tion between the Social Security Number (SSN)
range and date of birth.
12. Personal identifying information provided
is associated with known fraudulent activity as
indicated by internal or third-party sources used
by the financial institution or creditor.
For example:
• The address on an application is the same
as the address provided on a fraudulent application; or
• The phone number on an application is the
same as the number provided on a fraudulent application.
13. The personal identifying information provided is of a type commonly associated with
fraudulent activity, as indicated by internal or
third-party sources used by the financial institution or creditor.
For example:
• The address on an application is fictitious, a
mail drop, or a prison; or
• The phone number is invalid, or is associated
with a pager or answering service.
14. The social security number provided is the
same as one submitted by other persons opening
an account or other customers.
15. The address or telephone number provided
is the same as or similar to the account number
or telephone number submitted by an unusually
large number of other persons opening accounts
or other customers.
16. The person opening the covered account or
the customer fails to provide all required personal
identifying information on an application or in
response to notification that the application is
incomplete.
17. The personal identifying information provided is not consistent with personal identifying
information that is on file with the financial institution or creditor.
18. For financial institutions and creditors that use
challenge questions, the person opening the covered
account or the customer cannot provide authenticating information beyond that which generally would
be available from a wallet or consumer report.
Unusual Use of, or Suspicious Activity
Related to, the Covered Account
19. Shortly following the notice of a change of
address for a covered account, the institution or
creditor receives a request for a new, additional,
or replacement card; a cell phone, or the addition
of authorized users on the account.
QUICK REFERENCE
alerts, notifications
or Warnings from a
consumer reporting
agency or service
provider (such as a fraud
detection service)
F1 alert
F2 Freeze
F3 address Discrepancy
F4 activity
suspicious Documents
F6 physical appearance
F7 physical identification information
F8 internal identification Verification
F9 paper application
suspicious personal
identifying information
F11 identification inconsistency
F12 Fraud match
F13 Fraud indicator
F14 Duplicate ssn
F15 Duplicate address/phone
F16 incomplete application
F17 identification mismatch
F18 authentication Questions
unusual use of, or
suspicious activity
related to, the covered
account
F19 coa/card request
F20 transaction patterns
F21 account performance patterns
F22 use of an inactive account
F23 Bad address on an active account
F24 missing statements
F25 unauthorized charges
notice from customers,
Victims of identity
theft, law enforcement
authorities, or other
persons regarding
possible identity theft in
connection with covered
accounts held by the
Financial institution
F26 Fraud
IDENtIt Y thEFt RED FlAGS
