A nonprofit publication of the Kentucky Center for Public Service Journalism

BBB Trends: Identity theft from beyond the grave — ‘ghosting’ is very real and very scary


The dark web and cyberattacks are scary enough on their own, but imagine receiving an email or instant message from a loved one that you know has already passed away. This practice is called “ghosting,” and approximately 2,200 deceased individuals per day are affected each year.

Criminals who engage in ghosting obtain Social Security numbers, previous addresses, birthdays, employment histories, and other information that they use to drain the deceased’s accounts. This can cause nightmares for surviving family members, particularly for any who had joint accounts with the dearly departed as they could be responsible for costs associated with damages.

It can take up to six months after death for financial institutions, credit bureaus, and the Social Security Administration to share with one another and update their records, officially labeling an account holder as deceased. As the result of this delay, ghosting usually goes unnoticed for months. Once the funeral is over and the estate is settled, relatives typically don’t think to check on credit reports associated with the decedent. Six months is plenty of time for fraudsters to steal important information necessary for identity theft from hospitals, funeral homes, and published obituaries.

The best way to protect a loved one’s personal information is to be prepared. Though it may not feel important at the time, monitor all accounts – both digital and physical – of the person who has passed away.

Be sure to include any current usernames, passwords, and security questions required to access their accounts in your records. All of this data should be stored in a secure location and only those who can be trusted should know how to access it. To prevent the hacking or ghosting of their online presence, lock or delete any accounts associated with the deceased using the collected information.

When writing an obituary, be cautious about how much information is included. For example, including the person’s age would be fine, but exclude their birth date, maiden name, or any other information that could be the answer to any of their security questions. To request a “deceased alert” on important records, send copies of the death certificate to the three credit reporting bureaus and any financial institutions, credit card companies, insurance firms, or banks where they held an account.

Unfortunately, scammers aren’t going to be scared away by garlic, wooden stakes, or other horror movie measures. However, with a little preparation, it is much easier to keep a deceased loved one’s identity safe from theft. Visit bbb.org for tricks and tips on how best to keep ghosting from haunting your family. If you suspect you’ve been haunted by a cyber being and your information has been stolen, recoup your soul possessions by visiting identitytheft.org.

Sandra Guile is the Community Outreach Specialist for BBB. She promotes BBB’s message of marketplace ethics through public speaking engagements, presentations, media relations, press releases, web content, and other written materials. Contact Sandra at (513) 639-9126 or sguile@cincinnati.bbb.org. Your BBB is located at 1 East 4th Street Suite 600 Cincinnati, Ohio 45202 – to reach the office, call (513) 421-3015.


Related Posts

Leave a Comment