Free Money Finance

Last Thursday I got a call at work from FIA Services, the owners of the once-named Schwab 2% card (which I currently use as my "all other" card when I can't get a higher cash back rebate somewhere else.) It was from their fraud department. They had noticed some unusual charges and wanted to know if they were legitimate. (BTW, I knew he was legit from the information he had. In addition, I never gave him any personal info and he, in fact, was careful giving me any too. We simply discussed charges.)

I had received a couple calls like this in the past few years, but each time they were instigated by some unusual charging activity on my end (lots of charges in one day, high amounts of charging in one day, charges away from home, etc.) This time was different.

It appeared that three charges were suspicious and these are what drew FIA's attention to the card. After talking to the fraud investigator, I could account for all the charges but these three. That said, I didn't know what my wife had charged that day, so we needed to talk to her. He tried to call her with me on the line, but she was not home. I agreed to talk to her that evening and call them back.

When I got home, we talked and confirmed that the three charges were not ours. They were as follows:

• $1 charge to a charity
• $10 charge to an educational company
• $1,300 charge to American Airlines

I called the credit card company and they said charges like this are very common when the number has been stolen. Thieves try small test charges to see if the card is valid. Once they confirm it is, they then make as many big purchases as possible as quickly as possible. Looks like our thief was planning a trip.

The guy walked me through the next steps. I would be seeing both charges and credits for those charges on my statement. I'd also be getting a form in 7 to 10 days. I'd need to sign it and confirm that the charges weren't mine. And, of course, the cards would be cancelled and new cards issued.

I had four auto-pays set up on the card and asked if they would transfer to the new one. They wouldn't. Ugh. So I need to go through the pain of contacting the companies and giving them the new card numbers. Just something to think of for those of you who have multiple auto-pays -- be sure you have a list of who you have them with, how to contact them, your passwords, etc. handy in case you need to change them for something like this.

Next it was time for the clean up and to make a security check of our finances.

The next day I scanned all our computers (home and work) just to be sure our computers were secure. I also grabbed our credit reports (one for me and one for my wife) from AnnualCreditReport.com. I had been meaning to review our credit reports anyway so this gave me good reason to. I'll be pulling one of the free reports every four months now will keep a close eye on them. It's probably simply a stolen credit card and not ID theft, but I want to be sure and take no chances.

I also checked my online bank and investment accounts. It was highly unlikely that any of these were compromised, but it's better safe than sorry. They all appeared to be fine (BTW, I check each of these accounts at least once a week anyway, so I'm fairly on top of their status.)

This is the first time I've ever had a credit card number stolen (FYI, we had our cards, so it was simply the number that was stolen, not the physical card) -- and I've been using cards for almost 30 years now. My boss says he's had it happen three or four times in his career.

How about you -- have you ever had a credit card number stolen? What did you do? Or do you have any advice for me on what else I should do to be sure everything is safe and secure?

My post on How to Protect Yourself if You Use a Debit Card generated this comment that I thought was worth sharing with all of you:

I work in credit card fraud monitoring and I can share some tips for keeping your debit card safe. Fraud on a credit card is an inconvenience - we shut down the card and file on claim on the charges and you never have to pay on those charges at all. Fraud on a debit card can be devastating as the funds can take a while to get returned to your account and sometimes you have to go through more steps to prove that the charges aren't yours. Now that I know what I know about how card fraud can happen, I:

1. Never use my debit card at a gas pump. Setting aside the fact that some gas stations can put a hold of up to $100 or more on your account while the transaction is pending, gas pumps are one of the easiest and most popular places to place skimming devices that are used to read your card info and make a counterfeit card.

2. Never use the card in a transaction where the card leaves my hand/sight. If they have to run it in the back, they get my credit card not my debit card.

3. Never use the card to hold a tab open or as any sort of collateral (ie. they keep your card until you return the darts or pool cues at bar).

4. Never use my debit card at a stand alone ATM. If it looks like someone brought the machine in on a truck and dropped it off there, the risk is that they may have. If the ATM isn't built in and sponsored by my bank or another well known bank, I don't use it.

5. Don't use my card with small independent vendors. I am happy to shop at the local farmers market and support my community farmers but I won't use my debit card there. I don't think they are going to try and steal my money but they don't have the security resources that bigger merchants have and that puts my account at risk. Plus it saves them money if I just pay cash as they don't have to pay transaction fees.

6. Always pay attention to how the credit card machine looks. If it seems to be falling apart or held together with tape or looks tampered with or damaged in any way, I won't use my debit card there.

7. Always cover my hands when I enter the pin number. You know those pin head size cameras they always have on tv shows? They really exist. No one gets to see my pin number but me. It should also go without saying that putting your pin # on a piece of paper and taping it to your card is a really bad idea. If you absolutely have to write it down (not recommended), make sure it is locked up safe at home somewhere and not tucked in your wallet or purse. You would be shocked at how fast a thief can empty your bank account when they don't even have to bother guessing your pin number.

Merchants and banks take your security very importantly because it affects their bottom line as well. They want to keep your information safe and most do a great job. But it never hurts to help them on that front by using the card wisely and being vigilant about your own security.

Sounds like a decent set of safety measures to me. What do you think?

Yahoo lists ten things not to keep in your wallet or purse as follows:

• Social Security Card
• Your Passport
• Passwords/Pass codes
• A Non-Password Protected Phone
• Your Checkbook
• Too Many Credit Cards
• Too Much Cash
• Gift Cards/Certificates
• Jewelry or USB Devices
• Receipts

Here's what we do (between my wife and me):

• Social Security Card and Passport - Seriously? Does anyone carry these around? BTW, I like their tip to copy your passport when you travel and carry the copy.


• Passwords/Pass codes - Nope, neither of us carry these.


• A Non-Password Protected Phone - My phone has a "connect the dots" pattern to get it unlocked. My wife's Tracfone doesn't, but if we lost it it wouldn't be the end of the world.


• Your Checkbook - My wife carries hers in her purse. I rarely carry mine on me, but I do often have it in my briefcase when I travel.


• Too Many Credit Cards - We use three main cards at this time and carry them with us wherever we go since we pay for most purchases with a card.


• Too Much Cash - I don't carry any more than I'm willing to lose (like the article suggests) and my wife carries very little at all.


• Gift Cards/Certificates - My wife carries these for us, but again, if we lost them we wouldn't be devastated.


• Jewelry or USB Devices - We both wear little jewelry and don't carry USBs with us, though I do in my briefcase when I travel for work.


• Receipts - Really? We carry these all the time (I put them in my money clip.)

I think if you carry what's needed to get you along -- cash, credit cards, etc. -- and don't take along the obvious (Social Security card, passport, etc.) then you'll be fine in most cases.

What's your take on the list?

MSN Money lists the best and worst credit card issuers based on how much financial protection they offer and how well they help against potential fraud. Their list:

Best (score out of a possible 100)

1. Bank of America (87)
2. Discover (74)
3. U.S. Bank (73)
4. USAA (69)
5. Capital One (68)

Worst

1. State Farm (43)
2. Associated Bank (46)
3. SunTrust (47)
4. Cabela's WFB (48)
5. RBS (49)

Interestingly enough, I don't have cards from any companies on this list -- good or bad. But if I had one on the "bad" list, I think I'd re-consider having/using it. Yeah, there's a $50 limit on the financial damage someone can do if they steal your card, but if they somehow get into the company's system and get your personal information, a lot more damage can be done.

By the way, I didn't even know State Farm issued credit cards...

Any of you have cards issued by any of these companies?

We've already covered why I like credit cards more than debit cards and one of the reasons is financial security. But now that I joined a credit union to get a high-interest checking account, I HAVE to use a debit card for 10 transactions per month. So I'm looking for the safest way to use a debit card -- and Clark Howard happened to recently share his thoughts on how to protect yourself if you use a debit card. The details:

If you are someone who would be financially devastated if your bank account were emptied, I suggest you open a second account and tie your debit card to it. Then fund the second account only with money that's used for debit card activity, so your principal account won't be at risk in the event of a breach. That's the best way I know to protect yourself.

To me, this plan:

• Seems like it would work.


• Seems like it would be a huge hassle to set up and manage.


• Seems like it would get me interest only on the relatively small amount (otherwise, why bother?) I'd have in the debit card account -- which is contrary to my strategy in the first place (which is to get the 4% interest on a decent-sized balance.)

So my questions to you debit card users are as follows:

• Does anyone do anything like this?


• Is it really that big of a deal? If you're careful do you really have any sort of security issues?


• Anyone ever had their debit card stolen? What happened?

Here's a scary piece from Yahoo titled Secrets of a Former Credit Card Thief. I'll share some highlights from this interview with a convicted credit card and ID thief/expert. Let's start with this one:

I always recommend against [debit cards]. With debit cards, it's your real money in your bank account you're playing with. So if someone gets your debit card information and uses it, your cash is gone until you fill out a lot of paperwork and persuade the bank to give it back to you. Credit cards are much better at protecting you against fraud. And if you're worried about debt, you can always pay them off every month.

Another reason (in addition to the rewards) to use credit cards over debit cards. It's bad enough for a thief to have access to your credit (where you're protected to a $50 hit at most) -- just imagine if he could tap into your checking account. I bet the bank will give you a huge run-around to try and get your money back.

You've probably heard this before, but the most important thing really is to watch your accounts. And I don't mean just checking your statement once a month. If you're only checking your statement once a month, someone can start using your card at the beginning of the billing cycle, and they can do a lot of damage before you catch it. You're talking thousands of dollars, and it will be a lot harder to catch them and dispute it. I use Mint.com, which is a free aggregation service that allows you to put all your accounts on there and monitor everything at once. I check that every day. It's also a good idea to check your credit report at least twice a year to make sure no one has stolen your identity.

I need to be more vigilant about this. I check my accounts probably once a month and our credit reports once a year.

A more recent issue is the free wireless offered all over the place. If you're using an open Wi-Fi connection, you should pretty much have the expectation that there is no security.

Starbucks? Panera? And on and on...

All financial services companies have two-factor authentication. So you typically have to put in a password plus something else. A lot of banks use questions, but that can actually give you a false sense of security because you can find out a lot of information about people online. So maybe this is extreme, but for those questions, I make up stuff. I don't put in my real information. For example, a common question is: "What city were you married in?" Well, I'm not married, but I'll answer that question so there's no way anyone could possibly know the answer. I try to make sure at least one of the questions has a made-up answer.

I found the "fake answer" thing suggestion interesting. Then again, how do you remember all the fake answers you give around various websites?

ATM skimming is the big thing right now because it's cash, and cash is king. Basically, that's where someone puts a card reader on the ATM machine, captures your PIN, then goes and drains your bank account. The skimmer device goes over the card slot, and it's designed to look like part of the ATM. Some of the equipment now is very good and it's hard to tell the difference between that and a real machine. So what you need to do is try to use the same ATM every time, and watch out for anything on the machine that looks out of the ordinary, especially something stuck on the front where you put your card in. Generally, I like to use ATM machines at banks rather than convenience stores or a bar or club. There have been incidents where thieves installed their own ATM machines in places with skimmers inside them. That's much less likely to happen at a bank.

"Thieves installed their own ATM machines in places with skimmers inside them?" Really? The creativity of these criminals is simply amazing (in a bad way.) What's next, will they be opening their own banks?

Personally, I haven't used an ATM in years. We used to go to the bank to get cash, but now that our soccer referee jobs pay in cash, we never need to visit the bank. In addition, we have a lot of $1 gold coins too.

The biggest thing [the banks] could do is get away from using magnetic stripes. They aren't that secure and anyone can get a magnetic stripe reader (a skimmer) for $5 to $10. The smart chips that are widely used in Europe and internationally are much more secure and harder to hack. They offer near 100 percent protection against fraud, at least from a skimming point of view, and they also require a PIN. But the credit card companies have done the math. They think people will use their credit cards less often if they had to put in a PIN. It might eliminate a lot of the fraud, but there would be less card use and they would end up losing money. So they're actually doing just the opposite, moving to a system where you can just have your credit card in your pocket -- you don't even have to swipe it to use it. The problem is, that's very unsecure. Anyone with equipment can sit out in their car and pick that up.

I saw a video where a guy was walking up and swiping card info from people's cards that were INSIDE THEIR POCKETS. The cards had frequency chips that allowed him to simply brush by the person and get the data. Scary.

A few other tips:

• Stick to buying from sites you know.
• Be wary. If an email looks fishy, it probably is.
• American Express is a bit harder to hack because retailers often require more info to use it -- and not all the info is on the magnetic stripe.
• Use cash (by the commenters -- though they do admit that cash can be lost/stolen and never recovered.

Ugh. If it's not one thing, it's another...

If it isn't bad enough that we all have to protect ourselves from problems related to identity theft, now we also have to watch out for the data on our kids. Kiplinger suggests how to protect your kids from ID theft as follows:

• Guard his or her Social Security number.
• Be careful about posting information about your child.
• Be careful with the birth certificate.
• Check your child's credit report.

Great. Now I have to check credit reports on myself, my wife, AND my kids. Ugh.

Kiplinger also lists some signs that your child's ID has been stolen as follows:

• Your child receives unsolicited credit offers.
• Your child receives letters from debt collectors.
• The IRS sends you a letter stating that the Social Security number listed for your child on your tax return (or the child's) is a duplicate number.
• The bank tells you, when you go in for the first time to open an account for your child, that an account with your child's Social Security number already has been opened.
• Your health insurer says it won't cover a procedure for your child because it covered that procedure before (even though your child never had that procedure).

Yikes! That last one sounds particularly dangerous. If your child's medical records get messed up, it could be a matter of life and death (if the doctor makes a false move based on inaccurate information.)

Fortunately, I haven't had any of these happen, so I'm assuming that my kids' identities are safe. But I think it's also likely that a stolen ID on a child can be well below the radar for YEARS because no one is really monitoring their information.

Anyone had any experience with this (having a child's ID compromised)? Any words of advice for the rest of us?

Here's a piece from Yahoo that focuses on what your office photocopier may know about you. The short version is that many copiers store copies of documents in their memories and these documents can be accessed by a whole host of people (office personnel, repairmen, subsequent owners of the machine, thieves looking for such information when the copier is thrown away, etc.). The highlights:

Did you know that most office photocopiers are built to save digital images of documents? It's true.

When CBS News recently purchased some used photocopiers that were destined for new customers, their computer technician was able to easily retrieve thousands of pages of sensitive documents from their hard drives: perfect images of personal medical records, pay stubs, and tax forms -- even the blueprint of a building near Ground Zero and reports of sex and drug crimes from the Buffalo, N.Y., police department. There were home addresses, social security numbers, and medical histories aplenty.

The data isn't particularly easy to view and sort, but a thief who knows what he's looking for can download free software from the Internet that can be used to mine this treasure trove of personal data.

The article goes on to highlight:

• Many copier makers either provide or are working on providing encryption for stored documents. But even so, the copier administrator needs to know how to turn the encryption feature on.
• Fax machines also store information and can pose a similar problem.

So, what can you do?

The article suggests asking the copier administrator how the machine is set up before you use it. Yeah, like he's standing right there waiting for questions about copier security. Ha!

Personally, we use a combination printer/copier at home to make sensitive copies. Yes, the documents are probably stored on it as well, but at least we have some control over them.

We NEVER have sensitive documents copied at Kinkos, Staples, etc. because you never know where that information is going. One main problem I see over and over: people copying their tax returns at public places like these every year. Yikes!!!!

Let's face it, there's really nothing we can do to make our information completely safe in the technology age we live in. But by being a bit prudent, we can certainly do all we can to protect our vital personal information from identity thieves.

The following is a guest post from Kris, a freelancer who writes about money management tips for Credit Card Compare.

Security threats to your online shopping experience continue to grow and change as technology, and the predators that thrive on unwitting or unsuspecting consumers, continue to evolve. As e-commerce becomes an increasingly large part of our lives, we look to a number of resources and methods to help keep us safe while doing our online shopping. To decrease the chance that your personal information might fall into the wrong hands, consider the following tips that could help you increase security during your online browsing.

1. Look for security features and information When shopping online, search a website for information regarding what they do to protect your personal and financial information. You might want to check out their privacy policy, as well as their payment information page before buying anything, just to find out what information is required as well as how it is protected. Before you enter your credit card details, always check that the checkout is secure: look out for a padlock on the browser and https in the address (the 's' signifies a secure server).

2. Links Clicking on links is probably the easiest way to be led astray during your internet shopping. When online shopping, it only takes one or two misguided clicks to land you on a site that could prove dangerous. Make sure you understand what you are clicking on and keep an eye on the domain name on your web browser to ensure you are still on a trusted site.

3. User agreements Yeah, yeah, I know. Who has time to read all that legal mumbo jumbo, right? Well, when it comes to your personal and financial security when shopping or signing up for membership on a website, just as with any paper contract, it's important to know what you're signing. How sites will use your personal and financial information, restrictions, fees, user rights, and a slew of other important information is contained within those paragraphs. If nothing else, scan the subheadings for pertinent details about fees, charges, and security.

4. Advertisements If a site you are shopping on is jammed full with advertisements and pop-ups, you might want to be cautious, as this can be a warning signal that the site is more reliant on advertising revenue than actual product sales. Linked advertisements can lead you to insecure websites designed to capture your personal and financial information.

5. PayPal While most online stores have secure payment checkouts to keep your financial information safe, using PayPal can be a great way to get around having to float your information out into cyberspace. Unfortunately, not all online shopping sites accept this form of payment yet, so until then we are still forced to use credit cards at times.

6. Trusted sites & user reviews Attempting to shop on sites you're familiar with and have used before, can help you avoid scams, viruses, and other pitfalls. If you've used a particular site before and haven't had problems, it doesn't mean you won't eventually, but chances are probably better than on a site with which you are unfamiliar. If unsure, read unbiased reviews (not on selected by the site itself) by other users to see whether they've encounter issues with the site or not.

7. Virus scans & security software I run a virus scan on my computer each evening when before I go to bed. It makes me feel better about what might be lurking in the depths of my computer. Security software can also allow you to create and utilize features such as firewalls and parental controls, monitor you computer's security status, and check websites to determine whether they are trusted sites or not.

8. Shop after scanning Doing your shopping right after running your virus scan can provide some peace of mind as to whether you have any harmful spyware or viruses at work on your computer. Detecting such potentially harmful items on you computer early can decrease the threat to your security while shopping online.

9. Browse before you buy When shopping, take your time, look at various sites, and check for better deals before you commit when doing your online shopping. Not everyone or everything on the internet set to threaten your security is illegal. Your financial security is important, but if you're willing to pay $5000 for a television that's only worth $500, I'm sure someone on the internet would be willing to take the offer -- and that wouldn't be their fault, it would be yours.

10. Common sense If something doesn't seem right to you about a website, don't hesitate to investigate further. Conduct your due diligence. Remember, no one is there to hold your hand when you're internet shopping. Ensuring you and your personal and financial information remains safe, is up to you.

Here's a guest post from IdentityTruth.

With Black Friday and Cyber Monday fast approaching, consumers are entering into the most active spending period of the year. Reinforced by the soft economy, this is "high season" for identity theft with identity thieves seeking to take advantage of shoppers. Identity theft generally rises during the holidays because thieves assume that consumers aren't paying attention to their credit card purchases, debit card purchases, receipts etc. as closely.

IdentityTruth, the leading provider of a new breed of services to help consumers safeguard their privacy and identity, is offering basic tips to help consumers avoid putting their identity at risk during the 2008 holiday season. In addition to watching budgets this season, consumers also need to be vigilant in the face of possible identity theft.

• Use credit cards instead of debit cards:  Under the Fair Credit Billing Act, Credit Cards provide consumers protection again fraudulent charges and your liability is limited to $50. You also have the right to dispute charges and withhold payment during investigation. However, debit cards are entirely different.  Although they market themselves to deliver the same protection, they are not required to by any law.  Bottom line, your liability for fraudulent charges is the entire amount in your checking account as well as the credit line you have been authorized to receive.

• Use a single credit card to consolidate your purchasing: The more credit cards open in your name, the greater the risk that a thief will obtain the account information for one (never mind that having numerous cards with big lines of credit can be a bad temptation and can actually drag down your credit score--even if you don't have balances). It's also easier to monitor a single statement for signs of fraud, and you won't incur the annual fees associated with having multiple cards. Make sure to cross-check all your receipts against your statements to see that they match.

• Be sure to write "SEE ID" on the back of credit cards: This simple step can help to foil thieves if the card is lost or stolen, and might even help to catch the thief if your card is taken.

• Shop on secure sites and be wary!:  While the majority of identity fraud occurs offline, identity theft is also a problem online. You must exercise caution when shopping on the web. Stick to sites that you know are legitimate, and if you are trying a new site for the first time, here are a few things to look for: the URL should have "https" in the shopping cart; there should be a lock icon on the bottom right hand side of the window and look for icons that indicate site safety (the Better Business Bureau, VeriSign and Hacker Safe icons).

• Watch out for "phishing" and "vishing" scams: These scams can be a real problem, as identity thieves try to play on people's generosity during the holiday season. Phishing emails often take the forms of requests purporting to be from a bank or credit card company; they ask you to "verify" account information such as login and password or they request a donation or assistance for the less fortunate during the holidays. Vishing scams--which involve fraudulent calls—seek to exploit consumer concerns over fraud by seeming to offer fraud prevention assistance. The bottom line: no legitimate vendor will ask for your login and password via email or on the phone.

• Be careful when using ATMs: Only use ATMs with monitoring cameras, such as those in bank lobbies. Avoid kiosk ATMs, those freestanding units often do not have cameras and are statistically more likely to be infected by skimmers (electronic devices that allow thieves to record account and PIN numbers). "Shoulder Surfing" can also be a problem at a crowded mall. While you assume that the man behind you is uncomfortably close because of mall crowding, he may actually be looking over your shoulder trying to get your login.

• Place fraud alerts to prevent new credit card accounts from being opened: Free fraud alerts placed on your credit report are good for 90 days (if you can demonstrate that you've been an identity theft victim, they can be set for 7 years) and, in combination with other proactive measures, can be used to help to prevent identity theft.

Here's a comment someone recently left on my post (over a year old now) titled Mvelopes Backs Up Its Product:

Just wondering about the security of Mvelopes. It asks for ALL financial institutions plus password, which obviously, I understand they need to make this work. But, concerned that my information might get into the wrong hands.

I've had many people leave positive comments about Mvelopes (including Quicken users) but this comment brings up a good point -- is your online data truly safe?

If you ask any service like Mvelopes, they'll assure you that your data is 100% safe and can't be stolen. But isn't that what all the banks, credit card companies, retailers, and the like tell us? And how often do we hear of another million names/data stolen? Almost daily, isn't it?

Personally, I don't use online services for just this reason -- too much vital information in one spot is just too risky for me.

How about you? Are you fine with having vital financial information online? Anyone ever been a victim when one of these sorts of services has been hacked or compromised in some sort?

The Simple Dollar just posted three tips on what to do if you lose your wallet as follows:

Tip #1: You can take preventative action right now to make the loss of a wallet easier. Just clean out your wallet down to the bare minimum, then photocopy or scan both sides of everything in your wallet. This will help you to easily remember everything that was misplaced and easily deal with the consequences of card cancellation and replacement.

Tip #2: Carry minimal identification in your wallet as a preventative measure. Try to avoid having your Social Security number in there if at all possible, as that will make identity theft much easier if you were to lose it. You’ll probably have a driver’s license in there, but make sure that it doesn’t include your SSN and has only minimal identifying information on it.

Tip #3: Keep your wallet clean. The “Costanza wallet,” overstuffed with receipts and notes and junk, is a personal security concern. Get rid of all of the junk you don’t use regularly - your wallet is not your briefcase.

I follow these rules except for the photocopying (which I need to do.) Here's what's in my "wallet" (which is really a money clip with a slot to hold four credit-card-size cards):

• Cash -- usually have between $60 and $100 on me since it's assumed in my family that I'm the bank
• Costco membership card
• Driver's license
• Blue Cash from American Express card
• Chase Freedom Cash Visa Card

That's it. So if I ever lost it, there would be a minimum amount of damage.

My wife's purse is another matter completely. I think there are things from the '70s in there (I'm afraid to look), so who knows what we'd lose. I need to ask her to clean it out for safety's sake.

Imagine that your laptop computer is stolen. Think it has anything of use on it to identity thieves? Yeah, probably -- like EVERYTHING!!!!! So, what should you do if your computer is taken? Here's what Yahoo suggests:

• Change every password you can think of. If you have a copy of your bookmarks file (hopefully you've made a backup), go through and systematically change every login password on the list. Remember it's not just banks and email accounts that will need the update, but also shopping sites like eBay and Amazon.com and even social networking sites, too.

• Cancel and replace your credit cards, at least any that you've ever used online.

• Add a fraud alert message to your credit report, which can help protect you in case someone tries to open a new account under your name.

• File a police report and get a copy of it (critical if you're filing an insurance claim).

• Keep an eye on Craigslist and eBay for your laptop. You'd be shocked how many stolen laptops are unloaded here, and often very quickly.

I don't have a home laptop, but I have a work one. I take it with me when I travel, and while I'm not a freak about it, I do keep it close at all times while traveling from one place to another. If it was ever stolen, my goose would be cooked!

For more thoughts on identity theft, see these links:

• How to Keep Your Child's Identity Safe

• Keep Identity Thieves at Bay during the 2008 Tax Season

• A Consumer’s Guide to ID Theft Awareness and Avoidance

The following appears courtesy of Kroll Fraud Solutions.

The FTC estimates that as many as nine million Americans have their identities stolen each year, so chances are high that you or someone you know has fallen victim to what has become one of America’s fastest-growing crimes.  While there are no guarantees as far as prevention, there are certain steps every consumer can and should be taking – before and after the fact – to greatly reduce their potential risk. 

ID theft expert Brian Lapidus, chief operating officer of Kroll’s Fraud Solutions, has unique frontline experience helping today’s businesses and consumers safeguard against and respond to data breaches.   

Below he offers some important advice that every consumer should know about protecting themselves from the damages of fraud.   At Kroll, Lapidus oversees a highly-skilled team that includes veteran licensed investigators specializing in supporting breach victims and restoring individuals' identities to pre-theft status. 

1. Beware the word ‘prevent.’ No person and no product can prevent identity theft. As long as criminals can benefit from stealing, there will be theft. Sensitive personal information (SPI) is everywhere, housed and archived in a mind-boggling variety of ways. Individuals and companies can reduce access to SPI and improve safeguards around it by working to change how we share, collect, store and dispose of information. 

2. There are no ‘guarantees.’  This mantra holds true for a lot of things in life and dealing with identity theft is no exception. While a number of instances of fraud can be restored to pre-theft status, some identity dilemmas simply can’t be fixed. If you’re on the ‘no fly list’ thanks to an imposter or an error, you’ll stay there. A third-party solution cannot deliver a remedy.

3. Watch for ‘shoulder surfers’ and ‘skimmers.’ Shield the entry of personal identification numbers (PINs), and be aware of people standing entirely too close by when using your credit or debit card in public. Especially with the advent of cell phone cameras, a sneaky, shoulder surfing thief can get your private information pretty easily, if you’re not careful. It’s also advisable to use teller machines that are familiar to you, so you are in a better position to identify when the equipment looks different or doesn’t “feel right.” Your increased awareness may reveal a skimmer’s attempt to steal PINs and banking details at that site.

4. Keep your Social Security card safe at home. Unless you’re on your way to fill out a job application, there are very few reasons to carry around the crown jewel of SPI. At lunch a few weeks ago, the woman beside me opened her wallet for a credit card and there was her Social Security card, too. Remember, ID theft and fraud are not exclusively credit-related – thieves can use a clean Social Security number to construct a whole new life.

5. Destroy before you dump that old computer. Erasing data just enables the computer to write over that space again; it doesn’t actually eliminate the original bits and bytes. Physically remove the hard-drive to ensure you’re not tossing out or passing along your personal details. Our company is often called upon to recover data from an erased or damaged drive; we’re very good at it – and so are some professional thieves.

6. Choose ‘forget me’ instead of ‘remember me.’  How many Web sites do you frequent that invite you to enable an automatic log on the next time you visit? Don’t check that box! When convenience trumps confidentiality, you’re asking for trouble. The harder you make it for hackers to follow your trail into an online store or bank account, the better.

7. Don’t rely on fraud alerts or credit freezes alone. Fraud alerts are meant to stop an identity thief from opening new accounts in your name. Credit freezes let you restrict access to your credit report, which would also make it hard for someone else to open new accounts. But, neither one will stop a thief from trading your SPI for cash, or using it for tax fraud or in any of the countless other ways fraudsters exploit stolen identities.

8. Practice prudent posting.  Social networking sites on the internet enable individuals around the world to chat, share photos, recruit employees, date, post resumes, auction property, and more. Because the Web makes it possible for any posted document to link with another, any data you put out online have the potential to stay there for what amounts to electronic eternity.

9. Keep that key. When you check out of a hotel where you were issued a card-key to unlock the door to your room, don’t leave the card-key behind. Hold on to it until you’re safely home and can shred or otherwise discard it safely. Some say it’s an urban myth that the card-keys hold vital details like credit card numbers, while others report having tested and confirmed the presence of private data coded into the magnetic strip. Even if there’s no definitive answer, why risk it?

10. What’s in your wallet? Make photocopies of the personal material in your wallet: Driver’s license, credit cards, insurance cards, all of it – front and back. Should your wallet be lost or stolen, you won’t be left wondering what was actually taken, and you’ll be able to quickly notify the appropriate agencies about what has taken place.

Ok, maybe I'm hyper-sensitive. Then again, maybe I'm just more aware of what can happen to a person these days when it comes to credit card/identity theft. Either way, here's an interesting situation I found myself in recently.

A couple weeks ago I detailed my three-day travel nightmare courtesy (at least in part) of Midwest Airlines. Around noon on the second day when it became clear that ALL flights were canceled to almost everywhere you can imagine what happened. After all, what is the first thing you'd think of (other than "I have to spend another day in these same clothes") when you found out you weren't going anywhere until the next day? Right -- "where am I going to spend the night tonight?"

So a mad rush ensued to see who could get into the hotels first before they booked up. The hotel I had stayed in the previous night (the night Midwest put me up because it had a plane with a flat tire) was the one I wanted to stay in again for several reasons:

1. I knew it was acceptable to my taste.

2. It was close to the airport (4 minutes.) I had a 6:50 am flight the next day and I didn't want to get up too early. Plus there was a huge snowstorm going on and I didn't want to drive (or even ride in a shuttle) when a 15-minute ride under normal circumstances could be an hour or more in the weather chaos.

3. The hotel had a full-scale restaurant, so I didn't have to go outside to eat. I was in Nashville, after all, the previous day, so let's just say I wasn't dressed for a snowstorm.

4. The hotel had free wireless internet -- so at least I could get some work done while I hunkered down.

So I raced to the hotel information section of the airport and saw that my hotel charged $199 to $249 a night for rooms. Yikes! I knew that these were the "retail prices" but I wasn't sure how far they would come down -- especially in the midst of a storm. If there was ever a time to only take customers at retail price, this was it.

I called the hotel on my cell phone while others jockeyed for the courtesy phones. I asked if they had any rooms for the night and what their prices were. They said they did and linked me through to their reservations desk. Ian came on the phone and said they had rooms available for $199. Just great.  Now I was going to have to price shop in the middle of a snowstorm. Then he said, "Oh wait, I'm sorry, I mis-spoke. The rates are $99 a night." Sold! I told him I'd take one for tonight and he started to process my request.

At the end of the transaction, he said, "All I need to reserve this room is a major credit card." Yep, that's normal. What was not normal was that I'm usually not in a crowd of people reading my credit card information ALOUD for all to hear when I reserve a room. In a split second, I thought, "I'm going to have to read my credit card information out loud for all to hear in order to reserve this room. What if someone is listening and wants to steal my information?"

I glanced around. There was sufficient commotion to take most people out of the "card stealing" realm, but I saw a few people looking at me (by this time, I had my card out.) Were they just curious or looking to take my information? Is it a legitimate concern or am I taking all this way too seriously.

I didn't have much time to think about it -- Ian needed the name of my card, my number, and my expiration date. And he wasn't going to wait 10 minutes while I figured out what to do.

I decided that it was better to be safe than sorry, so here's what I did:

1. I started walking to the least crowded section of the airport. Fewer people there plus someone trying to steal my info had to be walking/following me -- they couldn't be stationary or they would miss part of it as I walked away.

2. As I was giving the number, I spoke as lowly as I could.

3. While walking/talking, I turned around a couple times (casually) so my voice was not projected in any one direction for the entire reading of the card number. It would make taking the information much more difficult.

4. I put the card away as soon as Ian had all the information.

I got the reservation completed, caught the shuttle, and was in the hotel a few minutes later. And so far, my credit card appears to be fine. ;-)

Like I said, maybe I'm just hyper-sensitive, but if nothing else, it was interesting that the issue came into my mind and did so very quickly -- and at a time that I had plenty of other things to think about.

So, what do you think? Did I react the right way? What would you have done? Would you have even thought about it?

Here are some handy tips on how to protect yourself from identity theft from USA Today:

• Monitor bank and credit card accounts regularly by phone, ATM or over the Internet.

• Reduce the amount of paper in your life. Mailboxes containing credit card bills and other sensitive financial information are prime targets for thieves. Shredding sensitive documents is a good idea, but "it's not enough just to shred," Van Dyke says. "Most criminals go to your mailbox, not your trash." His advice: Arrange for electronic delivery of bank statements and bills.

• Lighten your wallet. Nearly 40% of identity theft stems from lost or stolen wallets, checkbooks or credit cards, according to Javelin's survey of victims who know how their information was stolen. Rid your billfold of credit cards you don't use, along with other documents, such as your Social Security card, that you don't need on a regular basis.

• Secure online accounts with difficult-to-guess personal identification numbers and passwords. Keep PINs and passwords in a safe place and change them often. Update your anti-virus programs and firewalls frequently.

• Take advantage of your right to obtain free credit reports.

Here's how we handle each of these:

1. I do monitor our bank account via the web, but not our credit cards. On the cards, I reconcile them through Quicken every month to make sure what we think we have spent matches what the credit card company says we've spent.

2. We shred like fiends, only put mail in our box the day of delivery (never overnight), and we pick up our mail with an hour or two of delivery. We have a fairly active street, so it's not like someone could easily take mail without anyone noticing. That said, we may need to be a bit more aggressive in this area.

3. I carry two credit cards, my driver's license, my Costco card, and some cash. That's it.

4. What? You mean a pin of "1234" isn't good enough? ;-)

5. I get one free credit report a year. I should do at least two.

Here's some advice courtesy of ARA Content on how to protect your identity:

The Information Age has produced extensive benefits for society. We can now shop online for everything from groceries to insurance policies. Students can instantly access a wealth of information that used to take weeks to find in the library, and banking is easier than ever. Unfortunately, criminals continue to find new ways to leverage technology, such as hacking into online databases and phishing in an effort to commit identity theft.

Chances are good that either you or someone you know has fallen victim to what is now the fastest growing crime in America. The Javelin 2006 Identity Fraud Survey Report estimates that 28.3 million, or around 13 percent of adults in the U.S., have been targeted by identity thieves in the last three years.

The National Crime Prevention Council deems the problem so significant that the focus of its Crime Prevention Month this October is “Crime Prevention in the Information Age.” Its Web site www.ncpc.org offers resources addressing identity theft and how to prevent it. You can also find useful educational materials at the Federal Trade Commission Web site, www.ftc.gov, and Equifax’s site at www.equifax.com.

One of the most important steps you can take to prevent identity theft is to protect the valuable data that criminals seek. Here are some suggestions from the resources mentioned above:

• Do not give out personal information over the phone, through the mail, or over the Internet unless you have initiated the contact. Identity thieves will pose as bank representatives, Internet service providers, and even government officials to get you to reveal identifying information.

• Guard your Social Security number. Ask to use other types of identifiers when possible, and don't carry your SSN card. Be sure to keep it in a secure place. Do not put your Social Security number on your checks.

• Minimize the identification information and the number of cards you carry. Take only what you will need.

• Safeguard personal information in your home, especially if you are having service work done in your home, employ outside help, or have a roommate.

• Protect your mail. Deposit outgoing mail in post office collection boxes or at your local post office. Promptly remove mail from your mailbox after it's delivered. If you plan to go away, contact the U.S. Postal Service and request a vacation hold.

• Shred all documents you are discarding, including pre-approved credit applications received in your name, insurance forms, bank checks and statements, and other financial information.

You can also take advantage of some high-tech ways to fight identity theft. Consider monitoring your credit file for potentially fraudulent activity by signing up for one of Equifax’s Credit Watch programs. Take steps to detect identity theft early – which helps minimize its impact – for only $4.95 a month to $12.95 a month depending on the features you select. To learn more about the tools Equifax offers to help protect people from identity theft, log on to www.equifax.com.

Here's some advice courtesy of ARA Content on what to do when your personal data is exposed and potentially stolen:

It seems like there’s a new headline every day about another stolen laptop, a hacker attack or a lost data tape. And the impact of these incidents is widespread. One organization estimates that over 91 million data records of U.S. residents have been exposed due to security breaches since February 2005.

You may have received a notification letter, in which an organization alerts you to the fact that your personal information has been exposed. After reading the letter, you may still have some questions about what it means for you and what steps you should take.

Identity theft is the most significant risk you face following a data breach, and the severity of the risk is determined by how the data is stored and what kind of data it is. When stolen data is encrypted – or stored in a scrambled fashion that requires a “key” for someone to unscramble – it is much more difficult for the criminal to access. Identity thieves can use your Social Security number, credit card numbers and bank account numbers to make purchases or to open new credit accounts. Your name, address and date of birth are also valuable pieces of information to criminals.

The safest course of action is to take precautions if you suspect that your personal data is likely to be misused. Studies have shown that acting quickly can minimize the financial impact and time to recover from identity theft. Place a fraud alert on your credit file before the criminal has a chance to apply for credit in your name. It can save you a lot of hassle down the road.

A temporary fraud alert, placed on your credit file for 90 days, lets credit grantors know that you may have been a victim of fraud and that they should take extra steps to verify your identity before extending credit in your name. To place a fraud alert on your credit file, contact one of the three national credit reporting companies:

• Equifax: (800) 525-6285
• Experian: (888) 397-3742
• TransUnion: (800) 680-7289

You will need to provide personal information for authentication purposes. The company you contact will notify the other two credit reporting companies, who will add a fraud alert to their files. Your confirmation will include instructions for requesting a copy of your credit report.

Often organizations provide assistance to their customers or employees who have been impacted by a data breach. In fact, many companies have offered their customers and employees free credit monitoring, which alerts them to key changes in their credit file. For example, the addition of a new credit account or a significant increase in the balance on an existing card might signal that an identity thief has struck. The sooner you contact creditors to alert them to any fraudulent activity, the easier it is to resolve.

When a company offers you free credit monitoring after a data breach, you will be given a promotional code and directions for online enrollment. You will need to provide identification information, including your Social Security number, for authentication purposes. If the free monitoring is provided through Equifax, you will not be asked to enter a credit card number to enroll for the free offer.

If your data has been improperly accessed but you have not been offered free credit monitoring, consider purchasing Equifax Credit Watch Gold with 3-in-1 Monitoring to protect yourself. It provides comprehensive credit file monitoring and automated alerts of key changes to your credit files at all three national credit reporting companies.

Here are some good thoughts on protecting yourself from identity theft courtesy of ARA Content:

The image of retirement and retirees has changed a lot during recent years. Today’s retirees are taking advantage of being free of day-to-day work responsibilities and enjoying the freedom to pursue their interests via travel, revisiting long-forgotten hobbies or even going back to school.

Retirees have earned the time to fulfill their dreams by working hard and planning wisely for their financial future. That is why it is so important to carefully manage your finances during retirement as well.

Protect Your Credit

When you retire, your lifestyle may change enough to warrant a big transformation such as renovating your house, buying a vacation home, RV or boat, or even downsizing to take advantage of the lower maintenance cost of a condo or townhome.

Any of these options likely would involve a loan to help pay for the project. Before you apply for that loan, check your credit report and your credit score so you’ll know where you will stand with lenders. “The better your credit score, the better the interest rate you can expect to receive from lenders,” notes Maxine Sweet, vice president of public education for Experian, a global information solutions company.

Web sites like www.experian.com give you quick and easy access to your credit report and credit score. “Even if you have an unblemished payment record with your credit card companies, it pays to check your credit report for inaccuracies that could affect your standing,” says Sweet.

Travel Tips

If your retirement plans lean more toward seeing the world than remodeling your home, you need to be a savvy traveler. Identity thieves prey on travelers, finding personal information in mail left uncollected while you’re gone, by hijacking PIN numbers or by old fashioned methods such as stealing your wallet.

In order to enjoy your travels without worrying about these matters, follow these tips.

At home:

• If you are receiving pension or social security checks, take advantage of direct deposit so checks won’t be waiting in the mail.

• If you have a trusted neighbor, friend or family member, ask them to collect your mail while you’re gone. Otherwise, have the post office suspend delivery while you’re away. “Your mail can contain information that could help identity thieves victimize you, such as your Social Security number, name, address and account numbers,” says Sweet.

• When you return from your travels, check your credit report for any unusual activity. To make checking your credit report even easier, sign up for a credit monitoring product to help protect you while at home or away. Knowing that your credit report is being monitored daily and that you will be alerted if key changes are detected gives extra peace of mind.

On the road:

• Carry only the one or two credit cards you use regularly. Keep the others either at home in a secure place, or even better, in a safety deposit box at your bank.

• Protect your PIN number when you use your bank card or credit card at ATM machines or store registers.

• Use credit or debit cards instead of cash whenever possible so that you aren’t carrying a large amount of cash with you when you travel. Remember to take all of your receipts when paying by credit card so your account information doesn’t get into the wrong hands.

These common-sense precautions will help you protect your finances so you can relax and enjoy your retirement.

For more information on learning about your credit, visit www.experian.com 

Here's a list of six ways to avoid identity theft from financial expert David Bach:

1. Keep your private information private.

2. Get a copy of your credit reports.

3. Find out if your state has a credit freeze law.

4. Check your bank statements weekly.

5. Be computer savvy.

6. Be aware of "deleted" data.

My thoughts on each of these:

1. I guard my private information like it's my life at stake (it is, after all.) I recently had a company ask for a copy of my driver's license for no reasonable reason (at least not one they could give me.) I told them I wasn't giving that out and they said they didn't need it after all.

2. I do this at least once a year -- though I should do it more often.

3. Mine does. I recently had some information "lost" by a company and had a 90-day freeze put on my reports as a precaution. Yes, you can do all you can do and then some stupid company mishandles your information.

4. I reconcile my statements monthly, but also look online regularly to make sure everything's ok.

5. It still amazes me how easily people fall for some of the traps on the web. And it amazes me how sophisticated the crooks are getting.

6. I'm going to face this problem later this year as we're looking to give away an old computer. I want to make 100% sure there's no data left on it. Can anyone say "format c:?" ;-)

Finally, the piece ends with this bit of good advice:

Don't waste a minute once you've discovered suspicious activity -- go directly to the website of the Federal Trade Commission to file a complaint and access their comprehensive guide on the steps you'll need to follow to resolve the situation.

Here are two simple suggestions from Kiplinger's on what to do if your identity is stolen:

• If your personal information has been compromised because of a security breach, check your credit cards for suspicious charges.

• If your name and Social Security number are stolen, contact the three credit bureaus and put a fraud alert on your account, which requires lenders to verify your identification. Call the Federal Trade Commission's ID Theft Hotline (877-438-4338) and visit the agency's identity-theft page for instructions on reporting ID theft.

After writing on this topic for some time (including the useful posts How Long Does It Take to Clear Your Name if Your ID is Stolen? and Identity Theft Not that Big of a Deal (And What to Do If You're a Victim)), it seems like one key to how painful the loss will be for you -- at least one key that you can control -- is the speed at which you contact the appropriate organizations and tell them about the theft. The faster, the better. So once you suspect your identity has been stolen or mis-used, don't delay in acting. The sooner you stop it in its tracks, the sooner (most likely) the thief will move on to an easier mark.

Here's part 5 of an interesting article from Money magazine that lists several identity theft statistics -- many of which I found surprising. It's done in a question and answer format, so here is today's question:

What age group is most susceptible to identity theft?

The answer:

25 to 34. Contrary to popular belief, seniors had the lowest rate of ID theft, while 25- to 34-year-olds were most at risk. Why? The lifestyle of many Gen X-ers--going out often and trading personal information on MySpace.com and other social networking sites--creates more opportunity for identity thieves.

My thoughts:

1. Again, I'm very surprised at this finding (I guess that's the purpose of this piece, huh?). I would have guessed seniors all the way. But now that they explain it, it does make sense.

2. Add ID theft to the list of financial topics you teach your kids about. Then, when they are young adults, they'll be more guarded with their data and less likely to get into trouble.

Click here to read part 1 in this series.

Here's part 4 of an interesting article from Money magazine that lists several identity theft statistics -- many of which I found surprising. It's done in a question and answer format, so here is today's question:

Identity theft on the Internet is growing.

The answer:

False. Online fraud made up 9% of ID theft cases in which the source was known last year, down from 11.6% in 2004. People who bank online typically uncover fraud in 22 days vs. more than a month for paper accounts.

My thoughts:

1. I'm not sure I buy this information. Online may be down as a percentage, but the total number of cases could still be up (may the other forms of ID theft have grown at faster rates). I can't tell the true story from these stats though, there's not enough here.

2. Either way, I am surprised that Online ID theft isn't skyrocketing. With all the pfishing going on, I thought it would have been much, much higher.

3. Looks like there's another advantage of banking online -- faster detection of ID theft.

Click here to read part 5 in this series.

Here's part 3 of an interesting article from Money magazine that lists several identity theft statistics -- many of which I found surprising. It's done in a question and answer format, so here is today's question:

What type of identity theft is the most difficult to detect?

The answer:

Fraudulent accounts opened in your name. It takes an average of 152 days for victims to find out that a new account has been opened in their name. That's because only a credit report or notice from the lender or a collection agency will alert you to the new account's existence.

My thoughts:

1. I would have thought "charges to a credit card you already have" would have been the "winner" here.

2. This is why I have checking my credit reports as part of my New Years resolutions.

Click here to read part 4 of this series.

Here's part 2 of an interesting article from Money magazine that lists several identity theft statistics -- many of which I found surprising. It's done in a question and answer format, so here is today's question:

What is the most common way your identity is stolen?

The answer:

Among victims who could pinpoint the source of ID theft, 30% blamed a lost or stolen wallet, checkbook or credit card. Dumpster diving, in which your personal info is lifted from documents you throw out, made up less than 1% of cases, down from 2.6% in 2004, as some 70% of people now shred paper files (keep shredding!). However, in 8% of cases, info is stolen out of mailboxes before you have a chance to shred. Since credit-card offers make it easy to open an account in your name, call 888-5-OPTOUT to stop unsolicited card applications.

My thoughts:

1. So, if 30% can be traced to a lost or stolen wallet, checkbook or credit card, 8% to stolen mail, and 1% to dumpster diving, what happens in the other 61% of cases? Am I missing something here?

2. I shred religiously, though it does create another problem -- my kids want to scatter the confetti all over the house. ;-)

3. We've stopped putting our flag up when we put mail in our box (out-going) and we usually pick up mail within an hour or so of its arrival.

4. I opted out last year and my credit card mail offers has dropped DRAMATICALLY. It really works.

Click here to read part 3 of this series.

I've written a lot about identity theft over the past year (see my identity theft category for a listing of posts), but not much recently. So I thought I'd make up for lost time by doing a short series on the topic.

I found an interesting article from Money magazine that lists several identity theft statistics -- many of which I found surprising. It's done in a question and answer format, so let's start with the first question:

How much money does the typical victim of identity theft lose?

The answer:

More than two-thirds of ID theft victims didn't lose a dime last year. (Of course, that means some people did end up out of pocket: The average loss was $422 vs. $675 in 2004.) Why? Federal law limits your liability--$50 for credit cards; $500 for debit cards--if you report the fraud within 60 days. And most issuers offer even stronger protections, guaranteeing that you won't be on the hook for any of the bill. The real cost to you is time and stress: It takes the average victim 40 hours of effort to restore his or her good name.

A few thoughts here:

1. Wow. I would have guessed a few thousand dollars would have been the average. $422 seems low, but I guess it makes sense as explained by Money.

2. 40 hours basically doubles your cost if your time is worth $10 per hour. If it's worth more, like I'm guessing is the case for most of us, this will be even a bigger cost/frustration than the actual money lost.

Click here to read part 2 of this series.

If you're like me, you do a good deal of your shopping online. And, if you're like me, you want to be sure you're shopping safely and that your financial and personal information isn't at risk. Money Central helps us all out in this article, giving tips for shopping safely online. Their thoughts:

• Bigger names equal better protection.
• When in doubt, check them out. If you go with an unknown merchant or Web site, contact someone there who can verify the company's privacy policy for you before you make a purchase.
• Encryption doesn't equal security.
• When sharing is a bad thing. Shared computers, such as the ones available to multiple strangers at computer centers, are a big no-no, says Branigan.
• Pay with a credit card. We got a resounding answer from the experts: Credit cards are the safest method for online purchases.
• Suspect the suspicious. If you're at the checkout page and the site asks for your date of birth and Social Security number, be very careful.

Good tips. I use them all. In particular, I like #1. And since I do most of my shopping with Amazon.com, I'm in the heart of "Safe-ville." ;-)

As long as you're careful, shopping online is actually SAFER than shopping offline. At least according to Money Central:

Shoppers should be aware that as long as they are dealing with reputable companies, online transactions are far more secure than the face-to-face transactions people perform every day, says Stickley. Online transactions eliminate the middle man, such as the waiter who processes your credit card payment, so there are fewer people to physically see your private information.

How about you? Are you an online shopper? If so, how much of your total spending? Where are your favorite (recommended) places?

Here's some news no one will find surprising, identity theft topped the list of FTC complaints last year. Here are the facts:

For the sixth year in a row, identity theft tops the annual list of consumer complaints collected by Federal Trade Commission. But the number of consumers victimized via wire transfer has skyrocketed, tripling in the past two years, the FTC said.  And child ID theft cases have nearly doubled in that span.

While the number of complaints only edged up about 5 percent from last year, the dollar losses appear to be rising rapidly. In 2005, 49 consumers reported losing $1 million or more during 2005, the FTC said, compared with 42 in 2004.  Nearly 14,000 victims said they'd lost over $5,000 to a con artist, a steep jump from just over 11,000 in the previous year. Average losses were $2,400 per victim; median losses were $350. In 2004, the average was $1,846 and the median was $263.

This is what I was talking about when I posted that identity theft is worse that you think it is. It's bad. And it's not going away. And now they are targeting children. Yet the laws protecting information and punishing criminals are not there yet. Isn't this a crime? When are we going to see some action to make the punishment for stealing IDs a serious offense?

Here's an article from Kiplinger's that promises how to secure your PC from worms, viruses and hackers in less than an hour. Their tips:

• Use security software.
• Patch your OS.
• Secure your browser.
• Be alert while you surf.
• Handle e-mail with care.
• Read all messages in text-only format, not in HTML or rich-text format, and turn off the preview pane in your in-box.
• Raise a firewall.

Good tips! Identity theft is an issue we're all going to have to deal with for a long time to come. It's best if we take as many precautions as possible -- especially since the current identity theft laws aren't that strong and certainly aren't deterring criminal activity.

For more information on this topic, see these posts:

• Beware 'Debt Elimination' Scams
• Assessing Bank Safety
• Identity Theft is Worse than You Think It Is
• Don't Get Hooked by a Crook

Here's a piece from Money Central that gives us 10 ways to stop identity theft cold. It starts out by telling us how bad identity theft is:

The numbers associated with identity theft are beginning to add up fast. A recent General Accounting Office report estimates that as many as 750,000 Americans are victims of identity theft every year. And that number may be low, as many people choose not to report the crime or, for that matter, even know they’ve been victimized.

But the heart of the article is the set of tips they give. The tips for stopping identity theft are:

1. Destroy private records and statements.

2. Secure your mail.

3. Safeguard your Social Security number.

4. Don't leave a paper trail. Never leave ATM, credit card or gas station receipts behind.

5. Never let your credit card out of your sight.

6. Know who you're dealing with.

7. Take your name off marketers' hit lists.

8. Be more defensive with personal information.

9. Monitor your credit report.

10. Review your credit card statements carefully.

My thoughts:

1. I have a shredder and use it religiously.

2. We mail our bills from home but never put up our mailbox flag. However, I am converting more bills to electronic pay options.

3. We don't do this.

4. We don't do this either. I keep track of EVERY receipt.

5. This is hard to do, especially at restaurants (the card part). Not sure what the solution is.

6. I don't give out this information unless I see a need that they have it.

7. Did it awhile back. We still get some calls.

8. Isn't this the same as #6? My answer is the same.

9. This is one of my New Year's resolutions.

10. I reconcile every credit card statement and review all bills carefully. Not only does it help identify potential identity theft issues, but can also save you a bunch of money.

Here's an update from MSNBC on some future changes to online banking:

By the end of next year, it may take more than just an ID number and password for bank customers to access their online accounts. In the face of increasing online banking fraud, federal agencies announced they are requiring all financial institutions in the country to beef up their Internet security measures by the end of 2006. That means customers may soon have to navigate through more security screens.

A couple banks are already in the lead in this area:

Bank of America is the first out of the gate with its new SiteKey picture-recognition service, which it will require all customers to use starting in early 2006. Customers choose a picture when they first visit and are presented their choices in subsequent visits to assure them the site is not fake.

This month, Washington Mutual announced that it now uses a version of computer fingerprinting that analyzes every online login and transaction, scores the potential risk of identity theft based on a broad range of criteria, and invokes additional authentication methods if needed.

Here's a word of caution (and some reassurance) if you bank with a smaller bank:

Because big banks are bulking up their online security measures, phishers and scammers are reportedly moving down the chain to medium-sized and small banks, but Litan said many of them are well prepared to meet the threats.

Finally, someone is doing something about identity theft and the security of financial information. For more on this topic, see these posts:

• Mortgage Data on Two Million People Lost
• Let It Rip
• Fewer Americans Banking Online

I had heard this news the other day and assumed everyone was up to speed on it, but a note from a reader (thanks, Dan) suggested I share it with everyone since blog coverage seemed light. So here's the bottom line from MSNBC:

A subsidiary of LaSalle Bank Corp. said Friday a tape containing information of about 2 million residential mortgage customers around the country was lost as it was being transported from Chicago to Texas.

ABN AMRO Mortgage Group Inc. said that it has had no indication the information was misused in any way, but that it is notifying residential mortgage customers and has arranged for them to enroll in a credit monitoring service for 90 days at no cost.

Data on the tape include residential mortgage customer names, their social security numbers, payment histories and account information, according to ABN AMRO. LaSalle Bank spokesman Shawn Platt also said the tape is not something a person could take home and look at on a computer.

According to the company, a package containing the tape was picked up at its data processing center in Chicago by express mail company DHL on Nov. 18. But the tape never reached its destination — a credit bureau facility in Allen, Texas.

1. How does this happen???!!! Two million people impacted?! This is simply criminal. AMN AMRO and/or DHL needs to compensate the people impacted if, for nothing else, the fear of potential identity theft. It's simply careless and there's no reason for it.

2. This sort of loss seems to be more and more common. We need to fix the system somehow. I'm generally not a proponent of legislating penalties against corporations for this sort of stuff (my feeling is that the market will handle it as consumers flee companies that allow this to happen), but it appears that companies are not taking the issue seriously.

3. Thankfully, I don't do business with ABN AMRO. If I did, I'd be moving as soon as possible.

Update: The tapes have been found.

Here's part 2 of a piece from Smart Money that offers several tips for keeping your identity safe this holiday season. Today we'll cover their online tips:

• Beef up your computer's security.
• Don't link to sales and offers through your email.
• Shop at trustworthy sites.
• Make sure the site is secure.
• Limit yourself to one credit card for online shopping.
• Get a temporary credit-card number.

I guess you learn something new every day. I didn't know about the temporary card numbers. Good info!

However, I will use the previous tip instead -- putting all my charges on one card. Not only is it safer, but it helps me maximize my cash back reward as well.