It’s tax season, so be careful around your email inbox. Hackers are busy spamming users with all kinds of tax-related scams, including claims the IRS is ready to hand over a million-dollar refund.
Spoiler: It’s not. Cybersecurity and anti-phishing provider Trustwave compiled a list of the most common tax scams it’s seen this year. They include emails impersonating the IRS that offer “the stunning amount of $16.5 million in approved funds if the target gives the information required.”
The email asks the user for their name, address, phone number, and valid ID details—all information a scammer could use to commit identity theft. However, the message is loaded with grammar and spelling mistakes and originates from a Gmail address.
(Credit: Trustwave)
Still, Trustwave notes the offer of the $16 million may be enough to fool less-tech savvy users in desperate need of cash. “This message preys on the recipient’s desire for financial gain by hoping that they will ignore the warning signs, which include the email being very poorly worded, and give away their sensitive data,” the company wrote in a blog post(Opens in a new window) on Thursday.
Trustwave also spotted hackers trying to spread malware through emails that claim to contain a user’s W-2 tax form. An attached Word document is designed to trick an unsuspecting victim into downloading malware capable of secretly stealing passwords from a browser.
(Credit: Trustwave)
Trustwave’s warning arrives as other cybersecurity companies are also flagging tax-related scams. Last week, Malwarebytes discovered(Opens in a new window) a malware campaign also impersonating the IRS to send fake W-9 tax forms to users. In reality, the attached W-9 form is rigged to download the Emotet malware, which can install numerous malicious functions onto a computer.
Recommended by Our Editors
(Credit: Malwarebytes)
To protect yourself, it’s important to know the IRS mostly contacts people via old-school mail. Only in special circumstances will it call. “Even then, taxpayers will generally first receive a letter or sometimes more than one letter, often called notices, from the IRS in the mail,” the IRS says(Opens in a new window).
For other tips, check out our guide on avoiding tax scams. The IRS is also warning the public about various tax scams(Opens in a new window).
Like What You’re Reading?
Sign up for SecurityWatch newsletter for our top privacy and security stories delivered right to your inbox.
This newsletter may contain advertising, deals, or affiliate links. Subscribing to a newsletter indicates your consent to our Terms of Use and Privacy Policy. You may unsubscribe from the newsletters at any time.
Hits: 0
