Techdirt. Stories about "lifelock"

Techdirt. Stories about "lifelock" Easily digestible tech news... http://www.techdirt.com/ en-us Techdirt. Stories about "lifelock"http://www.techdirt.com/images/td-88x31.gifhttp://www.techdirt.com/ Wed, 19 May 2010 12:36:00 PDT Turns Out Lifelock's CEO Has Been A Victim Of Identity Fraud 13 Times Mike Masnick http://www.techdirt.com/articles/20100519/0440599489.shtml http://www.techdirt.com/articles/20100519/0440599489.shtml fined $12 million for bogus advertising and absolutely dreadful security practices (the private data that Lifelock claimed it was helping you protect was not encrypted and was available to more than just authorized employees). Of course, the most amusing thing of all was how the CEO of the company, Todd Davis, plastered his Social Security Number everywhere to show how "safe" he felt with the company's service. In the past, we had noted that this didn't actually stop him from from being a victim of identity fraud -- when someone used his well publicized SSN to get a $500 loan in his name. Oh, and then there was the story about how the CEO then personally went to the home of the guy who did this, and "coerced" a confession out of him. In doing so, it ruined the police investigation and tainted the case.

Thankfully, it now turns out that there were twelve other opportunities to taint evidence. Yes, it's now come out that the CEO who proudly gave away his SSN because his own company would protect him has been a victim of identity fraud at least 13 times. And they say 13 is an unlucky number...

The stories go on and on, with lots of people using his Social Security Number to open up various accounts -- many of which it appears he didn't find out about until collections agencies came calling. Could there be any worse advertising for Lifelock than this? It's even pissing off the police

"It's unfortunate he chose to conduct business in that way," [Albany police] spokeswoman Phyllis Banks said. "It's not fair to [AT&T] because they're losing a pretty substantial amount of money."

Update: Lifelock, as per usual, is trying to spin this in a positive way, sending over a PR statement about how we should really pay attention to all the times his identity wasn't used fraudulently. Very convincing.

Permalink | Comments | Email This Story
]]> is-that-in-their-ads? http://www.techdirt.com/comment_rss.php?sid=20100519/0440599489 Wed, 10 Mar 2010 06:50:00 PST LifeLock Has To Pay $12 Million For Bogus Advertising, Little Actual Protection And Awful Security Mike Masnick http://www.techdirt.com/articles/20100309/1455598482.shtml http://www.techdirt.com/articles/20100309/1455598482.shtml AdamR was the first of a few of you to point out that the FTC (along with 35 state attorneys general) has fined Lifelock $12 million for a variety of misdeeds, starting with bogus advertising. This should be no surprise to Techdirt readers, as the discussions around LifeLock have always raised a lot more questions than were answered. It kicked off with the fact that LifeLock's CEO, who proudly places his Social Security Number on ads to "prove" how convinced he is that LifeLock will protect him... was a victim of identity fraud himself. Oh, and there was also the stuff about how one of the founder's of the company had a past that involved doing bad things with the private information of his own customers. And then there was the story about how the CEO of LifeLock, after having his own identity fraudulently used, went to the home of the guy who did it to "coerce a confession."

But the bigger questions were about the service itself. All it really did was put a fraud block on your credit, which you could do for free. It didn't stop people from using your existing credit cards if they had access to the information, or from taking out loans in your name (which is what happened to the CEO) -- even though its advertisements implied you'd be safe from such situations (which are more common than someone taking out a credit card in your name). Oh, and then there was the fact that the fraud reports that Lifelock would put on accounts were found to be illegal.

All that looks pretty bad -- and it gets worse as you read the details of the FTC slapdown. There was the questionable advertising, which went beyond just false implied promises -- to sending out letters that tried to claim that the recipient's info "wasn't safe" as a scare tactic. On top of that, apparently, LifeLock itself wasn't particularly secure with how it handled its customers private information. This fact looks even worse when you realize that LifeLock would prey on firms who had recently had data breaches, and suggest they sign up customers for a "free" year of LifeLock -- thereby putting their data at risk yet again. Not only was the data not properly handled, but LifeLock falsely claimed that the data was encrypted and only authorized employees would have access. Neither turned out to be true. Basically, it sounds like rather than protect your identity, LifeLock put you at greater risk.

Permalink | Comments | Email This Story
]]> feel-safer? http://www.techdirt.com/comment_rss.php?sid=20100309/1455598482 Thu, 28 May 2009 20:42:45 PDT Lifelock Found To Be Illegally Placing Fraud Alerts On Credit Profiles Mike Masnick http://www.techdirt.com/articles/20090528/0243215040.shtml http://www.techdirt.com/articles/20090528/0243215040.shtml been involved in identity fraud operations. And, of course, there's the whole issue with the company's CEO becoming a victim of identity fraud, while out promoting the service, by happily displaying his social security number in ads. In response to this, rather than letting the police handle the situation, the CEO hunted down the guy who impersonated him with a camera crew and coerced a "confession" out of the guy. This basically ruined the police investigation and they gave up prosecuting the case, saying that the evidence was tainted. Oh yeah, and there's the matter of the class action lawsuit against the company from customers who realized that Lifelock doesn't do much to actually prevent identity theft.

However, it's still surprising to find out that a court has ruled that Lifelock's fraud alert services are illegal. The lawsuit was brought by Experian, one of the big credit rating agencies, complaining that Lifelock abuses the fraud alert process. By law, the credit ratings agencies need to agree to put a free fraud alert on an account at the request of the account holder if they feel they're at risk of identity fraud. The alert requires anyone trying to open a new line of credit to first confirm with the customer before being able to extend the line of credit (basically, if someone tries to open a new credit card, the cardholder gets a call to make sure they really wanted it).

This is a free service, which lasts for 3 months -- at which point you need to proactively renew it. One of Lifelock's services is putting that alert on your accounts and promptly renewing it when the 3 months are up. Even though anyone can set their own up for free, for some people it's worth paying Lifelock to manage that process. Experian claimed it was an abuse, well beyond what the law was intended for, and that it was costing the company a ton of money to manage all of these requests. The judge agreed, noting that the lawmakers did not appear to intend for individuals to have middlemen place and manage fraud alerts.

While I'm somewhat skeptical of Lifelock, the idea that a company can't manage such alerts for an individual seems somewhat silly and counterproductive. The issue, though, probably isn't so much with the ruling, but with the law. Perhaps Congress should simply fix it and make it clear that if you want to pay some company to manage such alerts for you, that's perfectly fine.

Permalink | Comments | Email This Story
]]> oops http://www.techdirt.com/comment_rss.php?sid=20090528/0243215040 Mon, 30 Jun 2008 06:46:00 PDT Are Companies Responsible For Actions Of Affiliates? Mike Masnick http://www.techdirt.com/articles/20080630/0157031544.shtml http://www.techdirt.com/articles/20080630/0157031544.shtml suing Zappos over potential trademark infringement done by an affiliate -- and now we've got another similar story. The company NameSafe is suing competitor LifeLock over Google ads that make use of NameSafe's name. While we've seen plenty of lawsuits where Google was incorrectly sued over ads based on competitor search terms, this case actually does seem a little more reasonable on those points: rather than suing Google, NameSafe is suing LifeLock, and NameSafe can probably make a half-decent case that the ads could be seen as confusing or deceptive.

However, where this case gets more interesting is on the question of whether LifeLock is to blame -- or if it's the fault of an affiliate marketer, as LifeLock claims. LifeLock says that it terminated the affiliate's account and also reminded all of its affiliates that this type of activity goes against their reseller agreements. That seems like a reasonable response, but for now the lawsuit against LifeLock continues, which will inevitably raise questions about whether or not a company is responsible for the actions of its affiliates and resellers. It seems like common sense to say no -- that the liability should remain with those who actually did the action -- but we've seen stranger decisions from courts before, so it may not be clear cut here.

Permalink | Comments | Email This Story
]]> lawsuits-galore http://www.techdirt.com/comment_rss.php?sid=20080630/0157031544 Fri, 2 May 2008 06:44:00 PDT Will Lifelock's CEO Get To Be A Part Of The Class Action Lawsuit Against Lifelock? Mike Masnick http://www.techdirt.com/articles/20080430/232001994.shtml http://www.techdirt.com/articles/20080430/232001994.shtml failed to stop identity fraud carried out against him (oops). Oh yeah, also the stuff about how the company's founder was being investigated for fraud (and potential identity fraud) at a previous company.

So, it should come as little surprise that some customers of Lifelock aren't particularly pleased with the company and have filed a class action lawsuit against the company, claiming deceptive advertising, and noting that it doesn't really provide much security. One additional nugget of information: the identity fraud against the CEO that we mentioned earlier is just the tip of the iceberg. The CEO's social security number is apparently now widely in use among identity scammers. Well, maybe he'll get some money out of the class action lawsuit, since it appears that he was misled by his own advertising...

Permalink | Comments | Email This Story
]]> he-could-qualify http://www.techdirt.com/comment_rss.php?sid=20080430/232001994 Thu, 26 Jul 2007 11:44:22 PDT Does LifeLock Charge Extra To Coerce Suspected Identity Thieves? Carlo Longino http://www.techdirt.com/articles/20070726/104009.shtml http://www.techdirt.com/articles/20070726/104009.shtml failed to protect the company's CEO from identity theft. A man in the Dallas area used the CEO's social security number -- which is prominently displayed in LifeLock's marketing materials -- to obtain a $500 loan, and police were waiting to get some subpoenaed information when the CEO took things into his own hands. He showed up at the fraudster's house with a film crew, and apparently coerced a confession out of the guy, who police say is mentally disabled. The confession is legally worthless, and police and prosecutors say it's tainted the case, so they're not going to proceed with their investigation, and have no plans to arrest the suspect. So, it would appear, that not only do LifeLock's anti-identity theft measures not work, the company also manages to bungle the prosecution of identity thieves.

Permalink | Comments | Email This Story
]]> smooth-move http://www.techdirt.com/comment_rss.php?sid=20070726/104009