The Stolen Identity: 14 Accounts Opened Using One Leaked SSN

Background

A client received a credit alert about a new account they didn't open. They contacted TraxinteL to understand the full scope of their identity exposure after suspecting their SSN was compromised.

Investigation Methodology

1. Dark Web Exposure Scan: We searched dark web marketplaces, paste sites, and private forums for any listings containing the client's personal information.
2. Full Identity Audit: Using the client's known PII (with their written consent), we performed a comprehensive audit of all accounts and applications associated with their identity.
3. Source Determination: We identified where and when the initial data breach occurred.

Key Findings

• The client's SSN, date of birth, and mother's maiden name were found in a dark web listing priced at $15, part of a bulk set from a 2023 health insurance breach.
• 14 accounts had been fraudulently opened using the client's identity: 4 credit cards, 3 phone plans, 2 utility accounts, 2 bank accounts, a payday loan, and 2 retail store credit lines.
• Total fraudulent debt accumulated: $67,000.
• The fraud activity started 6 weeks after the dark web listing was first posted.

Outcome

Identity freezes were placed across all three credit bureaus. Each fraudulent account was reported with supporting documentation. An FTC identity theft report was filed. The client was enrolled in ongoing dark web monitoring. Total investigation time: 2 weeks.