Shock: Identity Theft (Still) Often An Inside Job
from the just-realizing-this-now? dept
For years and years people have been pointing out that all those suggestions on how to avoid having your identity from getting stolen are pretty much useless considering how many ID theft scams are really inside jobs from companies who have access to all your data. So, of course, now that we're seeing all of these massive data leaks (some accidental, some on purpose by inside employees), we're hearing, yet again, that inside employees are one of the biggest issues in identity theft. Of course, if everyone has known this for so many years, how come no one's done anything about it? All of these companies that let minimum wage employees have full access to all your data and trusted them not to be tempted when scammers offer them $10 per report should be held responsible for not putting in place better systems to protect your data. This isn't a new problem by any means, and the fact that these companies chose to ignore it seems like negligence on their part.
Thank you for reading this Techdirt post. With so many things competing for everyone’s attention these days, we really appreciate you giving us your time. We work hard every day to put quality content out there for our community.
Techdirt is one of the few remaining truly independent media outlets. We do not have a giant corporation behind us, and we rely heavily on our community to support us, in an age when advertisers are increasingly uninterested in sponsoring small, independent sites — especially a site like ours that is unwilling to pull punches in its reporting and analysis.
While other websites have resorted to paywalls, registration requirements, and increasingly annoying/intrusive advertising, we have always kept Techdirt open and available to anyone. But in order to continue doing so, we need your support. We offer a variety of ways for our readers to support us, from direct donations to special subscriptions and cool merchandise — and every little bit helps. Thank you.
–The Techdirt Team
Reader Comments
Subscribe: RSS
View by: Time | Thread
insiders and identity theft is no surprise
[ link to this | view in chronology ]
Why, yes, it IS negligence.
[ link to this | view in chronology ]
No Subject Given
BTW, we are an outside contractor, not state employees. I suspect the only way we would improve our system is either by forcing us to accept full liability for any losses incurred or by legistrative changes within the state in question. I suspect neither will happen anytime soon. Especially the former as "losses incurred" is difficult to determine in an identity theft case.
[ link to this | view in chronology ]
On the Choice to Ignore and Negligence..
A collector of data will come to be defined as a 'custodian of an instrument', with instrument defined as something that could cause irreparable harm.
In the way a parent is responsible for leaving a drawer unlocked for a child to take a loaded gun, is the same as a collector leaving the drawer unlocked for a criminal to steal data; both the parent and collector are or should have been aware of the danger, in particular the likelihood of a crime being committed with the instrument, and accountability if a crime is committed with it (either the gun or the data respectively) as in this case both would be used as weapons to commit a crime.
The fact that the child may not understand what she is doing, whereas the criminal does is irrelevant. The point is the custodian of the instrument understands, and therefore is responsible, and that is what is relevant.
Bob
[ link to this | view in chronology ]