Network Security & Hardware - eWeek


Is the Smart Grid a Dumb Idea?
Surgical Adhesive Offers Smarter Way to Mend Bones
Get Smarter Technology on Your Mobile!
  Network Security & Hardware


Eight Ways to Defend Against Pretexting



 By: Eric Lundquist
2006-09-08
Article Rating:starstarstarstarstar / 0


There are 0 user comments on this Network Security & Hardware story.


Rate This Article:
Poor Best
Opinion: The FTC offers useful advice on how to protect your personal information from dishonest queries, but don't stop there.

Note: These steps are drawn from the Federal Trade Commissions advice on avoiding being caught by "pretexting," or acquiring personal information under false pretenses. Ive presented the FTCs advice and added a comment of my own along with each point.

1. FTC advice: Dont give out personal information on the phone, through the mail or over the Internet unless youve initiated the contact or know who youre dealing with. Pretexters may pose as representatives of survey firms, banks, ISPs and even government agencies to get you to reveal your SSN, mothers maiden name, financial account numbers and other identifying information. Legitimate organizations with which you do business have the information they need and will not ask you for it.

My advice: Think in reverse, like a pretexter. How much information would you need to get into one of your accounts? It probably takes only four or five pieces of information. Make sure those pieces dont include easily discoverable information like your Social Security number. Dont do business with organizations that dont allow you to use something other than your SSN to identify yourself.

2. FTC advice: Be informed. Ask your financial institutions for their policies about sharing your information. Ask them specifically about their policies designed to prevent pretexting.

My advice: This isnt very helpful. Be specific and ask them why they need each piece of information that is asked for, and whether you can use a substitute for your SSN or other such information.

Resource Library:
3. FTC advice: Alert family members to the dangers of pretexting. Explain that only you, or someone you authorize, should provide personal information to others.

My advice: This makes some modest sense. Keeping your personal information and that of your family on paper in a safe place is safer than keeping it on the computer in your living room.

4. FTC advice: Keep items with personal information in a safe place. Tear or shred your charge receipts, copies of credit applications, insurance forms, bank checks and other financial statements that youre discarding, expired charge cards and credit offers you get in the mail.

HP chairman could fall in boardroom scandal. Click here to read more.

My advice: Refuse to do business with institutions that send credit offers in the mail. Invest in a shredder and have a shredding party once a week. Good job for the kids: They like the whir and crunch of shredders.

For advice on how to secure your network and applications, as well as the latest security news, visit Ziff Davis Internets Security IT Hub.

5. FTC advice: Add passwords to your credit card, bank and phone accounts. Avoid using easily available information like your mothers maiden name, your birth date, the last four digits of your SSN, your phone number or a series of consecutive numbers.

My advice: The SSN was never meant to be a universal identifier. Join the chorus of voices pushing to eradicate the SSN as a commonly requested means of identification.

6. FTC advice: Be mindful about where you leave personal information in your home, especially if you have roommates or are having work done in your home by others.

My advice: OK, have that shredding party more frequently than once a week. Shred when you sort the mail.

7. FTC advice: Find out who has access to your personal information at work and verify that the records are kept in a secure location.

My advice: This one will become a bigger issue this year. Your company has lots of personal information about you. This is your turn to ask the company exactly why they need that information, how they keep it secure and what happens to it if you leave the company.

8. FTC advice: Order a copy of your credit report from the three nationwide consumer reporting companies every year.

My advice: This makes sense; just be sure not to leave the report lying around. You can get more information on credit reports from this Web site.

eWEEK magazine editor in chief Eric Lundquist can be reached at eric_lundquist@ziffdavis.com.

Check out eWEEK.coms for the latest security news, reviews and analysis. And for insights on security coverage around the Web, take a look at eWEEK.com Security Center Editor Larry Seltzers Weblog.



  Reader Comments: Eight Ways to Defend Against Pretexting
>>> Be the FIRST to comment on this article!
 

 
 
>>> More Network Security & Hardware Articles          >>> More By Eric Lundquist
 


x}r8s;iW1ŋ:dK5e[KU EB!)_w~LO7n&t%_+ʖ0Ld&D;?[[~$rɹklJ9[D[[}!ԇP|g^P/2t}R  tӌ5v:! ->>;|9|@D%j'a]k|cF}[2ű5n0 f E1;' VI-  #%֥ɏͻ'k[tUN(oT| 0tTǖþ=a]%k4݋ʏшIGO0>ȀYFz.Qu^V>ڮq4]b'*cO^3j a㥨 aP`\9t} Go&lw"ScO$ӡ9NfI%p'0Q#@ڮSTHfFԲ;o tG ob=uק&Y! bS 3MuN_FB?¥0楽?GN8CEnOe[پtwgOfnbtw9a:ԃ }(p}=\'BL|:/EӝfؖqSth(́{ZMQJʞw,^+Y-\hӟoz/3j.:~`h v4򺮕=U=yظ} g d}-5U%`ZJ4_::~XB^,9hr ^@e)#8?݇IhJq䨉k>ذ 1"%i>-`i˫ TY嗋mESq>]V4{3Bɭ`g@ɋ BD4?CzC0!pl/ݜ~_5M.΃Ófuќ.Ӆ]WeNM^cLw\zfUEz݋^?{I8^%g 5F4 ie4%!g8W5MGZKLG_)C.+r%(NLf[ԑplPòǔIGz< aO>lZꎓz>:AGAtišwh4NP7&h`C:}ҍ;L~N;ݧn]>&tfo/*Abχ& ahMi F#m &>vl 8d $n)s>sLn-)0(-5JC=ˋF0P6  2/?>aCxwݐ,P}@[S9[ݲeǀԜ{:r)Ea1CDȧH.B$(ZȻ"!Alq [$t XV0(VF쎄n .<BIg}yd&,fQY,p[/)͙J2d0e Q򍜘=b`&Qea*0pRx5R-`o*W&G#˰` {@ZgÙe K0آwB?b! s WQ's?;\ g!7!q"-%`|Ͱ"̴b֜Eu4>DnN-˘ R g?f0-qڛwyE"9a* ,qrׁfX8ȣ=p TfҬ||=厬m[_4@ޗ|z].z:ԍ$r%5kb$T`CL !1Ad/a:(&u|pöV%UV &G,mk9Va5sV@6@@7hL TolVCax9ZGAwm<_wD\r G #p:x>JeHכAB'BSkjj33-F  o _׆K ȁUzqSҝalaa;n/ ESIXQ>m V!҇GvD+ه0`,E'MR^-#/{0iTWJIU?I?րH{A2,exY.5mI\v 'YwH \RZr>J+"Xk8:T:4ݦ6W݀:,Cd5f>O{M{c>4YE j,E dUkRPZEUՃ]ZfG=>YP2~2j&8x_? p+z~qj ,4/QқAL}6݀ /\r?09X>>: '012&z@j9ajv6<|0)rE=4!ݹrI6Swan0-UT&KV'=ibGHoe,] rA XQ`5 '& nBg%:!pwC):2 XX `j$a!L`wV8!+ #mVqJs- uW: jS~vZ+::jnM=G$*X  d5}u*սZIe/YUbYڄHB&:GdHC+`Zv*V'wj6Jh)VXS!RW dĞeeKyhkC鳨aL:KlB30XfSf~508V. LB7!l̓[@^C-o# dōfπiNǚ m=  moO۫`EODF3ۭDc8ߊIjfR΁MOT*%0=k@" c]f.g|]٘z4> ʀixG2c(Ъ6#iB/%e.N1)Q;/&v}j;_&I|SeQȣV)KY+TuRaoaqVZʁF3HUEOM#/ PNkJ[C^$}T>UvAU>Ju[-UղR?YTAtEU!n?mVPVW`Zd&{ \%\3Li0o(Q멋^ fTmZ/)+iQ/ ~ dwm PG c[ ,&rn&kSHv+{C ]O*lU*JW ]HX9H(P YGۻBlpI75 SXx|{ kPHc, ,"zдr#)=2fV*UXŕ?hxqLLm_~ن^k5eAjE1vkHV~ZgZqZ to(+߷}E_:nwξ&~f?Н :u>aa= i?0ֿH LЇ_E}R> jxrtђ:͓6? F&;fB, 8HŤ9}vt{{l:'a=;kFk"^9syuҹ_>uQrֹhK^'Kƃ w"Yb%9!hUHv*:b3hǛ&%c-kC2 xidLi+-,ҽj8`\4c-ͅHgSfaD?aVo-yy~nU2kq ~ I5:=>  c@JA=ohuzg/{mE&5bT1 ԟRFMQV=#ijV{Lg$(^(/(軛o%E߈>O1Ok7tEpS(+x,VdsJ;Lg;Nbp juz`YSrg!F,/D/pǻ"Ts 8zL,ӤN)fTDіxi'>fax!wln?q%ӝTL~:߄v?Is6uYغ[O`NftJē˓!=)ڊIմg<8I5F4A2 uID? Mt4DPW Pق.5=ܛ8^]9?ٸm|`M`l)ZQ!|Nr 9jE`e>R&‡yQb}b%h4eW*Bzc'?<'|Gx! ӢW-n9U۾N+ttO$Zȍڑq eީӊNf|u +ɅNo5W1kzR̵j d̎%Ƅ{`sBk9GQ r0&xf&4NlEWy+(" x^ESrm]O}V7]vY H-@V zP ߽?Fqw>p]9Qz AC~k}\0n;z}봷7|Of0w)ml>8ninmǡ850Vt,4P$EUՊZr,VU $]dNFftZt@2&j%3ٌ<яki^d̠t4s 7}!.`0m/EdOc@/mvc+輳2 a[C؞qaLpx2HC%ր7ZpצN Ϧz_ O%FJ ,^`mZX9&/hvpU4bZy"N0Sk1Ƣ$G |('򽦎xk6) kN_C_bJKдg=.0(yS/ K[⹍^m:lQNo o%v!Щ*Ͷn-Cܲ\? =y[/67^H=0hf6 R0\{_>;:` :K2l`$\껋-$~^#Mc*[*iG034 uYDJdnSGI%?ۊ:'>֎bkbx +$^;3j[ upmSkVeѾۍw(VJj}d[h/.meQR][^ (bJ@@Ð`R犲[- 2>$3;HA"L .zDx Oxis^ZuTt4-3۔uۖ`ʰkϋ98Yn]ȝz3~1{jO`QHīB_0=~6ODD> {Iꑼ19_i0AkbXꚜPzeN8}AB) 8|Y눦鲋F9#/d)yn7)O!<*'&gS[4FCvRl0㭅HMx1HL>Kc"A$H"aI'i8.{rۓ(xk܋HaC;sʼn6 AH.ުAz;|Dx OxiMy1? pMazm2AIC:-5b(]Mjc*:G"pl\+*P+FƓ_]ߪ/:l }}@.ИHS+IMLd2|c륵P| #VyKx7777[J%m*cL@׻#Ik<\CgRL5>$ɝEؗ@"g 󦄗T+@b gz=[=M"^'*k5^Zվ0 Dk蘹mw;C=D%q`N:mbw138tk,>}'=&x A( xK X!bX9NelexFu>HMS0ǤǺ#fռL ([!PL5%i =g_˷tWT( =Lz>{%D"R z~Dl~rc=tkV|}o $b&ZPС>ƪ'Pp[wʌ1D U@0Vavm"䅗%Fb|cʯ[["@kGIM5X _ۏs%-U>#F~J[E#:w9 iմAH26=ދTZ/)[vp&HKּToUzޤۖnzr[")_B/ߚG4z4]qP!Υiyf5Ncy6.Zxu_ :`ljkV˳8T=y=UV忍}:uoB>y,徯Y2u)};c~BP22@44+I/NH&8Ǧp읆ьSqDgAͯXx"H" )zw פ;s|:ۘϠ)8eS|ׂċ^_Z5!,- b0֚=_ 'Lat7sb1Y|Gj wP5FIb6&X0& uS]wfCҸol`tq"wo(RIvX67 ~VxrցU9T'Fg`i[?I#$:9뽨1PAgXt~DYb#c{4k(3\0k`'꤯ 7ve&FҫFLK&QX#J:*5\?ԝ*STC䉯mgH&oD#ঐ_Y9~x UܬN:@m f|%3ݽbDݵg{曪Z-#LnB/o.vHe _M!AaD0ʑ aB!M[ADn|Q"]PVôƮ,JfadW}$ƽ⮡lE߽cLhGꨶ6_o[a(,_N3VGdBA8AXJo,"%xa equQ%2^R_V6TPrFmMEfIȢD7GE\1U=ub? @utNk-b"K]Ζ1xy[/ދ{BZkTes{ɧj*- iT-A8Ki1=H3r3#mz^C GJk&t];xVy [k+mLtV8Ow| e޼vwO %YՉV[ mݹY{rCjLxaE8ee|t_3(9dn-& ~iXu>H'2t}jhܻTҴJd n_TρVRjR;";М ry԰txG*_[Ex9*{ f㵸=GrE,?y`hîĈVRR>ZgD9mFA&W0tiL!1E \TеnUewޠ~z*ޟO^e~nn*ZM~FGȚZGwt bJ sݲY2;J/>coI XPp]I٩TwT~^ N ̋X/HKt4*:Wm>m[A=~yLLROg\NL_s_߰,VIm{d72[ $}?,D`Gmgl4/uh_3rѾU=<:!2+Q`#KsMs. 4xp}S!9$.+Ja S]ݝk:,dϭкlŧtS!F|1[GB(9$#MYQo_){J ԝ8 `8.pgj1T%2*H9 dU M /WnrnR-i`Ik„@J!ޥSۈ4Hl`+^r {fĔy9do㲡1N|Vc|v.0[/ T6CĊ1gOiX$_AγG~~H-*R1vqQ@y-LL͂zĂ![C P/5DF;s 7CXLi8qXg- .E.ӻqw&+W!5P?0 1YGw`C[UEY|obL,`A~JBj@̐0ح>>&).yci 8^yN4WZ8!oX22 =<RXX_1[U=LꚂOJBveX z~kwywfE#{8~\OSz% %uW0`A i2bg4t\K-ś"wHIPk;7LѼ^&lkIߢԲQ7a{sѾ\ c[KA63fg&SRo4Eš6u\ «1.yr8,tG_0}4e씺$;G(%Gyї51o&Ll+G=ViJj9Gj:ٙ%/G\3G|MPЦoJc UNM:p4ħYOB#2[EYNG(S S~Wˏ͜.wsʑ[@V;ʏV}ss?'(ShvVwZFS3r'{^N( ٮq3>y<><@99y^?生BiNߠo9P~S{3 ?9sw3~]7]?/9q _s?=_P埀>g(W}3s::s/=IR<9k^waNy8rEUrXB]Ay>(P/nts:WJsz9^}IAZ&/ˣn+]a芫-5n+ Ǥjuv^_@%KH0e^ڛL}GP/<(Y}Mvchto$.rd&}:=Wvl+x.ߔ[nNJ>s\ȜHǣWɴVی x# FUD4+{HO9|\z[,G$q=Pޛ.vnYFvn@x`: ~iMogGp~k;O΋kwեƒ Z3O߆zH':+=P-xLܸpoQ^"#"5 ě zY~8#A}ž~ElpZt ޺Ccjd>Mk +CP<,P/A>={!fI!39Lݔ&d=KGJ&Dx;Kh&%6#煋N7O 챧4J6 郧rIR+γĠ3>g'4WBMx'2 Up:\C:4..q N甽aCm4u;eԦu"v.Iϵg>8~ʵC >1#>FՋp`HzBGa|55F-.Y{N6 )4M˚HμYS-]szln()y+J9*لW0U7VAxٌvx*D01n97SD:9Am&{ǖ;*lعs˜2J1Д862#OA#r ͫe[  O<C24 7خ;Oq^'d9b7ct_E$~ lx$_Oxƪ~SQxr='gз 57d,[| izQڃ`K쒧q?d|E#b]p!@pM֧"QTĻ sQ)Yj%xd圙/699 3o&e@EqLgHvxGm<^:yl.E{Ofu ݌üжRL\% `:+mʕbA<\n2?>%i#L}@ =(ۈnfT|E`GYe`Kr 8ǩk[mx w}uKe!)0:W˟]lӁR#jȹ)`j+7EMEt᪁A0 'Ɣ ϰO" smxDx\\"?@۫HVlw6++kȀ7HY[D,5Ra:(G= zBk|FvXK]s&&tĵa}ar8Lt4QS|J)Km)轇ȝoz^juXXC`*F"ODNű<<Sf )VSL_X1_<|:L+xs1ƕEy@Xqө8Yo~.*ZwByܽKٗ}RI>S}v4:~vҎ.3Jbq')nwNNKgݫ, mݸ᥇ͣ'WO-)h,=P$DU RzVsql uI+_0dFx-<#Dg˳̺Uj*$