Watch for this new cybersecurity scam, IRS warns

The phishing scheme involves cybercriminals posing as individuals looking for help with tax preparation

Jan 13, 2017 @ 12:55 pm

By Liz Skinner

The Internal Revenue Service is warning tax professionals to beware of emails ostensibly penned by prospects — and advisers should heed the same guidance.

A new phishing scheme is making the rounds where cybercriminals pose as an individual who is looking for someone to help them with tax preparation, the IRS said in an alert Wednesday.

Sometimes the notes even appear to come from a friend or colleague, because those individuals' systems already have been hacked, it said.

The attack email is delivered after the professional responds to the sender's first note, and usually has an embedded web address or has a PDF file attached that contains the malicious link.

“The tax professional may think they are downloading a potential client's tax information or accessing a site with the potential client's tax information,” the alert said. “In reality, the cybercriminals are collecting the preparer's email address and password and possibly other information.”

(More: Broker-dealers deploying advanced cybersecurity measures)

Most financial advisers have been warned to be wary of emails purportedly from clients. But cybercriminals are getting more sophisticated in their attempts to steal information and extra care needs to be taken with all unsolicited emails, even those that could lead to new clients, network security experts said.

Advisers have said they often get caught in cyberscams because they are doing so many things at once that they click without thinking.

Such an excuse won't fly with regulators, who have cybersecurity high on their list of examination priorities for 2017.

In October, a Wells Fargo Advisors Financial Network broker was fined $5,000 by the Financial Industry Regulatory Authority Inc. for failing to detect a phishing attack that stole $350,000 from a client. She was fired by Wells Fargo and suspended from the industry for 30 days.

The IRS recommends never clicking on a link or an attachment in an email that came from a source through an unsolicited communication.

0
Comments

What do you think?

View comments

Recommended for you

Featured video

Events

What can advisers learn from the first female fighter pilot?

Pressure is pressure. Whether you are taking off from an aircraft carrier or dealing with the unforgiving movements of the market, you need to have a plan. Carey Lohrenz, the world's first female F-14 pilot, has some advice for advisers.

Latest news & opinion

10 most affordable U.S. cities for renters

Here are the U.S. cities that are most affordable for renters, according to Business Student.com, which compared the cost of rent to average salaries.

9 best - new - financial adviser jokes

Scroll through for nine new financial adviser laughs.

Captrust, prominent 401(k) advice firm, ramps up its wealth management business

Captrust wants to grow annual revenue from wealth management to 50% from 30% over the next five years.

Fidelity CEO says zero-fee funds aimed at expanding its universe

Johnson says way to prosper in financial services is 'by building relationships.'

SEC advice rule contains a huge hole

Jay Clayton aims to clear up investor confusion by drawing a distinction between brokers and advisers in the agency's proposed package of revised standards. But where do dual registrants fit?

X

Hi! Glad you're here and we hope you like all the great work we do here at InvestmentNews. But what we do is expensive and is funded in part by our sponsors. So won't you show our sponsors a little love by whitelisting investmentnews.com? It'll help us continue to serve you.

Yes, show me how to whitelist investmentnews.com

Ad blocker detected. Please whitelist us or give premium a try.

X

Subscribe and Save 60%

Premium Access
Print + Digital

Learn more
Subscribe to Print