Am I At Risk of Having My Identity Stolen or Being a Victim of Fraud?

Most people assume they would recognize a scam when they see one. The reality is that vulnerability often has less to do with awareness and more to do with the everyday habits and settings that quietly create exposure over time — passwords reused across multiple sites, auto-downloading images in email, privacy settings left at their defaults, or software that hasn't been updated in months.

This self-assessment checklist helps you take a clear-eyed look at where you stand. It covers three primary areas.

The first is cyber threats — the technical habits and settings that either protect you or leave you open. From two-factor authentication and password strength to unsolicited emails and app permissions, this section helps you identify the low-hanging fruit that bad actors count on people to overlook.

The second is common scams — the schemes most frequently used to target investors and retirees. Government impersonators, Social Security scams, IRS calls, romance scams, grandparent scams, sweepstakes fraud, and bank impersonation calls are all covered, along with clear guidance on what to do if you've encountered any of them.

The third is other issues — broader considerations like identity theft insurance, credit monitoring services, and virtual private networks that can add an additional layer of protection to your overall security posture.

This is not a one-time exercise. Use it as a periodic check-in — something to revisit when circumstances change, when you hear about a new type of scam, or simply as part of an annual review of your financial and digital security.