers claimed they could see problems on his computer, and asked whether he
    had noticed his computer becoming slower recently.

    “They wanted to take over the machine and fix the problems,” Mr Pratt said.

    Mr Pratt was luckily alert to the scam before any damage was done, but many people have lost thousands of dollars giving away credit card details to these fraudsters who claim to provide computer maintenance subscriptions.

    Microsoft Australia released a statement in August 2010, warning Australians about these fraudsters, who conduct themselves in a professional manner, and sound genuine.

    They say the scam typically unfolds in the following manner:

    •A cold caller, claiming to be a representative of Microsoft, one of its brands or a third party contracted by Microsoft, tells the victim they are checking into a computer problem, infection or virus that has been detected by Microsoft.

    •They tell the victim they can help and direct them to a website that then allows the scammers to take remote control of the computer.

    •The cold caller will then spend some time on the computer trying to demonstrate where the ‘problems’ are and in the process convinces the victim to pay a fee for a service that will fix the computer.

    MyCRA’s own Documentation Quality Assurance officer, Christina had also received a strange email last week from a Microsoft ‘gmail’ account, claiming to be advising about a Microsoft system error.

    “I just deleted the email without even opening it – it was obvious to me it was a scam designed for me to send them my personal information, or some kind of virus,” Christina says.

    The message is clear – be wary of anyone who calls or emails to request money or personal details from you and verify their information before parting with any information.

    Microsoft delivered this advice a couple of weeks ago to its international English-speaking countries who had reported problems with this scam:

    • Be suspicious of unsolicited calls related to a security problem, even if they claim to represent a respected company.

    •Never provide personal information, such as credit card or bank details, to an unsolicited caller.

    •Do not go to a website, type anything into a computer, install software or follow any other instruction from someone who calls out of the blue.

    •Take the caller’s information down and pass it to the authorities.

    •Use up-to-date versions of Windows and application software.

    •Make sure security updates are installed regularly.

    •Use a strong password and change it regularly.

    •Make sure the firewall is turned on and that antivirus software is installed and up to date.

    If people do suspect they have been scammed, firstly they should report the identity theft to the Police, and secondly obtain a copy of their credit file, to ensure it has not been tarnished by defaults resulting from identity theft.

    Visit MyCRA Credit Repairs for more information on how to repair your credit file following identity theft.

    Image: Idea go / FreeDigitalPhotos.net

    Image: Maggie Smith/ FreeDigitalPhotos.net

  • Government brings in new laws in war against cyber-crime and identity theft

    The Australian Government yesterday made some swift changes to its laws in a bid to accelerate its effectiveness in fighting the worldwide cyber-crime phenomenon.

    The Attorney-General, Robert McLelland introduced the The Cybercrime Legislation Amendment Bill 2011 into the House of Representatives, which lays down the laws which will include Australia in what is the only binding international treaty on cybercrime.

    Two criminal Acts (the Mutual Assistance in Criminal Matters Act 1987 and the Criminal Code Act 1995) and two telecommunications Acts (the Telecommunications (Interception and Access) Act 1979 and the Telecommunications Act 1997) will be amended, to allow Australia to comply with the treaty.

    Australia will be joining the Council of Europe Convention on Cybercrime, of which more than 40 nations have already signed or become a party to the Convention, including the USA, UK, Canada, Japan and South Africa.

    The Convention allows countries to co-operate in investigations to deal with international crimes committed on computer networks, such as online fraud or child pornography offences.

    The Bill will also give Australian police greater powers to force internet service providers to retain data of customers who are suspected to have committed a cybercrime while the matter is being investigated.

    “The increasing cyber threat means that no nation alone can effectively overcome this problem and international cooperation is essential,” Mr McLelland says.

    The speed of the changes follows a wave of recent cyber-attacks on networks around the globe.

    “In the last six months alone, Australia’s Computer Emergency Response Team has alerted Australian business to more than a quarter of a million pieces of stolen information such as passwords and account details, allowing them to rectify and protect against potential attacks,” Mr McLelland says.

    Other noteworthy cyber-attacks which have occurred just over the last few months include attacks on Sony, Dell Computers, the CIA, and the Australian Government.

    What affect will these changes have on the frequency of identity theft in this country, and consequently the instances our credit rating is destroyed due to cyber-crime?

    Some of the internet-generated identity theft is not initiated on Australian shores. The worldwide web provides easy international access, meaning elaborate schemes intended to commit fraud can be generated from any country and impact ordinary Australians.

    Now that Australia is part of the international treaty, our police will have greater powers to access information which may assist in prosecutions or in detection of
    cyber-crime that has come from other countries which are part of the Convention.

    Nationally, the changes made to our Telecommunications laws should benefit in prosecution for identity theft, by allowing the Police to have access to phone and text messages that they previously were not required to be kept by Telcos.

    The new laws also change a bit of the fine print in terms of what are computer offences, which could potentially ensure criminals who previously may not have been prosecuted due to loopholes in the legislation could now be brought to answer.

    Unfortunately, when it comes to our credit rating, prevention is better than cure. When fraudsters use our good name to obtain credit, the bills which come with that credit that go undetected for greater than 60 days generate defaults on our credit file.

    Hopefully this legislation helps to act as a deterrent for cyber-criminals to initiate fraud. But after fraud has occurred, a great deal of work will still need to be done by us on our credit file to clear our good name, regardless of prosecution.

    What can we do to protect ourselves from identity theft right now?

    The Government has a website ‘Stay Smart Online’, which goes through the things individuals can do to ensure they do not become part of these growing statistics.

    The most important messages we should take in are:

    * Keep our virus software up to date, and run regular scans.  We should set it to automatic updates!
    * Keep our personal information as private as possible.
    * Think before we click on links and attachments.
    * Talk about online safety, and educate ourselves and our family about the risks of
    identity fraud.

    If we protect our identity from cyber-criminals, we protect our good name and our financial future.

    We should also make regular checks to our credit file. We are entitled to a free copy of our credit file every year. We should request this file every year to ensure our good name is not tarnished in any way.

    For advice on identity theft and how it can impact our credit file, Contact MyCRA Credit Repairs. We can completely remove defaults from credit files.

     

    Image: Tom Curtis/ FreeDigitalPhotos.net

    Image: jscreationzs/ FreeDigitalPhotos.net

    Image: Ambro / FreeDigitalPhotos

  • Identity Theft News: The Latest Warnings and Recommendations

    In this post, we take a snapshot look at the current issues around identity theft crime. If you are new to our blog, the reason we are so passionate about identity theft, is because in Australia and indeed many other countries in the world, it has the potential to destroy our credit rating.

    In Australia, if we are the victims of identity fraud, unpaid debts we have not initiated can mount up in our name and if they remain unpaid more than 60 days they can result in ‘defaults’ being listed on our credit file. Often it is not until we attempt to obtain credit and are knocked back do we realise we have been victims.

    Here’s a look at recent news on this issue:

    The Future for Worldwide Identity Theft Prevention?

    Following the AusCERT Conference late last month held on Queensland’s Gold Coast, there came about a number of recommendations for improving security of our personal information.

    Recently we featured comedian Bennett Arron, who spoke at AusCERT about his experience with identity theft and how it can affect our financial future, and indeed our credit file. This was a great example of the issues individuals currently face when they are victims of identity theft.

    Another noteworthy recommendation to come out of the AusCERT Conference, was featured in a story in online IT publication The Register, and was put forward by Eugene Kapersky, founder of Kapersky Lab.

    Kapersky Lab operates a worldwide IT security company. He advised the conference the world needs an internet ‘Interpol’ – “a global,borderless cybercrime unit that would exist with the support [fusion_builder_container hundred_percent=”yes” overflow=”visible”][fusion_builder_row][fusion_builder_column type=”1_1″ background_position=”left top” background_color=”” border_size=”” border_color=”” border_style=”solid” spacing=”yes” background_image=”” background_repeat=”no-repeat” padding=”” margin_top=”0px” margin_bottom=”0px” class=”” id=”” animation_type=”” animation_speed=”0.3″ animation_direction=”left” hide_on_mobile=”no” center_content=”no” min_height=”none”][and] cooperation of international law enforcement agencies.”

    He also advised in the future we could be holders of internet passports as online ID. The security software millionaire said an international online identification system could help in the fight against identity theft and the illicit theft of passport documents online.

    Read more about this story ‘Kaspersky wants Interpol for the web’ published in The Register.

    Identity crime is certainly a global problem. Scams coming out of many countries personally affect ordinary Australians every day via the internet.

    It will be interesting to see what recommendations the Government puts forward after the publication of its first ever White Paper on cyber-security in Australia, and whether it will include a plan to lay down some sort of foundation for international cyber-crime law.

    High Profile Company Directors not Immune to IdentityTheft

    Last week it was reported that the Australian Institute of Company Directors had a computer stolen from its offices which contained the personal data of many thousands of its high profile directors and clients.

    Consequently all were warned to be on the lookout for signs of identity fraud.

    Fortunately, according to the AICD, the data on the computer didn’t contain any credit card numbers, bank details or passwords.

    They did warn those involved to be on the lookout for suspicious phone calls or other communications as they did believe the theft was an attempt at identity fraud on its members via the stolen database.

    Read more about this story ‘AICD’s membership data stolen’ published in IT Wire.

    Sometimes, as with the case above, identity thieves don’t necessarily need access to bank account numbers to gain access to our good name. All fraudsters need is perhaps an email address or telephone number and a bit of basic information about us to attempt to then elicit further information from us (known as phishing scams). They can also use the basic information they have to attempt to set up fake accounts, or to request ‘replacement’ copies of ID in our name.

    To keep up to date with the latest scams, visit the government’s SCAM watch website.

    Police warn of new fraud targeting Australian SuperAccounts

    NSW Police have advised of a current scam targeting Super Accounts, where fraudsters are stealing enough information from unsuspecting victims to transfer their Super into self-managed funds which can then be easily accessed by the criminals.

    Fraud Squad Commander Detective Superintendent Col Dyson says “Superannuation fraud…works well because no-one checks their super…victims rarely notice account changes, making it easy for criminals to change mailing addresses.”

    Unfortunately, unlike bank fraud, there is no obligation for superannuation funds to reimburse victims.

    Read more on this story ‘Crooks siphon super funds,’ on CRN Australia’s website.

    This is just another example of how difficult it can be for laws, individuals and institutions to keep up with what the Australian Crime Commission calls the fastest growing crime in Australia.

    This new fraud may not directly impact our credit file, but when there is no reimbursement for the fraud, it can financially cripple us.

    If we are victims of identity theft, we should always report it to the Police no matter how small the fraud. It is only through reporting this crime that real statistics start to be measured.

    We should also check our credit file, and have any black marks that should not be there dealt with by a professional credit repairer. Contact MyCRA Credit Repairs for more information. We completely remove defaults from
    credit files.

    Image: Salvatore Vuono/FreeDigitalPhotos.net

    Image: thanunkorn/FreeDigitalPhotos.net[/fusion_builder_column][/fusion_builder_row][/fusion_builder_container]

  • What We Can Do to Prevent Identity Theft

    So far this year we have posted about many issues that have arisen concerning the security of our personal information in this age of technology, and the possible dangers identity theft poses for our credit file.

    It is no secret that it is essential to take steps to keep our personal information safe. Why? Because regardless of whether our card/s will be reimbursed should we become victims of fraud, there is still the very real ramification of having our credit file tarnished by any identity fraud – and the inability to obtain credit for up to 5 years can be a huge financial loss.

    Events which have transpired recently have made us all feel quite nervous about who has the potential to use our personal details for purposes of stealing our identity.

    Issues such as the Sony PlayStation data breach, the attacks on Google’s U.S. Gmail account holders and the announcement of almost daily attempts at cyber-attack on Australia’s Foregin Affairs Department (just to name a few) have made us realise that identity fraud is indeed a reality for people in this country.

    A positive to come from these issues is that our Government has decided to step in to give advice via a white paper as to how businesses, government and individuals can make some changes to the internet in the interests of the security of its users.

    What do we do in the meantime? What steps can we take NOW to reduce our chances of becoming victims?

    Recently we read some really great articles from ‘Savings Guide.com.au’ on some practical ways we can all stay safe.

    In their article – “Shopping Online, How to Do it Safely” by Francesca Sidoti, she provides some great tips. We like this one:

    “Choose Your Location. Instinct is a funny thing. You have no hard reasons for why something feels off, it just does. And in this scenario, you should let it be your guide. Just as you wouldn’t hand over money to someone who looks dodgy, you should[fusion_builder_container hundred_percent=”yes” overflow=”visible”][fusion_builder_row][fusion_builder_column type=”1_1″ background_position=”left top” background_color=”” border_size=”” border_color=”” border_style=”solid” spacing=”yes” background_image=”” background_repeat=”no-repeat” padding=”” margin_top=”0px” margin_bottom=”0px” class=”” id=”” animation_type=”” animation_speed=”0.3″ animation_direction=”left” hide_on_mobile=”no” center_content=”no” min_height=”none”][n’t] enter your details in a site that doesn’t feel right. If something seems amiss, do some research. Google the site, or call the contact number. Be wary as well of clicking on ads. Though they’re usually hosted by legitimate companies, it’s worthwhile keeping a critical eye on everything you are entering personal information into.”

    Francesca also published an article “How to Avoid Credit Card Fraud and Identity Theft,” which provides help with how to use your credit card safely. The two tips below are excellent to remember:

    “Don’t’ give your credit card details out over the phone or email. Unless you’ve initiated the conversation. No legit company would ask for those details over the phone/email.

    Don’t sign blank credit card receipts How often do you actually check the receipt you sign? If your answer is ‘not often’, you need to rethink your approach. Blank sections of a receipt can be used to add extra charges, which you will pay for because your signature will be down the bottom.”

    We have compiled a quick list of some other ways we can prevent what has become the fastest growing crime in Australia:

    1. Keep virus software up to date on our computers. Install automatic updates and perform regular virus scans.
    2. Keep our privacy settings secure on all social networking sites.
    3. Keep our passwords and PIN numbers secure. Don’t carry PIN numbers with our credit/debit cards, change passwords regularly and use a variety of passwords for different purposes.
    4. Check all our credit card and bank statements each time they come in.
    5. Cross-shred all personally identifiable information which we no longer need, rather than throwing it straight in the bin.
    6. Buy a safe for our personal information at home.
    7. Do not give any personal information or credit card details to anyone via phone or email unless we are sure the site is secure, and or we can verify the company details.
    8. Be aware of who gets our personal information and for what purposes. What can these people do with the information they are gathering? For instance, is it really necessary for the site we are registering on to have our date of birth?
    9. Keep up to date with the latest scams by subscribing to the government’s ‘SCAM watch’ website.
    10. Check our credit file for free every 12 months. By requesting a copy of our credit file from one or more of the major credit reporting agencies,Veda Advantage, Dun & Bradstreet and Tasmanian Collection Service (TASCOL) we can be aware of any discrepancies which may need to be investigated. Often it is only through a credit check which comes back with defaults on our credit file do we realise we have been victims of identity theft.
    11. Report any incident of identity theft, no matter how small, or even if we have been reimbursed for the damage – to the Police. The more of us who report identity theft, the more effective will be our Government and Police response to it in the future.

    For those of us who are already identity theft victims, it can be difficult to navigate the current credit reporting system to have the offending defaults removed from our credit file.

    MyCRA Credit Repairs can completely remove defaults from credit files that have errors, are unjust or just shouldn’t be there. Contact www.mycra.com.au for more help.

    <p><ahref=”http://www.freedigitalphotos.net/images/view_photog.php?photogid=584″>Image: Chris Sharp / FreeDigitalPhotos.net</a></p>

     

    [/fusion_builder_column][/fusion_builder_row][/fusion_builder_container]

  • Yes, You Can Get A Free Copy Of Your Credit File In Australia

    There has been a lot of chatter recently about Identity Theft, Online Scams and  such and one of the best ways to be on the look out for these issues is to grab hold of your free credit report every 12 months..

    There are 3 main credit reporting agencies in Australia  and the largest is Veda Advantage.Payment past due  (formerly known as Baycorp Advantage and before that CRAA)

    The three credit reporting agencies are:

    Each one of these can provide you with a FREE copy of your credit file within 10 working days upon request.

    MyCRA Credit Repair suggests you put a reminder into your diary on your birthday every year to jump online and grab a copy of your credit file.

    Then check to confirm you recognise each and every entry on on your credit report.  If you do find anything that you don’t immediately recognise, like an application for credit that you don’t recall or a defalt for a debt you know nothing about:

    1. Contact the creditor immediately
    2. find out what it was for
      • If you still have no idea, Contact the Federal Police Immediately !
    3. If you have defaults that are incorrect, unfair or just shouldn’t be there,
      • Dispute them with your creditor and ask that they be removed immediately..

    If you have trouble or in a hurry, you may choose to engage a professional Credit Repair Firm like MyCRA Credit Rating Repair

    For more information on getting a free copy of your credit file, please go to http://www.mycra.com.au/credit-file-request/

  • What thieves can do with your mail

    Media Release: Australians are warned to keep their letterbox locked and all personal information at home secure if they want to reduce their risk of identity fraud.

    A national credit repairer says mail is a prime target for fraudsters, who can gather enough personal information from it to steal someone’s identity and ruin them financially for up to seven years.

    “Crooks are working in gangs, grabbing mail from letterboxes and even rifling through rubbish bins to find our personal details. The information there can often be enough to request ‘replacement’ copies of identification. Once this is accomplished, they can open bank accounts, obtain credit and even mortgage properties in our name” says Graham Doessel, Director of MyCRA Credit Repairs.

    Mr Doessel says identity theft can often hit twice, because if the fraud is not detected early, it can amount to defaults on people’s credit files which are difficult to just wipe away.

    “First we have to prove we didn’t create the defaults – and that can sometimes be really tricky. But until the matter is resolved, we can be black listed from even simple things like getting an internet connection or mobile phone plan in our name,” he says.

    This comes as NSW Police warn residents of inner-Sydney suburbs to lock their letterboxes after up to 1000 mail items were stolen from letterboxes in the area yesterday.

    Detective Inspector Leanne McCusker says residents need to secure their letterbox the way they would a house.

    “You need to be securing your house,” she said yesterday. “Your letterbox contains a lot of valuable property and your identification.” She also advises residents to know their neighbours and call police if they see someone not from the area acting suspiciously.

    The Australian Crime Commission now sites identity theft as the fastest growing crime in the country, costing upwards of $1 billion to the Australian economy, and possibly affecting at least 500,000 Australians per year.

    Mr Doessel recommends people put a few simple preventative measures in place to reduce their risk of identity fraud at home. “We should install a lock on our mailbox. We should buy a shredder and cross-shred every piece of personally identifiable information we no longer require before throwing it in the bin. We should also keep our personal documents locked away at home,” he says.

    “As far as online security goes, we should keep our virus protection up to date on our computers; change passwords frequently; only use secure sites for credit card transactions and be extremely conservative with our social-networking settings,” he says. He also recommends people obtain a report on their credit file regularly.

    “Often credit file discrepancies can be the first sign we have been victims of identity theft. We should obtain a free credit report to ensure that everything on our file is as it should be. That way if there are any problems, they can be rectified while there is no urgency” he says.

    Under current legislation, Australians can check their credit file for free every 12 months from the major credit reporting agencies Veda Advantage, Dun and Bradstreet and Tasmanian Collection Service. A report is sent to the owner of the credit file within 10 working days. For those who are vulnerable to identity theft, they can pay extra with Veda Advantage to have their file on an ‘alert’ system, which tracks any changes to their credit file that may occur within a 12 month period.

    He says identity theft victims should contact the Police immediately, although he says many of his clients don’t, due to embarrassment or because the fraud may not be a significant amount. “Our government may not have accurate statistics on identity theft numbers, just purely because we don’t report it often enough. But reporting to Police may be an essential step when trying to clear defaults if our credit file has been affected,” he says. He says if people find their credit file has been tarnished, a credit repairer can usually give people the best chance of complete default removal following identity theft.

    “Unfortunately in most cases, attempting to remove the default ourselves can do more damage than good by not understanding the process fully, almost like trying to defend ourselves in court. We might do OK, but we only get one shot at it and if we don’t get it 100% right, we will be unsuccessful. There is no appeal in most cases” he says. “Using a credit repairer usually gives people the best chance of getting defaults, writs and Judgments completely removed from their file if they contain errors, are unjust or just shouldn’t be there. Complete removal gives people back their right to obtain credit in the future,” he says. /ENDS

    Read more

    ACCC IDENTITY THEFT REPORT: Click Here

    Image: Felixco, Inc. / FreeDigitalPhotos.net[/fusion_builder_column][/fusion_builder_row][/fusion_builder_container]

  • Sony dangles a carrot to entice users back to its system

    Sony has offered a sweetener in the hope that most of its 17 million users will be enticed back to using its services after the PlayStation data breach last month.

    Sony has offered its customers a ‘welcome back’ package that includes 30 days of free access to PlayStation Plus, 30 days of free access to Music Unlimited by Qriocity, as well as free identity theft monitoring from Debix, and a promise of free downloads in the future.

    In the video message below to customers, Executive Deputy President of Sony, Kazuo Hirai says all PS3 customers must change their PSN and Qriocity account passwords upon their return.

    “Your new password can only be changed on the same PS3 in which your account was activated or through validated e-mail confirmation,” Hirai said. Customers will also have to update their PS3 firmware to receive the latest security patches,

  • Privacy Commissioner Investigates Sony Data Breach

    On April 27 I posted about the Sony PlayStation data breach which occurred on April 17 and has possibly affected PlayStation users worldwide.

    To update this issue, yesterday the Australian Privacy Commissioner, Timothy Pilgrim revealed findings from his initial investigation into the data breach:

    “Yesterday, Sony Online Entertainment (SOE) advised me it had discovered that hackers may have obtained SOE customer information. SOE has said that the information was held in an out dated database from 2007 and contained approximately 12,700 non-US customer credit or debit card numbers and expiration dates.  It is unclear at this point how many of these customers are Australian citizens or recipients.”

    Australian Victim Ot The Sony PlayStation Identity Theft Issue Lost $2000

     “This latest incident is extremely worrying. I am particularly concerned that it involves information stored on an out of date database. It reinforces my view that organisations need to consider further limiting the amount of information they collect and store about people. They should also make sure that information is destroyed when it is no longer needed as is required under the Privacy Act” he says.

    In my last post I called for Australia’s legislation to come up to date with what is occurring worldwide. Being part of the technological network means we are part of the global network and therefore we cannot deny that security threats in any country and particularly the United States could have an impact on us here in Australia as it has done in this instance.

    In fact, current statistics show that high-tech crime costs Australians $15billion per year, and the Australian Crime Commission now sites identity theft as the fastest growing crime in Australia.

    What is encouraging is the Australia Law Reform Commission’s recommendation that consideration should be given to the introduction of mandatory data breach notification laws. This means that when something of the nature of the Sony PlayStation data breach or the recent Dell Computers data breach occurs in the future, there will be an obligation for the company to notify its customers in this country of the occurrence.

    What is also being considered by the Government is more power for the Privacy Commissioner to impose penalties following an ‘own motion investigation’, such as enforceable undertakings and civil penalties for serious breaches of privacy. So if this part of the recommendations becomes legislation, the Privacy Commissioner would be able to penalise those companies which are found liable in relation to privacy breaches.

    In the meantime, Sony recommends its customers take these steps to help protect their personal data:

    “For your security, we encourage you to be especially aware of email, telephone, and postal mail scams that ask for personal or sensitive information. Sony will not contact you in any way, including by email, asking for your credit card number, social security number or other personally identifiable information. If you are asked for this information, you can be confident Sony is not the entity asking.

    When the PlayStation Network and Qriocity services are fully restored, we strongly recommend that you log on and change your password. Additionally, if you use your PlayStation Network or Qriocity user name or password for other unrelated services or accounts, we strongly recommend that you change them, as well. To protect against possible identity theft or other financial loss, we encourage you to remain vigilant, to review your account statements and to monitor your credit reports” says Sony’s Patrick Seybold.

    In Australia we can check our credit file for free by obtaining a credit report with credit reporting agencies Veda Advantage, Dun & Bradstreet or Tasmanian Collection Agency. A copy of our credit rating is then sent within 10 working days. Or for a fee they will supply one urgently.

    If there are any errors on this file, including evidence of identity theft, it is possible the credit file can be repaired.

    Contact www.mycra.com.au for more information.