IR-2018-125: IRS warns tax pros of new scam posing as professional associations


Bookmark and Share

IRS.gov Banner
IRS Newswire May 24, 2018

News Essentials

What's Hot

News Releases

IRS - The Basics

IRS Guidance

Media Contacts

Facts & Figures

Around The Nation

e-News Subscriptions


The Newsroom Topics

Multimedia Center

Noticias en Español

Radio PSAs

Tax Scams

The Tax Gap

Fact Sheets

IRS Tax Tips

Armed Forces

Latest News Home


IRS Resources

Compliance & Enforcement

Contact My Local Office

Filing Options

Forms & Instructions

Frequently Asked Questions

News

Taxpayer Advocate

Where to File

IRS Social Media


Issue Number:    IR-2018-125

Inside This Issue


IRS warns tax pros of new scam posing as professional associations

IRS YouTube Videos:

  • Phishing/Malware -- English
  • Why Tax Professionals Need a Security Plan -- English
  • How to Maintain, Monitor and Protect Your EFIN -- English

WASHINGTON – The IRS and its state and industry Security Summit partners today warned tax practitioners to beware of phishing emails posing as state accounting and professional associations.

This week, the IRS received reports from tax professionals who received fake emails that were trying to trick them into disclosing their email usernames and passwords.

Cybercriminals specifically targeted tax professionals in Iowa, Illinois, New Jersey and North Carolina. The IRS also received reports about a Canadian accounting association.

The awkwardly worded phishing email states: "We kindly request that you follow this link HERE and sign in with your email to view this information from (name of accounting association) to all active members. This announcement has been updated for your kind information through our secure information sharing portal which is linked to your email server."

Tax practitioners nationwide should be on guard because cybercriminals can easily change their tactics, using other association names or making other adjustments in their scam attempts.

Tax practitioners who are members of professional associations should go directly to those associations' websites rather than open any links or attachments. Tax practitioners who receive suspicious emails related to taxes or the IRS, or phishing attempts to gain access to practitioner databases, should forward those emails to phishing@irs.gov.

This scam serves as a reminder to all tax professionals that cybercriminals are targeting their offices in an attempt to steal client data.

To assist tax professionals with safeguards, the Security Summit partners urge practitioners to follow these minimal security steps:

  • Learn to recognize phishing emails, especially those pretending to be from the IRS, e-Services, a tax software provider or cloud storage provider. Never open a link or any attachment from a suspicious email. Remember: The IRS never initiates initial contact with a tax pro via email.
  • Create a data security plan using IRS Publication 4557, Safeguarding Taxpayer Data, and Small Business Information Security – The Fundamentals, by the National Institute of Standards and Technology.
  • Review internal controls: 
    • Install anti-malware/anti-virus security software on all devices (laptops, desktops, routers, tablets and phones) and keep software set to automatically update.
    • Create passwords of at least eight characters; longer is better. Use different passwords for each account, use special and alphanumeric characters and phrases. Password protect wireless devices and consider a password manager program.
    • Encrypt all sensitive files/emails and use strong password protections.
    • Back up sensitive data to a safe and secure external source not connected fulltime to a network.
    • Wipe clean or destroy old computer hard drives and printers that contain sensitive data.
    • Limit access to taxpayer data to individuals who need to know.
    • Check IRS e-Services account weekly for number of returns filed with EFIN.
  • Report any data theft or data loss to the appropriate IRS Stakeholder Liaison.
  • Stay connected to the IRS through subscriptions to e-News for Tax Professionals, Quick Alerts and Social Media.

Additional resources:

Back to Top 


Thank you for subscribing to the IRS Newswire, an IRS e-mail service.

If you know someone who might want to subscribe to this mailing list, please forward this message to them so they can subscribe.

This message was distributed automatically from the mailing list IRS Newswire. Please Do Not Reply To This Message.


This email was sent to cetinkayaadem.news@blogger.com by: Internal Revenue Service (IRS) · Internal Revenue Service · 1111 Constitution Ave. N.W. · Washington DC 20535 GovDelivery logo
We work across the world

From London to San Francisco, to our home base in (Saint Helier) Jersey, we’re looking for extraordinary and creative scientists to help us drive the field forward.

AC Investment Inc. currently does not act as an equities executing broker or route orders containing equities securities. If AC Invest’s business model were to change and it begins routing non-directed orders in NMS securities, it will comply with the disclosure requirement of Rule 606.

77 Massachusetts Avenue Cambridge, MA 02139 617-253-1000 pr@ademcetinkaya.com