[oagitm] MS-ISAC - Cyber Security Newsletter Tip - March 2013 - Protect Yourself from Email Tax Scams
- From: "MASSE Theresa A * CIO" <theresa.a.masse@xxxxxxxxxxx>
- To: "oagitm@xxxxxxxxxxxxx" <oagitm@xxxxxxxxxxxxx>
- Date: Wed, 20 Mar 2013 20:27:58 +0000
OAGITM Members:
Attached is the latest edition of the MS-ISAC monthly Security Tips newsletter
-- that you can customize for your organization! Just one more way to promote
and keep security awareness on everyone's radar screen.
Regards,
Theresa A. Masse
Chief Information Security Officer
State of Oregon
Department of Administrative Services
Enterprise Security Office
503-378-4896
Data Classification 2 - Limited
Confidentiality Notice: This message, including any attachments or links, may
contain privileged, confidential and/or legally protected information. Any
distribution or use of this communication by anyone other than the
intended recipient(s) is strictly prohibited. If you have received this
communication in error, please notify the sender immediately by replying to
this message and then delete all copies of the original communication,
including any attachments and/or links.
Just as a reminder - these newsletters are sent to you in template form. We do
this so that you can add your organization's name/logo and your name to the
newsletter.
INSERT
Your
LOGO
{INSERT Organization}
Monthly Security Tips
NEWSLETTER
March 2013
Volume 8, Issue 3
Protect Yourself from Email Tax Scams
From the Desk of [Insert Name here]
It's tax season and criminals are seizing the opportunity for scams. Don't
become the next victim.
Scammers leverage every means at their disposal to separate you from your
money, your identity, or anything else of value they can get. They may offer
seemingly legitimate "tax services" designed to steal your identity and your
tax refund, sometimes with the lure of bigger write-offs or refunds. Scams may
include mocked up websites and tax forms that look like they belong to the IRS
to trick you into providing your personal information.
Scam artists can prey on users by promising refunds that are fraudulent, a scam
the IRS says has been rampant in previous years. In these scams, notices are
posted on bulletin boards, in libraries, and at other community sites where
people visit either in person or online. Scammers make money from this trick
in two ways: first, they collect a fee for helping to "file" for a refund on
behalf of their victims, and then they steal the victim's identity for further
exploitation. The victims are left paying a fee for a fraudulent service, not
getting a refund they thought they would, and are potentially in a position to
face charges for failing to file a return or for committing fraudulent
reporting.
How to Recognize an Email Tax Scam
According to the IRS, below are the key ways to recognize an email tax scam.
The email:
? requests personal and/or financial information, such as name, SSN,
bank or credit card account numbers or security-related information, such as
mother's maiden name, either in the email itself or on another site to which a
link in the email directs you;
? includes exciting offers to get you to respond, such as mentioning a
tax refund or offering to pay you to participate in an IRS survey;
? threatens a consequence for not responding to the email, such as
additional taxes or blocking access to your funds;
? has incorrect spelling for the Internal Revenue Service or other
federal agencies;
? uses incorrect grammar or odd phrasing;
? discusses "changes to tax laws" that include a downloadable document
(usually in PDF format) that purports to explain the new tax laws (these
downloads are populated with malware that, once downloaded, may infect your
computer).
How To Avoid Becoming A Victim
To stay safer this tax season, follow these five steps:
1. Secure your computer. If your computer does not have proper security
controls, it is vulnerable to access by criminals, who may be able to steal
information stored on it. Make sure your computer has the latest security
updates installed. Check that your anti-virus and anti-spyware software are
running properly and are receiving automatic updates from the vendor. If you
haven't already done so, install and enable a firewall.
1. Carefully select the sites you visit. Safely searching for tax forms,
advice on deductibles, tax preparers, and other similar topics requires
caution. Know the site. Know the company. Do not visit a site by clicking on
a link sent in an email, found on someone's blog, or on an advertisement. The
website you land on may look just like the real site, but it may be a
well-crafted fake.
1. Don't fall prey to email, web, or social networking scams. Common scams
tout tax rebates, offer great deals on tax preparation or offer a free tax
calculator tool. If you did not solicit the information, it's likely a scam.
If the email claims to be from the IRS, it's a scam - the IRS will not contact
you via email, text messaging or your social network, nor does it advertise on
websites. If the email appears to be from your employer, bank, broker, etc.
claiming there is an issue with what they reported for you and you need to
verify some information, it might be a scam. Do not respond to the email.
Contact the entity directly before responding.
1. Never send sensitive information in an email. It may be intercepted and
read by criminals.
1. Use strong passwords. Cyber criminals have developed programs that
automate the ability to guess your passwords. To protect yourself, passwords
must be difficult for others to guess, but at the same time, easy for you to
remember. Passwords should have a minimum of nine characters and include upper
case (capital letters), lowercase letters, numbers, and symbols. Make sure
your work passwords are different from your personal passwords.
For More Information:
For additional information about tax related scams and identity theft, please
visit:
? Taxpayer Guide to Identity Theft:
www.irs.gov/uac/Taxpayer-Guide-to-Identity-Theft<http://www.irs.gov/uac/Taxpayer-Guide-to-Identity-Theft>
? Tax Scams/Consumer Alerts:
www.irs.gov/uac/Tax-Scams-Consumer-Alerts<http://www.irs.gov/uac/Tax-Scams-Consumer-Alerts>
? IRS Releases the Dirty Dozen Tax Scams for 2012:
www.irs.gov/uac/IRS-Releases-the-Dirty-Dozen-Tax-Scams-for-2012<http://www.irs.gov/uac/IRS-Releases-the-Dirty-Dozen-Tax-Scams-for-2012>
? What's Hot - IRS:
www.irs.gov/uac/What's-Hot<http://www.irs.gov/uac/What's-Hot>
? Report Phishing:
www.irs.gov/uac/Report-Phishing<http://www.irs.gov/uac/Report-Phishing>
The information provided in the Monthly Security Tips Newsletters is intended
to increase the security awareness of an organization's end users and to help
them behave in a more secure manner within their work environment. While some
of the tips may relate to maintaining a home computer, the increased awareness
is intended to help improve the organization's overall cyber security posture.
This is especially critical if employees access their work network from their
home computer. Organizations have permission and are encouraged to brand and
redistribute this newsletter in whole for educational, non-commercial purposes.
Brought to you by:
[cid:8F12FDAF-A3CD-4308-AE35-199C24A61587]
This message and attachments may contain confidential information. If it
appears that this message was sent to you by mistake, any retention,
dissemination, distribution or copying of this message and attachments is
strictly prohibited. Please notify the sender immediately and permanently
delete the message and any attachments.
Attachment:
2013-03 Template.docx
Description: 2013-03 Template.docx
Other related posts:
- » [oagitm] MS-ISAC - Cyber Security Newsletter Tip - March 2013 - Protect Yourself from Email Tax Scams - MASSE Theresa A * CIO
