Not that I'm defending BT...but WEP security is in the default instruction set for configuration set delivered with the devices. I have seen this also in telco operators all over Eastern Europe. The problem is - they just dont give a rat's ass about the users security.
On the original issue. Nihil is right with his instructions. But unless you are keeping scans of your personal ID's on your computer, the identity theft probably happened somewhere else.