Effective April 1, 2019, the AmTrust Workplace website for your Employment Practices Liability (EPLI) coverage written with your Package, BOP or Workers' Compensation policies is being updated to a new name, AmTrust Employment Risk Solutions, and a new URL, AmTrust.EmploymentRiskSolutions.com. Your existing user credentials will remain in effect and can be used to log in to the new site. Please contact The McCalmon Group, Inc., platform administrators, 888-712-7667, if you have any trouble with registration.

AmTrust Workplace
print   email   Share

The IRS Scam Is Back: What To Look For

The Internal Revenue Service (IRS) warns consumers to watch out for IRS impersonation attacks, which are spreading malware across the U.S.

These spam emails masquerade as legitimate emails from the IRS. They come from a spoofed IRS email address and the subject line may read, "Automatic Income Tax Reminder" or "Electronic Tax Return Reminder."

Victims who click on the link in the email are directed to a spoofed IRS.gov site that contains fake information about the individual's tax refund, return, or account.

The email contains a "one-time password" or "temporary password" to access the files that the user needs to submit a request for a tax refund or for additional information, according to the scam message. What the files actually contain is malware.

The goal of the fraudulent IRS emails is to install malware onto the computers and devices of their victims. The hackers can then control the device or use software that tracks keystrokes to steal the user's login credentials to sensitive accounts.

Unfortunately, this attack is working, whether it is tax season or not. The IRS says the cybercriminals are using dozens of compromised websites and web addresses that make the messages look like they come from IRS.gov. As a result, the IRS says the scam is "a challenge to shut down." Tara Seals "IRS Impersonation Attacks Spread Malware Nationwide" threatpost.com (Aug. 26, 2019).


The IRS and other government institutions will never email you to ask you to submit personal information online.

If you receive an email requesting personal information from the IRS, another government agency, or even your financial institution or other organizations you work with, it may well be a phishing scam.

Keep in mind that many spam emails, including the spoofed emails claiming to be from the IRS, look legitimate. Having an irs.gov or other organizational email address does not guarantee that the email is real. Hackers can break into official accounts to send their fraudulent email messages.

In addition, emails that contain information about you, such as your name or address, are not legitimate simply for that reason. Hackers often gather enough information about their victims to make their spam emails appear more authentic before asking for the remaining information they need to steal your identity.

Always assume that even legitimate looking email messages or messages from someone in your contacts could actually be cybercriminals trying to steal your information. Look closely for signs of spoofing, including misspellings, grammar mistakes, and the email address being slightly off.

Often, phishing emails threaten the user with harm in order to solicit a reaction. For example, an email claiming to be from the IRS may say that you could be arrested for tax evasion if you do not reply in a timely manner.

On the other hand, cybercriminals may try to get you to respond by promising you money if you do. Therefore, IRS scam emails could say that you are entitled to a tax refund if you provide certain information.

You can reduce your risk of receiving spam emails by enabling your email spam filter. However, do not make the mistake of assuming that an email in your inbox is safe just because you have a spam filter. Some sophisticated spam messages can get past even the best filters.

If you get an email claiming to be from an official organization or government agency, do not call the number on the email. Instead, independently look up the number to call and use it instead.

Finally, your opinion is important to us. Please complete the opinion survey:

Are you a new user?

Register Here


Retrieve Password

Recent News

How Long Are Your Passwords?

Long, strong unique passwords, kept secret, can help protect valuable information. We examine. Read More

Do Your Service Providers Open A Backdoor For Criminals To Access Your System?

Third-party service providers are one means for cybercriminals to use to access a target. How can you shore up your third-party back door? Read More

Costs Of Cyberattacks Continue To Rise

Not only does a cyberattack cost money to fix, it also leads to lost current and future sales. Learn more about the high price of a cyberattack. Read More

Recent Articles

How Long Are Your Passwords?

Long, strong unique passwords, kept secret, can help protect valuable information. We examine. Read More

Bias In Hiring And The Workplace: How Can Management Block It Out?

A networking firm considers the issue of gender bias in the workplace and how it shows up. Leslie Zieren discusses bias in the area of employment opportunities. Read More

Association Discrimination And Its Relationship To The ADA

Did you know it is a violation of the ADA to discriminate against an employee because he or she associates with a person with a disability? Leslie Zieren looks at the risk. Read More