IR-2017-19, Feb. 2, 2017
WASHINGTON — Aggressive and threatening phone calls by criminals impersonating IRS agents remain a major threat to taxpayers, headlining the annual “Dirty Dozen” list of tax scams for the 2017 filing season, the Internal Revenue Service announced today.
During filing season, the IRS generally sees a surge in scam phone calls that threaten police arrest, deportation, license revocation and other things. The IRS reminds taxpayers to guard against all sorts of con games that arise at any time and pick up during tax season.
“Don’t be fooled by surprise phone calls by criminals impersonating IRS agents with threats or promises of a big refund if you provide them with your private information,” said IRS Commissioner John Koskinen. “If you’re surprised to get a call from the IRS, it almost certainly isn’t the real IRS. We generally initially contact taxpayers by mail.”
The Dirty Dozen is compiled annually by the IRS and lists a variety of common scams taxpayers may encounter any time during the year. Many of these con games peak during filing season as people prepare their tax returns or hire someone to do so.
The Treasury Inspector General for Tax Administration (TIGTA) reports they have become aware of over 10,000 victims who have collectively paid over $54 million as a result of phone scams since October 2013.
“Everyone can share the word about scam phone calls– just hang up and don’t engage these people,” Koskinen said. “Despite recent successes against phone scam artists, these scams constantly evolve and people need to remain vigilant. We’d like to thank law-enforcement, tax professionals, consumer advocates, the states, other government agencies, the Treasury Inspector General for Tax Administration and many others for helping us continue this fight and protect taxpayers.”
How do the scams work?
Scammers make unsolicited calls claiming to be IRS officials. They demand that the victim pay a bogus tax bill. They con the victim into sending cash, usually through a wire transfer or a prepaid debit card or gift card, like an iTunes card. They may also leave “urgent” callback requests through phone “robo-calls,” or via a phishing email.
Many phone scams use threats to intimidate and bully a victim into paying. They may even threaten to arrest, deport or revoke the driver’s license of their victim if they don’t get the money.
Scammers often alter caller ID numbers to make it look like the IRS or another agency is calling. The callers use IRS employee titles and fake badge numbers to appear legitimate. They may use the victim’s name, address and other personal information to make the call sound official.
The IRS also reminded taxpayers today that scammers change tactics. Aggressive and threatening phone calls by criminals impersonating IRS agents remain a major threat to taxpayers, but variations of the IRS impersonation scam continue year-round and they tend to peak when scammers find prime opportunities to strike.
Here are some things the scammers often do but the IRS will not do. Any one of these five things is a tell-tale sign of a scam.
The IRS will never:
- Call to demand immediate payment using a specific payment method such as a prepaid debit card, gift card or wire transfer. Generally, the IRS will first mail a bill to any taxpayer who owes taxes.
- Threaten to immediately bring in local police or other law-enforcement groups to have the taxpayer arrested for not paying.
- Demand that taxes be paid without giving the taxpayer the opportunity to question or appeal the amount owed.
- Ask for credit or debit card numbers over the phone.
For taxpayers who don’t owe taxes or don’t think they do:
- Do not give out any information. Hang up immediately.
- Contact TIGTA to report the call. Use their “IRS Impersonation Scam Reporting” web page. Alternatively, call 800-366-4484.
- Report it to the Federal Trade Commission. Use the “FTC Complaint Assistant” on FTC.gov. Please add “IRS Telephone Scam” in the notes.
For those who owe taxes or think they do:
- Call the IRS at 800-829-1040. IRS workers can help.
Stay alert to scams that use the IRS as a lure. Tax scams can happen any time of year, not just at tax time. For more, visit “Tax Scams and Consumer Alerts” on IRS.gov.
Each and every taxpayer has a set of fundamental rights they should be aware of when dealing with the IRS. These are your Taxpayer Bill of Rights. Explore these rights and the agency’s obligations to protect them on IRS.gov.
IR-2017-20, Feb. 2, 2017
WASHINGTON — The Internal Revenue Service, state tax agencies and the tax industry issued an urgent alert today to all employers that the Form W-2 email phishing scam has evolved beyond the corporate world and is spreading to other sectors, including school districts, tribal organizations and nonprofits.
In a related development, the W-2 scammers are coupling their efforts to steal employee W-2 information with an older scheme on wire transfers that is victimizing some organizations twice.
“This is one of the most dangerous email phishing scams we’ve seen in a long time. It can result in the large-scale theft of sensitive data that criminals can use to commit various crimes, including filing fraudulent tax returns. We need everyone’s help to turn the tide against this scheme,’’ said IRS Commissioner John Koskinen.
When employers report W-2 thefts immediately to the IRS, the agency can take steps to help protect employees from tax-related identity theft. The IRS, state tax agencies and the tax industry, working together as the Security Summit, have enacted numerous safeguards in 2016 and 2017 to identify fraudulent returns filed through scams like this. As the Summit partners make progress, cybercriminals need more data to mimic real tax returns.
Here’s how the scam works: Cybercriminals use various spoofing techniques to disguise an email to make it appear as if it is from an organization executive. The email is sent to an employee in the payroll or human resources departments, requesting a list of all employees and their Forms W-2. This scam is sometimes referred to as business email compromise (BEC) or business email spoofing (BES).
The Security Summit partners urge all employers to be vigilant. The W-2 scam, which first appeared last year, is circulating earlier in the tax season and to a broader cross-section of organizations, including school districts, tribal casinos, chain restaurants, temporary staffing agencies, healthcare and shipping and freight. Those businesses that received the scam email last year also are reportedly receiving it again this year.
Security Summit partners warned of this scam’s reappearance last week but have seen an upswing in reports in recent days.
New Twist to W-2 Scam: Companies Also Being Asked to Wire Money
In the latest twist, the cybercriminal follows up with an “executive” email to the payroll or comptroller and asks that a wire transfer also be made to a certain account. Although not tax related, the wire transfer scam is being coupled with the W-2 scam email, and some companies have lost both employees’ W-2s and thousands of dollars due to wire transfers.
The IRS, states and tax industry urge all employers to share information with their payroll, finance and human resources employees about this W-2 and wire transfer scam. Employers should consider creating an internal policy, if one is lacking, on the distribution of employee W-2 information and conducting wire transfers.
Steps Employers Can Take If They See the W-2 Scam
Organizations receiving a W-2 scam email should forward it to email@example.com and place “W2 Scam” in the subject line. Organizations that receive the scams or fall victim to them should file a complaint with the Internet Crime Complaint Center (IC3,) operated by the Federal Bureau of Investigation.
Employees whose Forms W-2 have been stolen should review the recommended actions by the Federal Trade Commission at www.identitytheft.gov or the IRS at www.irs.gov/identitytheft.
Employees should file a Form 14039, Identity Theft Affidavit, if the employee’s own tax return rejects because of a duplicate Social Security number or if instructed to do so by the IRS.
The W-2 scam is just one of several new variations that have appeared in the past year that focus on the large-scale thefts of sensitive tax information from tax preparers, businesses and payroll companies. Individual taxpayers also can be targets of phishing scams, but cybercriminals seem to have evolved their tactics to focus on mass data thefts.
Be Safe Online
In addition to avoiding email scams during the tax season, taxpayers and tax preparers should be leery of using search engines to find technical help with taxes or tax software. Selecting the wrong “tech support” link could lead to a loss of data or an infected computer. Also, software “tech support” will not call users randomly. This is a scam.
Taxpayers searching for a paid tax professional for tax help can use the IRS Choosing a Tax Professional lookup tool or if taxpayers need free help can review the Free Tax Return Preparation Programs. Taxpayers searching for tax software can use Free File, which offers 12 brand-name products for free, at www.irs.gov/freefile. Taxpayer or tax preparers looking for tech support for their software products should go directly to the provider’s web page.
Tax professionals also should beware of ongoing scams related to IRS e-Services. Thieves are trying to use IRS efforts to make e-Services more secure to send emails asking e-Services users to update their accounts. Their objective is to steal e-Services users’ credentials to access these important services.
If you have any common tax questions that you need answered, you will find them here!
IR-2015-16, Jan. 30, 2015
WASHINGTON — The Internal Revenue Service today warned taxpayers about groups masquerading as a charitable organization to attract donations from unsuspecting contributors, one of the “Dirty Dozen” for the 2015 filing season.
“When making a donation, taxpayers should take a few extra minutes to ensure their hard-earned money goes to legitimate and currently eligible charities,” said IRS Commissioner John Koskinen. “IRS.gov has the tools taxpayers need to check out the status of charitable organizations.”
Compiled annually, the “Dirty Dozen” lists a variety of common scams that taxpayers may encounter anytime, but many of these schemes peak during filing season as people prepare their returns or hire someone to prepare their taxes.
Illegal scams can lead to significant penalties and interest and possible criminal prosecution. IRS Criminal Investigation works closely with the Department of Justice to shut down scams and prosecute the criminals behind them.
The IRS offers these basic tips to taxpayers making charitable donations:
- Be wary of charities with names that are similar to familiar or nationally known organizations. Some phony charities use names or websites that sound or look like those of respected, legitimate organizations. IRS.gov has a search feature, Exempt Organizations Select Check, which allows people to find legitimate, qualified charities to which donations may be tax-deductible.
- Don’t give out personal financial information, such as Social Security numbers or passwords to anyone who solicits a contribution from you. Scam artists may use this information to steal your identity and money. People use credit card numbers to make legitimate donations but please be very careful when you are speaking with someone who called you.
- Don’t give or send cash. For security and tax record purposes, contribute by check or credit card or another way that provides documentation of the gift.
Call the IRS toll-free disaster assistance telephone number (1-866-562-5227) if you are a disaster victim with specific questions about tax relief or disaster related tax issues.
Impersonation of Charitable Organizations
Another long-standing type of abuse or fraud involves scams that occur in the wake of significant natural disasters.
Following major disasters, it’s common for scam artists to impersonate charities to get money or private information from well-intentioned taxpayers. Scam artists can use a variety of tactics. Some scammers operating bogus charities may contact people by telephone or email to solicit money or financial information. They may even directly contact disaster victims and claim to be working for or on behalf of the IRS to help the victims file casualty loss claims and get tax refunds.
They may attempt to get personal financial information or Social Security numbers that can be used to steal the victims’ identities or financial resources. Bogus websites may solicit funds for disaster victims.
To help disaster victims, the IRS encourages taxpayers to donate to recognized charities.