WASHINGTON — The Internal Revenue Service today announced that spear phishing is the 8th item on the 2022 “Dirty Dozen” scams warning list and a serious problem because it can be tailored to attack and steal the computer system credentials of any small business with a client data base, such as tax professionals’ firms.
“Tax professionals generally relax a little after filing season and many take a well-deserved vacation but don’t let your IT defenses down,” said IRS Commissioner Chuck Rettig. “Spear phishing remains one of the biggest threats to the tax industry and other client-based enterprises.”
Spear phishing is an email scam that attempts to steal a tax professional’s software preparation credentials. These thieves try to steal client data and tax preparers’ identities in an attempt to file fraudulent tax returns for refunds. Spear phishing can be tailored to attack any type of business or organization, so everyone needs to be on the lookout and not rush to act when a strange email comes in.
The IRS has compiled the annual “Dirty Dozen” list for more than 20 years as a way of alerting taxpayers and the tax professional community about scams and schemes. The list is not a legal document or a literal listing of agency enforcement priorities. It is designed to raise awareness among a variety of audiences that may not always be aware of developments involving tax administration.
“Dirty Dozen” scams tend to be…
