Fake IRS Emails Spreads Malware
The Internal Revenue Service is warning people about an email attack that uses messages pretending to be from the IRS. The attack installs malware on unsuspecting users' machines. The hackers can gain control of the computer or secretly download software that tracks every keystroke, eventually giving them passwords to sensitive accounts, such as financial accounts.
The scam starts with messages to taxpayers from email addresses that fake legitimate IRS addresses. The emails contain a link to a fake IRS.gov website that displays fake details about the recipient's tax refund, return or account. The fake emails have subject lines like "Automatic Income Tax Reminder" or "Electronic Tax Return Reminder." They claim to contain a temporary password to access the files purportedly needed to submit a request for a refund or for information. However, those files are actually just malware in disguise. By entering the password, the victim unintentionally downloads malware that could enable the malicious cyber actors to take control of the affected system or obtain sensitive information.
The scam campaign is spreading nationally, according to the IRS. The hackers behind it are using dozens of compromised websites and web addresses that pose as IRS.gov, making it a challenge to shut down, according to the IRS. The attacks are working, despite the fact that it's outside of traditional tax season for most Americans.
This latest scheme is yet another reminder that tax scams are a year-round business for thieves. We urge you to be on guard at all times. You can avoid this by remembering that the IRS still favors snail mail. The IRS would never call or email directly asking for personal information online. It is best to always ignore suspicious calls and emails and reach out to organizations, like the IRS, directly if there are any questions.