Digital privacy goes hand-in-hand with digital security … and there’s an increasingly-used piece of information which you control which the bad guys are after … it’s your cell phone number. More and more they are being used by the bad guys as a way to personal information that’s kept by nearly all corporations, financial institutions, and, yes, social media networks.
Your cell phone number is a gateway to your identity. It provides an entrance to all the data contained on your phone, and can connect your other information to you – your email address, physical address—everything. In a company’s database, your phone number becomes another piece of personally identifying data. But unlike our Social Security numbers, the number is not regulated, and no companies are mandated to keep it private.
Mobile phone numbers them become a target for attackers. Most of us have gotten wise to phishing and email breaches. Now there is SMiShing (pronounced “smishing”) … the act of sending a text message containing questionable links to harmful websites. Once the bad guys get your credentials, they can log into your banking site as you. Then, we all know what can be done: Monies transferred. Checks written. Stocks sold.
Even seemingly innocuous requests like the one from a sales clerk can lead to trouble. The fact that they now have it means it could be hacked. Customer phone numbers have been stolen from Anthem, Citigroup, JPMorgan Chase, Walgreens, and Yahoo.
What you can do:
- Use common sense: If you’re asked for your phone number, ask why.
- Get a virtual phone number: Google Voice gives you a free phone number for calling, text messaging, and voicemail. It works on smartphones and computers, and syncs across your devices so you can use the app while on the go or at home. Check out https://voice.google.com
- Enable two-factor or multi-factor authentication on all your devices:
- Sign up for the “do not call” lists, which are helpful for run-of-the-mill solicitations.
- Choose which private data you are willing to share: Maybe an email address, zip code or just your name as a way to identify you. It’s worth asking about with the person asking for data.