Oct 022014

WCNC reports:

Police arrested a man and woman accused of identity theft in the Charlotte area.

CMPD charged Brent Caltagirone and Karima Lane with identity theft and conspiracy to commit identity theft and trafficking in stolen IDs on September 26.

Detectives determined through an investigation that Caltagirone was given the names and social security numbers by several individuals for the purpose of completing their income taxes. In addition to completing their taxes and keeping their refunds, Caltagirone used their names and social security number to open bank accounts including credit cards and a line of credit at Navy Federal Credit Union, according to police.

During this time Caltagirone also worked as the catering manager at Elwood’s BBQ where he would use the names and social security numbers from employee applicants to open credit cards, police said. It was also determined that Caltagirone was a suspect in an embezzlement from Elwood’s BBQ.

Read more on WCNC.

Oct 022014

Brian Krebs reports:

A Florida man was sentenced today to 27 months in prison for trying to purchase Social Security numbers and other data from an identity theft service that pulled consumer records from a subsidiary of credit bureau Experian.

Derric Theoc, 36, pleaded guilty to attempting to purchase Social Security and bank account records on more than 100 Americans with the intent to open credit card accounts and file fraudulent tax returns in the victims’ names. According to prosecutors, Theoc had purchased numerous records from Superget.info, a now-defunct online identity theft service that was run by Vietnamese individual named Hieu Minh Ngo.

Read more on KrebsOnSecurity.

Sep 302014

Thervil Alcinor, 34, of Miami, was sentenced today before U.S. District Judge Cecilia M. Altonaga to 88 months in prison, followed by three years of supervised release.

Alcinor previously pled guilty to one count of access device fraud, in violation of Title 18, United States Code, Section 1029(a)(2), and one count of aggravated identity theft, in violation of Title 18, United States Code, Section 1028A.

According to court documents, from January 2013 through May 2014, Alcinor was involved in the use of personal identifying information (names, dates of birth, and social security numbers belonging to real people) to file fraudulent applications for Social Security Retirement Insurance Benefits (RIB) and Social Security Disability Insurance Benefits (DIB), and to file fraudulent income tax returns with the IRS claiming false refunds.

Court documents state that Alcinor was involved in establishing online accounts on the Social Security Administration website, MySSA.gov, for already-existing RIB or DIB beneficiaries to redirect RIB and DIB payments to accounts (often prepaid debit card accounts) controlled by him. Law enforcement identified 945 fraudulently established MySSA accounts, all with similarly concocted fraudulent email addresses. The fraudulent claims resulted in $700,462 in fraudulent RIB and DIB payments.

According to court documents, Alcinor was also involved in the filing of fraudulent tax returns claiming refunds from the IRS which he directed into accounts (often prepaid debit card accounts) controlled by him. Specifically from April 2012 through September 2013, 54 fraudulent income tax refunds, totaling $174,862.20, were identified by H&R Block records as having been deposited into accounts associated with Alcinor. An additional 14 fraudulent tax refunds, totaling $31,137.28, were connected to the scheme by IRS.

SOURCE: U.S. Attorney’s Office, Southern District of Florida


Sep 292014

J.D. Tuccille writes:

It’s hard to keep up with the privacy-threatening shenanigans at the Internal Revenue Service, but let’s give it a try. Just days after revealing that the tax agency’s failure to follow its own rules put the private data of 1.4 million people at risk, the Treasury Inspector General for Tax Administration publicized the sentencing of Tax Examining Technician Missy Sledge for aggravated identity theft and mail fraud, and IRS employee Monica Hernandez for making and subscribing a false income tax return, wire fraud, and aggravated identity theft.

Read more on reason.

Sep 292014

Ed Arnold reports that two Lost Pizza Company locations were also impacted by the Signature Systems breach that affected Jimmy John’s:

The data hack that exposed the customers of more than 216 Jimmy John’s locations has also netted two Lost Pizza Company locations, both in North Mississippi.

Credit card authorization and point-of-sale technology company Signature Systems, Inc.  recently revealed that the customer data at 216 Jimmy John’s stores and 108 other restaurant locations including the Lost Pizza Co. locations in Tupelo and Southaven, Mississippi, had been exposed by cyber criminals.

Read more on Memphis Business Journal.

Two down, 106 more entities/locations to identify? Oh goody….

Sep 262014

Martin Moylan reports:

Two federal regulatory agencies have fined U.S. Bank $9 million and ordered the company to pay $48 million in restitution to customers unfairly billed for identity theft protection.

The action affects more than 420,000 consumers who signed up for theft protection from 2003 to 2012. The Office of the Comptroller of the Currency and the Consumer Financial Protection Bureau say those customers did not receive the full benefits of the products they purchased.

U.S. Bank was also ordered to improve its oversight of third-party vendors associated with “add-on” consumer products. A bank spokesman said the problem was primarily related to an outside firm offering identity theft protection.

Read more on MPR.