Blogs

Even though we are closer to the "end" of personal income tax season, there is a wave of W-2 phishing attacks going on.  We see these coming in through thousands of reported scam attempts via our Phishing Alert Button.  The FBI and the IRS have repeatedly posted warnings that these attacks have started early and that the volume has gone up significantly this year.

Remember those Nigerian prince emails?  They are also called 'Nigerian 419' scams because the first wave of them came from Nigeria.  The '419' part of the name comes from the section of Nigeria's Criminal Code which outlaws the practice.  Well, those gangs have all 'growed up' and they are now behind many of today's W-2 scams.  It is surprisingly easy to do a little bit of research and send a spoofed email that looks like it came from your CEO or other C-level executive.

These W-2 scams are hitting everywhere, even a Cybersecurity contractor was recently hit with one.  Last Thursday, March 16th, the CEO of Defense Point Security, LLC - a Virginia company that bills itself as "the choice provider of cyber security services to the Federal government" - told all employees that their W-2 tax data was handed directly to fraudsters after someone inside the company fell for a W-2 spear phishing attack.  OUCH!

What To Do About It?

I strongly suggest you send the below email copy to ALL employees, and mark it as important for all employees in HR, Legal, and Accounting.  You're welcome to copy/paste/edit.

This year, authorities are warning about a massive wave of W-2 tax form phishing scams.  Cyber criminals are sending "spoofed" emails that look like they come from the CEO or another C-level executive and ask for a PDF with the W-2 tax information of all employees.  The W-2's have all the information needed to file fraudulent tax returns and steal anyone's identity.

Here are five steps to prevent an incredible amount of hassle and possible damage:

1. If you receive any email requesting any kind of W-2 tax information, pick up the phone and verify that request before you email any information to anyone.
2. File your taxes, at the state and federal levels, as quickly as you can, or file for an October 16 extension.  Both will prevent others from filing a bogus claim on your behalf.
3. Consider filing form 14039 and request an IP PIN from the government.  Form 14039 requires you to state you beleive you are likely to be a victim of identity fraud.  Even if cyber criminals haven't tried to file a bogus tax return in your name, virtually every American's data has been stolen which can lead to your identity being stolen.
4. Every 4 months, get a free once-a-year credit report from the three major credit bureaus.  Get them on your calendar (cycle through them) and dispute any unauthorized activity.  
5. Place a "security freeze" or "credit freeze" on your files with all three credit bureaus to prevent ID thieves from assuming your identity and open up a line of credit in your name.  Or, purchase an ID Theft Protrection policy so that others will monitor this on your behalf.  But be sure the policy does more that credit monitoring and sending you forms to correct ID Theft.   Your doing that in suggestion 4 above.

This time of year, it is even more important to think before you click!