--- What: The COVID-19 Economic Injury Disaster Loan (EIDL) and EIDL Advance programs provide funding to help small businesses recover from the economic impacts of the COVID-19 pandemic.
--- An official letter has been received stating that: Dear Sir or Madam, We are reaching out to you regarding a loan taken out in your identity with the U.S. Small Business Admin. (SBA). This letter is to inform you that we believe your identity may have been used, without your knowledge or permission, to obtain a COVID-19 Economic Injury Disaster Loan (EIDL) for which you never received any of the loan proceeds. The SBA is committed to working with you to resolve this unfortunate situation.
--- All of the phone numbers and contact information in the letter matches the SBA online site correctly. So, the letter itself is not fraudulent. ALSO included is the loan #.
We already have 2 'free' credit watches from data breaches at a hospital and United Healthcare's 'Change Healthcare' data site that provides data for/from numerous hospitals and insurance companies. Geez !!!
Question? Has anyone here had this 'experience' and readily resolved this issue?
Thank you in advance,
Catch
Comments
Might be a real thing.
So it could be legitimate, and I am sorry if so.
Hopefully, you will not see anything alarming and the entire incident would turn out to be a nasty hoax.
However,
If there was indeed a personal loan taken out in your name, you would see the details on the report, and would have the relevant information to contact SBA; or
If the loan was taken in your name on a business, you would at least see an SBA inquiry on the report, and again would have something concrete to contact SBA with.
In either case, doing a credit freeze as Old_Joe suggested would seem like a good idea then, until you have a chance to sort things out with SBA.
Finally, it would have been difficult for and, likely, not the goal of anyone to collateralize this loan - assuming it was actually made. If so, I believe the amount would be $14K personal / $25K business at the most, so it is unlikely to be a six or seven figure loan and should be relatively easier to clear up. (I could not find the SBA link for this, so here is one from the lending site.)
Hope this helps.
SEVERAL DAYS later, somebody did call back. We were told that there was an ATTEMPT to file a fraudulent claim that was flagged and that's what prompted the initial letter. But they won't provide any other details - who filed, from what job, etc. We were told NOT to worry, except to watch for any unusual credit report activities. STRANGELY, we were also told that the IL system would keep generating some related follow up letter(s) that couldn't be cancelled, but to just ignore it. Thankfully, nothing unusual showed up on her credit reports.
We subscribe to free Credit Karma, as well as some additional free monitoring provided because of some other breaches in the news.
What concerns me in the OP is that the SBA loan was processed and proceeds sent so someone not @catch22.
We have started the process, as per the paperwork received. I will update this thread as everything progresses in the future.
One last 'complaint' about our wonderful world of all things online. We've had a 'home' online presence since 1997; and have fully enjoyed the experience. My 'work' career had me involved with technology for more than 40 years; and many more years of keeping 'up' with everything involved with technology at home.
While I understand the ongoing attacks and system breaches of data centers of all sorts; I keep my fingers crossed that all organizations are spending the money needed to hire the folks they need to attempt to stay ahead of the hackers.
We keep all of our home systems up to date and use VPN for online; and anti virus programs. The only periodic downside for VPN is that it has to be disabled for access to some online accounts. A small bother to deal with for some protection.
Can you imagine the downside to Schwab's stock price if it admitted a multi-billion dollar hack?
Like Old Joe we have had credit freezes on all our accounts for years. Not fool proof but I think it helps
Unless one lives in California ... https://oag.ca.gov/privacy/databreach/reporting
Once processing began, we were notified that the original fraudulent claim was in the amount of $13,300. No charges were ever placed against any accounts we have.