Business & Investment

“It’s not just the contents of that card”: Don’t post your COVID-19 vaccination card on social media — that’s why

You may not see the risk of sharing Instagram or Twitter
TWTR,
+ 0.31%

Celebrate vaccination against the new coronavirus with selfies and vaccination cards. However, personal information theft experts and consumer advocates are advised to think twice before posting that information online.

“Every time we post personal information, we increase the risk,” Eva Velasquez, president and CEO of the Personal Information Theft Resource Center, told MarketWatch. “It’s not just the contents of that card. It’s about what else you have — and Status of data breaches in this country, You can be confident that the information about you is there. “

Such warnings are especially relevant as follows: More than a dozen states We plan to extend the vaccine’s eligibility to all adults this week. As of Wednesday, about 29% of the US population had been vaccinated at least once with the COVID-19 vaccine, and 16% had been fully vaccinated. Centers for Disease Control and Prevention..

Instead of posting the card online, instead of posting the card online, a thumbs-up photo tells friends and followers that they have been vaccinated, according to Florida-based privacy consultant, speaker, and writer Carrie Kirsky. Just take a picture.You can also post a photo of Your vaccination sticker.. But no one else needs to look at the physical card, she said.

Details that may look harmless

Vaccination card Issued as physical evidence of vaccination Not standardized, And some states and local governments publish their own versions.But widely used Paper vaccination card designed by CDC Include the person’s full name field. Date of birth; Patient number; Vaccine manufacturer and lot number. Date of vaccination; medical professional or clinic involved in the administration of the vaccine.

These details may seem harmless enough, but after all, birthday information is already ubiquitous on sites like Facebook.
FB,
+ 1.40%

— Consumer agencies and organizations warn that malicious individuals could use this information for the purpose of stealing personal information, especially if your account’s privacy settings are loose.

“Social media is not the location of the COVID-19 vaccination card,” the Federal Trade Commission said. Warning in February.. “Once you get what you need, spoofing criminals can use that information to open a new account in your name, claim a tax refund yourself, or engage in other personal information theft. You can do it. “

“No more surprises me”

When it comes to theft of personal information, Kerskie said, “It’s all about assembling puzzle pieces,” which is a digital ID. “The more information bad guys and spoofing criminals have about you, the more likely they are to succeed,” she told MarketWatch.

It’s true that some of the data on that card, like your name, has already been published, Velázquez added.But it also includes your date of birth, and Potentially some health information.. “That’s one of the things you really want to take advantage of,” she said. “I don’t want to be wary of it, but I don’t think it’s as harmless as most people think.”

After all, Mr. Velasquez said that a villain with knowledge of your vaccination status, the vaccine you received, and the area you live in will use that small amount of information to gain your trust. He said he could target you with email scams. Please let go of the additional information. “I think that’s a real concern,” she said.

“”
A malicious person could target you with a phone or email scam that uses that small amount of information to gain credibility.

Or, Kerskie says that the tissue you vaccinated violates the database, I want to offer now You are Free ID monitoring service — And send a link to enter sensitive information. “This is a kind of stretch, but in the world we are in today, nothing surprises me anymore,” she said.

Kirsky added that legitimate organizations are always looking for creative ways to verify their identities, and information about when and where they received the COVID-19 vaccine was ultimately part of the identification question. There is a possibility of becoming.

“There’s a lot you can do with it, so why give the bad guys more ammo than you need,” she said.

In some versions of So-called vaccine passports are currently in work — And the recent launch of Digital in New York ExcelsiorPass platform — Velasquez also called for opposition to the use of unjustified vaccine passport apps and platforms. Wait until you have more information about the legal status of your vaccine passport, she said. This is because it is a “moving target” that is currently ripe for fraud.

Scammers sell fake vaccination cards

News release in late January Better business bureau Please note that sharing a photo of your vaccination card may provide the information needed by a scammer to create and sell a counterfeit product. “British scammers caught Sell ​​fake vaccination cards on eBay
EBAY,
+ 3.05%

And Ticktaku“The bureau said. “It’s only a matter of time before similar shortcomings come to the United States and Canada.”

According to Velázquez, “the cat is out of the bag.” “We have already seen Forged vaccination card For sale on the dark web, “she said.

A Recent analysis Check Point Software Technologies, a cybersecurity company, has published an example of a vaccination certificate “for related activities that need to be manufactured, created, printed on order, boarding a plane, crossing borders, or asking someone to certify. I have been vaccinated. ”

One of the screenshots in the report states that a person sells a fake CDC vaccination card for $ 150 and accepts Bitcoin.
BTCUSD,
+ 0.51%

As payment.

“HIPAA’s well-known limits”

What about the Federal Health Privacy Act, Health Insurance Portability and Accountability Act (HIPAA)? Nicolastery, secretary-general of the Indiana University Hall Center for Law and Health, said MarketWatch “has little legal angle” in connection with individuals posting their vaccination cards online. Said.

HIPAA Protect protected health informationTerry explained from disclosures by target entities such as doctors and hospitals, including vaccine records, but in this case the disclosures are by the patient, not the entity. “It shows the well-known limits of HIPAA and does not apply to circulating health information. [for example], Social media, “he said.

Still, Terry advised not to post vaccination cards for “amazing amounts of information” that could help attempt to steal personal information, not to mention “the lack of sensitivity it shows”. Those who have not been vaccinated yet.Supply remains limited while eligibility is expanding nationwide.

“People don’t stop and think about what they’re doing,” Kirsky said. “Oh, I just want to share this with my friends.” You aren’t — you share it with the whole world. “

Do not miss it: Do not laminate the COVID vaccination card before doing these 5 things

Read again: Is it difficult to get the COVID-19 vaccine if I am healthy and working from home?

“It’s not just the contents of that card”: Don’t post your COVID-19 vaccination card on social media — that’s why

http://www.marketwatch.com/news/story.asp?guid=%7B21005575-02D4-D4B5-4572-D3512AB452EB%7D&siteid=rss&rss=1 “It’s not just the contents of that card”: Don’t post your COVID-19 vaccination card on social media — that’s why

Back to top button