Anyone know more about this BT "uk identity verification" sch eme?

Owen Blacker owen.blacker at wheel.co.uk
Wed, 5 Mar 2003 14:06:46 -0000 

Nigel Metheringham:
> 
> > In phase one, the only details that will be entered are name, address
> > and Meter Point Asset Number - the number in the corner of every
> > household electricity bill which is unique to that property.
> 
> So to do identity theft you need a name, an address and a Meter Point
> Asset Number.  
> 
> The first 2 you get from the very helpful BT online phone directory
> service (make up a surname and a town, search on it, get name with
> initials or even forename plus full address).

Another good reason for being XD.  I've just checked; I don't show up.  If
anyone wants to try, I live in Ilford and both phone bills are in my name
but XD.

Obviously, if you do find my home number, I'd rather you mailed me ~off~list
:o)

> To get the meter reference number you go to one of the (many) sites that
> lets you do online comparison and switching of energy suppliers - see
> http://switchwithwhich.co.uk/enecontacts.html for a selection.
> 
> Change the victim's electricity supplier, and you will probably find
> that in the contractual bumpf that is presented to you (or sent to your
> previously defined throwaway email address), that the meter ref is given
> - at least thats how I remember it when I changed supplier a year back.

How would that work with a prepayment meter?

And the address at which I live is different to the one on the Electoral
Roll, fwiw...

> Looks like BT have basically just made the Electoral Register data a
> little easier to rip off.....   I hope there are some liability issues
> included, although expect that BT have carefully made sure that everyone
> other than them is liable.

Well, of course!  :)

> BT, promoting identity theft to the masses.

Now I ~love~ that slogan!  Maybe we should suggest it to them?

I really don't understand, though, how nobody grasps that ID cards will just
make ID theft ~easier~ (qv Stand report, again)


x
-- 
Owen Blacker
Senior Software Developer and InfoSecurity Consultant   Wheel: Group
See http://www.owens-place.org.uk/pgp.html -- more about my PGP keys
Sig  0xa7cb7592 | 9c1c 2996 075b 2daa 3660  6d2f ee34 fc94 a7cb 7592

_____________________________________________________________________
This e-mail has been scanned for viruses by MessageLabs.