Identity theft is everywhere these days. Identity Theft, a new movie starring Jason Bateman and Melissa McCarthy, just hit the theaters—putting a pop culture spin on the problem. In the political world, some members of the Bush family, including former Florida governor Jeb Bush, are currently dealing with the aftermath of having their emails hacked and then obtained by the TheSmokingGun.com and splashed across the site. If you check your local paper, odds are you'll find stories about victims who have recently had their identity stolen.
All in all, identity theft cost Americans a collective $1.52 billion in 2011, according to data from the Federal Trade Commission.
It's a serious problem, but it doesn't have to be your problem. Avoid these five behaviors so an identity thief doesn't spot you and see dollar signs:
Watching porn online. Even if this would never apply to you, it applies to a lot of people, according to Steve Weisman, author of 50 Ways to Protect Your Identity in a Digital Age and founder of Scamicide.com, which offers information on scams, fraud, and identity theft. When people access porn sites—especially free ones—they're visiting a common place where malicious software programs like to lurk, Weisman says. "Criminals install the keystroke logging malware, and people end up downloading it on their office computers," he says. "Identity thieves have knowledge of psychology that Freud would have envied. They know what's going to appeal to adults, and certainly porn does."
Sharing too much information on social media accounts. You've probably heard this before, but it isn't stopping most people, is it? It's important to remain vigilant about what personal information we share on sites such as Facebook and Twitter, says Phil Becnel, managing partner at Dinolt Becnel & Wells Investigative Group, a private eye firm in Washington, D.C. Most identity theft cases he's seen either involve people getting their credit card information stolen at a restaurant or discovering a friend or relative applied for a credit card in their name. "The real danger is the latter, because it's a lot harder for an average person to remove derogatory information from their credit report than it is for a credit card company to write off some fraud losses," says Becnel.
If you can't help yourself, consider this strategy: When you're asked security questions on secured websites such as your bank's, Weisman says to "give a nonsensical answer that you will remember, but nobody else could guess." For instance, if asked where you went to high school, use the name of another high school you'll remember—or you could even plug in a number as your answer to make it difficult for someone to sign into your account. "Nobody," says Weisman, "is going to guess that the number seven is your high school."
Being careless with your passwords. If you use the same password for every site, or use simple words or letters (e.g., "password" or "1234"), you're asking for trouble. However, most people fail to vary their passwords, says James W. Gabberty, professor of information systems at Pace University in New York City. For instance, the passwords to get into your PC, your laptop, and your tablet should be different. He also recommends changing passwords about every 90 days.
"The reason is simple," Gabberty says. "Once inside your machine, key loggers—which may be lurking inside your computers right now—read every keystroke, reporting back to some 'mother ship' or central server information about you, your passwords, the sites you visit, and so on."
As for those passwords, Jonathan T. Rajewski, assistant professor of digital forensics at Champlain College in Burlington, Vt., suggests using a passphrase such as your favorite song lyrics, but supplementing part of them with special characters. For instance, Rajewski says if you like the line, "God bless America, land that I love," turn it into "godble55ameri9a,LandThatILove."