Tax season IS phishing season — here’s your survival guide to make it out alive.
At this very moment, your inbox is teeming with them. Like an annual migration upriver, phishing emails swim their way into the inboxes of all Americans when tax season rolls around. Every January 1st through April 15th, cybercriminals blitz the public with their most clever deceits. They pose as someone you know or an institution you use, stating in an official-sounding way that “there’s a problem with your account, just click here to clean it up.” That’s their bait. It’s all decoy.
And while some can be spotted a mile away, others may catch you off-guard. Phishing uses a tactic called social engineering, which plays on your deeper subconscious instincts. The crooks are trying to lull you with routine language and requests, using a tone of authority that sounds familiar. On the surface, this seems easy to recognize and avoid; but in our most distracted moments, we are all susceptible to being fooled by this.
Phishing is such a national problem that the IRS has put phishing schemes at the top of its “Dirty Dozen” list of tax scams. It may be, though, that the public is catching on and clicking less, because the phishing underworld has unleashed a new arm of attack this year — a W-2 identity theft scam, targeting finance-related roles in the professional sector. The phony emails claim to be from a boss, a co-worker, or a payroll provider, requesting the data one would find on a W-2: names, social security numbers, home addresses, and salaries.
Other similarly deceptive efforts try to lure additional information from you including your username and password either by having you login to a fake similar-looking site or ask you to email the information to them. Or, they include an attachment to download. And, when you click it, your computer or phone could be instantly compromised.
Save yourself from falling victim to the feeding frenzy this tax season by keeping these tips in mind should any suspicious-looking emails begin nibbling at your line:
You can also download and install a good antivirus, like Avast Free Antivirus for consumers or our business-grade endpoint protection Avast Business Antivirus Products. All of these will alert you to any bad files trying to worm their way into your system or your clients’ systems. Train yourself and your clients to recognize the signs of a phishing scam and to not be fooled. It’s important year-round, but super-important at least until tax day.
Large-scale cyberattack? Secure your devices and protect yourself and your data with these 7 simple tips. Protect your PC, your smartphone, and your family’s devices from big cyberattacks.
Your PC might be full of programs you didn’t even know about, such as trials, pre-installed toolbars and other hidden junk. This guide helps you identify this secret ‘bloatware’ you don’t need.