Identity Theft Protection Checklist

Identity theft is rising as criminals exploit scams and data breaches to steal personal and financial information. Use this checklist to lower your risk and know what to do if something goes wrong.

Why it Matters

• Consumers reported more than 12.5 billion dollars in fraud losses in 2024, up about 25% from 2023.¹
• The FTC received 6.5 million consumer reports in 2024, including over 1.1 million identity theft reports through IdentityTheft.gov.¹
• Data breach severity rose 34% in 2024, exposing more high-value credentials such as Social Security numbers and account logins.²

Step 1: Secure Personal Information

• Lock up critical documents (Social Security card, passport, tax returns) and shred anything with personal or financial details before discarding.
• Don’t carry your Social Security card or unnecessary IDs every day.
• Limit who can access your mailbox, home office and shared devices. Remove accesses you no longer need.

Step 2: Strengthen Your Digital Security

• Turn on multi-factor authentication (MFA) for banking, email and key financial accounts.
• Use strong, unique passwords and a reputable password manager instead of reusing credentials.
• Keep your devices and apps updated and avoid public Wi-Fi for financial security. Instead, use your mobile hotspot or a trusted VPN.

Step 3: Protect Bank and Card Accounts

• Set up alerts so you can spot suspicious activity quickly.
• Review statements regularly and report unfamiliar transactions right away.
• If you have misplaced your card, use Online or Mobile Banking to lock your card.

Step 4: Guard Your Social Security Number and Credit

• Share your Social Security number only when absolutely required.
• Check your credit reports at least annually for accounts or inquiries you don’t recognize.
• Consider a fraud alert if your data may be exposed, or a credit freeze if you want to block most new credit in your name.

Watch for Scams and Breaches

• Imposter scams are the most reported fraud type and occur when criminals pose as banks, government agencies or familiar companies to fool their victims.¹
• Banks do not reach out to customers and ask for log in credentials or one-time access codes. Be skeptical of urgent calls, emails or texts asking for money, personal data or one-time access codes.
• Breach notices should be taken seriously. If you receive one, follow the instructions, change related passwords and monitor those accounts closely.

If Identity Theft Occurs

Act quickly if you see unfamiliar accounts, new card alerts, denied credit or collections calls about debts you don’t owe.

• Contact your bank and card issuers immediately to report the issue, close or freeze affected accounts and request new cards.
• Change passwords and turn on Multi-Factor Authenitcation (MFA) for any affected accounts.
• Place a fraud alert (or consider a credit freeze) with the major credit bureaus.
• Go to IdentityTheft.gov to file a report and get a step-by-step recovery plan.
• Save copies of all letters, emails and confirmations related to your case.

¹”New FTC Data Show a Big Jump in Reported Losses.” Federal Trade Commission.
²”TransUnion Study Finds U.S. Data Breach Severity Reaches New High.” TransUnion.