Credit freezes prevent unauthorized individuals from opening new credit accounts in your name, reducing the risk of identity theft. Threat actors are highly skilled at finding enough information on targets and then using that information to obtain credit at a store or apply for a new credit card. The new credit card is often stolen from your residential mail or shipped to an alternate address.
No cost. Ignore any prompts from Equifax, Experian, TransUnion to pay $20–$30/month for credit monitoring. Freezing your credit and lifting a credit freeze is a free service. Please check with each credit bureau for the length of each freeze; some only last a year and you will need to re-establish the credit freeze. Keeping your credit on freeze all the time is good identity theft prevention.
Plan to spend a few minutes temporarily lifting the freeze when necessary, such as applying for loans or credit cards.
- Set up a login with each credit bureau and navigate to the security freeze option. References: https://www.usa.gov/credit-freeze
In Addition
There are several other, less popular, credit reporting agencies (Innovis, etc.) that also offer the ability to perform a security freeze. Review the EULA, privacy policy, and fine print for any service to ensure personal information is not re-sold to third parties. The lack of company contact details, missing privacy policies on the company website, and/or superfluous promises for 100% security are all red flags to not use that particular service.
Safeguarding your SSN prevents unauthorized access to your personal data.
No cost.
Minimal impact.
- Safeguard your SSN; avoid carrying your card, securely store or shred paperwork containing it, and refrain from sending it via insecure methods.
- Open your personal my Social Security account at www.ssa.gov. Create your account and remove the risk of someone else obtaining your SSN and trying to create an account in your name. Add two-factor authentication during initial setup.
- Sign up for extra security. After logging in, go into the “Security Settings” tab to begin the upgrade process. “Add Extra Security” is the first option in the Security Settings tab. Follow the instructions to add extra security. Finishing this process usually takes 5 to 10 business days. An upgrade code will be mailed to your home address. The letter will also include step-by-step instructions to finalize the security upgrade.
Learn more about our services: ProAlign Intelligence Services
In Addition
Completely block your and others' electronic access to your SSN by contacting the Social Security office (1.800.772.1213). Any automated telephone and electronic access to your Social Security record will be blocked. To reverse this, you will also need to call and prove your identity.
Automated service alerts you to potential threats and may include insurance coverage for identity theft–related losses.
Monthly subscription fees range from $20 to $35 for services such as Aura, Kanary, Identity Guard, and LifeLock.
Requires proper setup and periodic review of notifications.
Select a reputable identity protection service and configure monitoring preferences. Our team uses and highly recommends Aura and Kanary. ProAlign staff prefer a monitoring service separate from any of the three credit bureaus.
Two-factor authentication (2FA) or MFA (multi-factor authentication) adds an extra layer of security, while password managers simplify password management.
No cost for 2FA or MFA; those settings can be found in your mobile or desktop device. Password manager subscriptions typically range from $20 to $35 per month. Many are free for personal use.
Minor setup process for both 2FA and password manager usage. Using a password management tool may seem new at first; however, the convenience and security they offer quickly becomes a standard routine.
- Choose a reliable password manager and enable 2FA/MFA wherever possible. ProAlign staff use 1Password due to its security rigor and top rating. 1Password has a browser add-on for convenience when using a desktop. 1Password includes a mobile version that can be set up as the default (vs keychain) on your mobile device.
- Once comfortable with your Password Manager, ensure all logins use a unique password which is updated regularly. Your Password Manager can also help you track email addresses.
- Using separate email accounts for shopping, delivery services, personal correspondence, social media, coupons, and needs is a recommended operational security measure.
In Addition
When possible, use an authentication application as the second factor instead of a text since stealing a mobile phone or SIM stealing remains a risk. 1Password’s desktop version has an edit feature that also allows for search of a breached password to help identify where all you might have used that password.
Antivirus software detects and prevents cyber threats, safeguarding against phishing emails and malicious attachments.
Monthly subscription fees range from $3 to $5 per device for services like MalwareBytes, Bitdefender, or Norton.
Minimal setup required, primarily installation. Be sure to regularly update your antivirus software; otherwise, the program is ineffective.
- Select a trusted antivirus application such as MalwareBytes for comprehensive protection. ProAlign staff use MalwareBytes based on feedback from our cybersecurity partners who also recommend MalwareBytes for businesses.
For Windows users, MalwareBytes works with Microsoft Defender for dual protection. MalwareBytes also includes multi-device (family) subscription.
Learn more about our services: ProAlign Intelligence Services
Limiting personal information on social media reduces the risk of identity theft and scams.
No financial cost.
Requires personal discipline and time to review privacy settings.
- Research and adjust privacy settings on social media platforms and minimize sharing personal details on your public and private profile such as family names, birth dates, home addresses, email addresses, high school details, etc.
- Ensure usernames do not contain your name, significant graduation/birth/wedding years, pet names, hobbies, nor associated cities/states.
We recommend a personal privacy assistant app such as Kanary that scans the internet for your exposed personal information on data broker and spam sites. It helps remove that data automatically, giving you control over your digital footprint and protection against scams or identity theft.
In Addition
ProAlign can perform a detailed analysis for your personal available data called a Digital Footprint. This will include openly available information from the surface web as well as the dark web such as social media data, breach data, third-party published data, documents, and/or images. The report includes links to where your personal information was found and recommendations to help remove or take down information.
Encrypted email ensures secure communication and protects sensitive financial accounts. Many encrypted email providers also offer the ability to create multiple alias email addresses to compartmentalize different accounts, enhancing privacy and security.
Monthly subscription fees range from $10 to $15; some services, like Proton Mail, also offer free tiers.
Adds an additional inbox to manage, but password managers can simplify access.
- Select an encrypted email service such as Proton Mail (used by ProAlign staff). Use it exclusively for all financial institutions and create separate aliases for each financial account or institution.
In Addition
Once comfortable with encrypted email, consider using Proton Drive or similar secure cloud storage to store scanned digital copies of your passports, driver’s licenses, and other important documents. Share these via secure links rather than email attachments.
SIM swap fraud is a common tactic used by criminals to intercept two-factor authentication codes and take over your accounts.
No cost.
One-time setup per cellular account.
- Contact your mobile phone carrier and request a PIN or password be added to your account to prevent unauthorized changes. Enable SIM Card Lock on your phone so that a PIN is required when the phone is restarted or the SIM is changed.
VPNs anonymize your internet traffic on public Wi-Fi networks, protecting you from eavesdropping and data interception.
Monthly fees range from $2 to $5 for services like Private Internet Access (PIA) or NordVPN.
Mostly seamless, though some websites might restrict access when VPNs are enabled.
- Choose a reputable VPN provider (ProAlign staff recommend PIA). Install the VPN app and ensure it is active when using public or unsecured Wi-Fi networks.
In Addition
VPNs also allow access to geo-restricted content by selecting servers in different regions.
Fight Phishing
Always be cautious of unsolicited requests for personal information. When in doubt, contact the organization directly using official contact details rather than links or phone numbers provided in suspicious emails or texts.
Stop Pre-Approved Credit Offers
Opt out of unsolicited credit offers by registering at optoutprescreen.com and DMAchoice.org to reduce the risk of intercepted mail.
Secure Your Phone
Use passcodes and biometric locks (fingerprint, face recognition). For iPhones, enable Find My iPhone and ensure you can remotely wipe your device if lost or stolen. Avoid using public charging stations, which can be a source of malware infection.
Collect Mail Daily
Prevent mail rerouting by promptly collecting mail or placing a hold when away. Consider using a secure mailbox.
Don’t Put Checks in Your Mailbox
Deposit checks directly at a post office or USPS collection box to avoid theft.
Review Statements Regularly
Monitor credit card and bank statements for unauthorized charges, including small, incremental amounts.
Shred Sensitive Documents
Dispose of paper documents containing personal information securely to prevent dumpster-diving identity theft.
Avoid Using Debit Cards for Online Purchases
Credit cards often offer better fraud protections and easier recourse in case of theft.
