Comments on: TD Ameritrade Discovers Database Breach http://www.bargaineering.com/articles/td-ameritrade-discovers-database-breach.html personal finance blog with anecdotes, advice and commentary. Sat, 21 Nov 2009 22:47:06 -0500 http://wordpress.org/?v=2.8.5 hourly 1 By: Matthew Elvey http://www.bargaineering.com/articles/td-ameritrade-discovers-database-breach.html/comment-page-1#comment-302574 Matthew Elvey Mon, 27 Apr 2009 05:27:18 +0000 http://www.bargaineering.com/articles/td-ameritrade-discovers-database-breach.html#comment-302574 Jonathan, those are "disposable email addresses" or DEAs of the "plus-addressing" kind, which have been around far longer than GMail and are widely available. DEAs were crucial to my uncovering of this breach. Jim, you suggest that TD Ameritrade’s Asset Protection Guarantee is broader than it actually is; it only covers cash or securities at TD Ameritrade; any assets lost as a result of the breach not held in a TD Ameritrade account are not covered. Click on my name to visit my blog where I disclose more info on the breach, including new news about the lawsuit that led to that email. Jonathan, those are “disposable email addresses” or DEAs of the “plus-addressing” kind, which have been around far longer than GMail and are widely available. DEAs were crucial to my uncovering of this breach.

Jim, you suggest that TD Ameritrade’s Asset Protection Guarantee is broader than it actually is; it only covers cash or securities at TD Ameritrade; any assets lost as a result of the breach not held in a TD Ameritrade account are not covered.

Click on my name to visit my blog where I disclose more info on the breach, including new news about the lawsuit that led to that email.

]]> By: Jonathan http://www.bargaineering.com/articles/td-ameritrade-discovers-database-breach.html/comment-page-1#comment-154074 Jonathan Fri, 14 Sep 2007 15:55:54 +0000 http://www.bargaineering.com/articles/td-ameritrade-discovers-database-breach.html#comment-154074 GMail gives you an easy way to figure out how spammers got your email address. Say your address is <code>myaddress@gmail.com</code>. If you signing up with TD Ameritrade, you could give them the address <code>myaddress+TDAmeritrade@gmail.com</code>. Any mail sent to that address will go to your mailbox, making it very easy to determine who's email database was sold/stolen/etc. If you start getting overwhelmed with spam at one of these addresses, you can set a filter to delete those messages (you should probably change your address with the company (or stop doing business with them)). Unfortunately, not all companies' sign up forms will accept email addresses with the plus sign, but this works well for those that do. GMail gives you an easy way to figure out how spammers got your email address. Say your address is myaddress@gmail.com. If you signing up with TD Ameritrade, you could give them the address myaddress+TDAmeritrade@gmail.com. Any mail sent to that address will go to your mailbox, making it very easy to determine who’s email database was sold/stolen/etc. If you start getting overwhelmed with spam at one of these addresses, you can set a filter to delete those messages (you should probably change your address with the company (or stop doing business with them)). Unfortunately, not all companies’ sign up forms will accept email addresses with the plus sign, but this works well for those that do.

]]>