Why you should lie when answering security questions

 
Clark Howard had this recommendation from Adam Levin, founder of CyberScout, an identity management and data security services company.

Many financial institutions use security questions as an extra layer of security. You may be prompted to answer them if you forget your password and need to reset it.

Here’s the problem: Hackers may be able to gain access to your account just by guessing!

Answers to common questions like “What’s your mother’s maiden name?,” “What’s the name of your favorite pet?,” and “What street did you grow up on?” can often be found online — perhaps even on Facebook and Twitter.

“There’s so much information out there about us through social media or information that could be phished, that it’s too easy for someone to get a hold of those kind of facts that could be answers to security questions,” Levin said.

That’s why Levin suggests that you never tell the truth when you set answers to your security questions. You should lie.

When I chatted with Clark about my conversation with Levin, he agreed. He said you want to make sure that your answers can’t be researched or guessed.

For example, you could use a pet’s birthday instead of a human’s birthday because that information isn’t public record.

Although many websites have moved to stronger authentication methods, you probably have at least one account that uses security questions. Go ahead and update the answers from your account’s settings or security page now.

Answering security questions with lies may not stop a hacker in every case, but it does put up another roadblock.

Levin told me that criminals pay about $30 for a complete identity dossier on the black market, so the information obtained in the Equifax hack could potentially be worth billions of dollars.

However, if you set up barriers to make things harder for the scammers, they may just move on to the next victim.

Recap: 5 things you can do to protect your identity

  1. Set up free credit monitoring with Credit Karma
  2. Freeze your credit with Equifax, Experian and TransUnion
  3. Update the answers to security challenge questions
  4. Create strong passwords and set up two-factor authentication
  5. Monitor your financial accounts daily for suspicious activity

 

Advertisements

Leave a Reply

Fill in your details below or click an icon to log in:

WordPress.com Logo

You are commenting using your WordPress.com account. Log Out /  Change )

Google+ photo

You are commenting using your Google+ account. Log Out /  Change )

Twitter picture

You are commenting using your Twitter account. Log Out /  Change )

Facebook photo

You are commenting using your Facebook account. Log Out /  Change )

Connecting to %s