Watch for this new cybersecurity scam, IRS warns

The phishing scheme involves cybercriminals posing as individuals looking for help with tax preparation.
JAN 13, 2017
The Internal Revenue Service is warning tax professionals to beware of emails ostensibly penned by prospects — and advisers should heed the same guidance. A new phishing scheme is making the rounds where cybercriminals pose as an individual who is looking for someone to help them with tax preparation, the IRS said in an alert Wednesday. Sometimes the notes even appear to come from a friend or colleague, because those individuals' systems already have been hacked, it said. The attack email is delivered after the professional responds to the sender's first note, and usually has an embedded web address or has a PDF file attached that contains the malicious link. “The tax professional may think they are downloading a potential client's tax information or accessing a site with the potential client's tax information,” the alert said. “In reality, the cybercriminals are collecting the preparer's email address and password and possibly other information.” (More: Broker-dealers deploying advanced cybersecurity measures) Most financial advisers have been warned to be wary of emails purportedly from clients. But cybercriminals are getting more sophisticated in their attempts to steal information and extra care needs to be taken with all unsolicited emails, even those that could lead to new clients, network security experts said. Advisers have said they often get caught in cyberscams because they are doing so many things at once that they click without thinking. Such an excuse won't fly with regulators, who have cybersecurity high on their list of examination priorities for 2017. In October, a Wells Fargo Advisors Financial Network broker was fined $5,000 by the Financial Industry Regulatory Authority Inc. for failing to detect a phishing attack that stole $350,000 from a client. She was fired by Wells Fargo and suspended from the industry for 30 days. The IRS recommends never clicking on a link or an attachment in an email that came from a source through an unsolicited communication.

Latest News

Why fixed income still belongs in your clients' portfolios
Why fixed income still belongs in your clients' portfolios

In an era of AI euphoria and market FOMO, getting back to basics with fixed income may be the most contrarian and most important move advisors can make.

Voya expands advisor managed accounts to add private market assets
Voya expands advisor managed accounts to add private market assets

Voya Financial adds private equity, credit and real estate options to its AMA program, building on support for looser federal investment rules in retirement accounts.

With executives leaving, Osaic’s Reid now in the spotlight
With executives leaving, Osaic’s Reid now in the spotlight

Shannon Reid, president of Osaic and the network’s number two executive, has plenty of challenges, industry executives said.

Investors sue crypto fund and platform, alleging $1.5 million never returned
Investors sue crypto fund and platform, alleging $1.5 million never returned

Auditors flagged the commingling. The COO allegedly knew. Investors kept getting the pitch

Wells Fargo nabs $1.7B RBC advisor team, loses two teams to LPL
Wells Fargo nabs $1.7B RBC advisor team, loses two teams to LPL

The advisors on the move include two brothers leading a family practice in Connecticut, and a husband-and-wife tandem working with business owners in the West Coast.

SPONSORED Who builds the income when the pension disappears?

Dan Biagini of American Equity says the steady decline of pensions, longer lifespans and a reset in interest rates are rewriting how advisors build retirement income

SPONSORED Why direct indexing stopped being optional

Direct indexing is on pace to outgrow ETFs and mutual funds. Northern Trust's Ken Lassner explains why the advisors who get it wish they had started sooner.