I’m not sure if ID Theft Smart is secure enough to protect my identity.

A few years ago, Stanford lost a laptop that held the social security numbers and other info for many of its employees. My info was in that list. Consequently, I received free credit report monitoring from ID Theft Smart.
 
I got an email a few days ago saying there was some activity on my account. I knew what it was: I just applied for an American Express business card for Posterous, so they had run my credit.
 
(On an aside, the reason why I had to get an amex for Posterous is because Citibank wouldn’t give us enough credit to cover our monthly expenses, even though my credit is perfect and I’ve paid every single credit card bill I’ve ever received in my life in full and on time and I have other cards with 5x the limit).
 
So I logged in to Theft Smart to confirm what was going on.
 
1. I logged in, then clicked “View Now” to see the activity on my account
2. I was then prompted for my email address and zip code before I could see my report. Ok, no problem. They are being extra secure
3. Except, if I simply clicked on “My Account” at this point, I could get my full name, address, email address, and more. Yeesh
 
You would really expect a credit monitoring service to be better about stuff like this…

Picture_2Picture_1Picture_3

9 comments

  1. I completely agree – why should I trust some centralized service (TheftSmart) any more than I trust any other company (like Stanford)? In my mind it’s even worse, because they now become a target (by advertising their supposed security).I’ve actually gotten 3 chances to get TheftSmart (from the same Stanford event, from an issue at Google, and an issue with applications at Harvard), and, though I thought about it a bit, it didn’t make any sense to me.To me, it seems like the greatest security is in distribution , NOT centralization. The best way to prevent the impact of identity theft (or any digital theft) is to spread whatever information you have around as much as is manageable.

  2. Why trust this company. It is a division of Kroll which is a division of Marsh which also has CS Stars. The CS Stars company is a risk managemetn company with access to healthcare information and has lost hundreds of thousand of workers compensation files with private and personal information. A letter sent to us indicates that ID Theft Smart company has been to take care of us through being retained by Kroll ( a division of Marsh that also has CS Star). How convienent related companies selling you a service and all the while cannot secure hundreds of thousand of records. Check out that a CS Star security breach resulted in lsoing 540,000 records in New York alone.Why trust these companies…..no way….Fred SaundersFlsaunders@yahoo.com

  3. I recently received a letter from CS Stars indicating a compromise of my personal information due to theft of a CS Stars employee’s hard drive that contained my name and social security number. They referred me to ID TheftSmart, to create an account online. In order to do this, I have to enter my name, SSN, date of birth and all other personal information that can be stolen by anyone. How safe is this company? I should be able to log in to the account just by entering the ID TheftSmart membership number.

  4. I completely agree, why ask for your SSN when they should arelady have it. something sounds wrong, I would not do it!

  5. I have ID TheftSmart (received as a courtesy for one year due to information being stolen from Marshalls) and receive monitoring reports monthly stating that there has been no activity on my account when in fact there has been activity. I am not sure that this company is doing what they are being paid to do

  6. I just received a letter from SAIC a government contractor supporting Tricare Management health care for active and retired military advising that confidential information such as Social Security, medical laboratory workups, DOB, Ph #’s were lost by a SAIC employee who was transporting this information to a remote secure location. You would think, this type of information would be transported by a security company and now I’m being referred to Kroll for a free 12 moth motoring. From what I have read, am very concerned about this company and its protection!!

  7. Received same letter as Mike and Daniel from SAIC today Nov 21, 2011, says they are a government contractor and one of their employees reported that computer backup tapes were stolen from his vehicle in San Antonio, Texas. So now they are offering me free credit monitoring and restoration services for one year? By the way why would this individual have these tapes in his vehicle, let alone be transporting pertinent personal information to a remote location? And that this is a routine procedure for them? What the f….., who would want to hire someone like this to safeguard and protect you from fraud or stolen data, when they can’t even do their job…..this is bull…..

  8. We rec’d the same SAIC letter in Nov, while a colleague of my husband’s rec’d his within 5 days of the incident?? I called SAIC shortly after receiving the letter, and asked why did that person have the computer in his/her car and leave the vehicle alone with the PC in it??? Her answer, "we’re still investigating this." EXCUSE ME, almost two months later, and they don’t know why the person left the PC in the car unattended??!! RIGHT!!!That said, I don’t know if I trust ID TheftSmart with our information after reading the comments left by others. Hmm, I wonder if anyone has taken any action against SAIC?

Leave a Reply

Fill in your details below or click an icon to log in:

WordPress.com Logo

You are commenting using your WordPress.com account. Log Out / Change )

Twitter picture

You are commenting using your Twitter account. Log Out / Change )

Facebook photo

You are commenting using your Facebook account. Log Out / Change )

Google+ photo

You are commenting using your Google+ account. Log Out / Change )

Connecting to %s