Identity Theft
Fraud Alert: Suspicious e-Mails and Identity Theft
By Internal Revenue Service (IRS)
Aug 23, 2006, 14:19

Suspicious e-Mails and Identity Theft

The Internal Revenue Service has issued several recent consumer warnings on the fraudulent use of the IRS name or logo by scamsters trying to gain access to consumers’ financial information in order to steal their identity and assets. When identity theft takes place over the Internet, it is called phishing. Suspicious e-Mail/Phishing Phishing (as in “fishing for information” and “hooking” victims) is a scam where Internet fraudsters send e-mail messages to trick unsuspecting victims into revealing personal and financial information that can be used to steal the victims’ identity. Current scams include phony e-mails which claim to come from the IRS and which lure the victims into the scam by telling them that they are due a tax refund. IR-2006-116, IRS Renews E-mail Alert following New Scams       IR-2006-104, IRS Renews E-mail Alert Following New Scams IR-2006-49, IRS Establishes e-Mail Box for Taxpayers to Report Phony e-Mails Sample of a suspicious/phishing e-mail Is it a phishing Web site? How to Protect Yourself from Suspicious E-Mails or Phishing Schemes You Can Help Shut Down Phishing Schemes The good news is that you can help shut down these schemes and prevent others from being victimized. If you receive a suspicious e-mail that claims to come from the IRS, you can relay that e-mail to a new IRS mailbox, phishing@irs.gov. Follow instructions in the link below for sending the bogus e-mail to ensure that it retains critical elements found in the original e-mail. The IRS can use the information, URLs and links in the suspicious e-mails you send to trace the hosting Web site and alert authorities to help shut down the fraudulent sites. Unfortunately, due to the expected volume, the IRS will not be able to acknowledge receipt or respond to you. phishing@irs.gov Instructions for submitting phishing e-mails to IRS IR-2006-49, IRS Establishes e-Mail Box for Taxpayers to Report Phony e-Mails Identity Theft Identity theft can be committed through e-mail (phishing) or other means, such as regular mail, fax or telephone, or even by going through someone's trash. Identity theft occurs when someone uses your personal information such as your name, Social Security number or other identifying information without your permission to commit fraud or other crimes. Typically, identity thieves use someone’s personal data to empty the victim’s financial accounts, run up charges on the victim’s existing credit cards, apply for new loans, credit cards, services or benefits in the victim’s name, file fraudulent tax returns or even commit crimes. People whose identities have been stolen can spend months or years — and their hard-earned money — cleaning up the mess thieves have made of their good name and credit record. In the meantime, victims may lose job opportunities, be refused loans, education, housing or cars, or even get arrested for crimes they didn't commit. Identity theft DVD , Outsmarting the Crooks Identity Theft and Your Tax Records Social Security announces public warning of identity theft e-mail scam Recent Schemes When the IRS learns about schemes involving use of the IRS name, it tries to alert consumers as well as authorities that can shut down the scheme, if possible. The most recent schemes are listed below. One e-mail scam, fraught with grammatical errors and typos, looks like a page from the IRS Web site and claims to be from the "IRS Antifraud Comission" (sic), a fictitious group. The e-mail claims someone has enrolled the taxpayer's credit card in EFTPS and has tried to pay taxes with it. The e-mail also says there have been fraud attempts involving the taxpayer's bank account. The e-mail claims money was lost and "remaining founds" (sic) are blocked. Recipients are asked to click on a link that will help them recover their funds, but the subsequent site asks for personal information that the thieves could use to steal the taxpayer’s identity. E-mails claiming to come from tax-refunds@irs.gov, admin@irs.gov and similar variations told the recipients that they were eligible to receive a tax refund for a given amount. It directed recipients to claim the refund by using a link contained in the e-mail which sent the recipient to a Web site. The site, a copy of the IRS Web site, displayed an interactive page similar to a genuine IRS one; however, it had been modified to ask for personal and financial information that the genuine IRS interactive page does not require. The Treasury Inspector General for Tax Administration (TIGTA) has found numerous separate Web sites in at least 20 different countries hosting variations on this scheme. A bogus IRS letter and Form W-8BEN (Certificate of Foreign Status of Beneficial Owner for United States Tax Withholding) asked non-residents to provide personal information such as account numbers, PINs, mother’s maiden name and passport number. The legitimate IRS Form W-8BEN, which is used by financial institutions to establish appropriate tax withholding for foreign individuals, does not ask for any of this information. For more information on the various schemes, see the following: IR-2005-136, IRS Warns of e-Mail Scam About Tax Refunds IR-2006-25, IRS Announces 2006 Dirty Dozen Tax Scams TIGTA Computer Security Bulletin TIGTA Report on Phishing Alert on QI Identity Theft To Report Fraud For other than phishing schemes, you may report the fraudulent misuse of the IRS name, logo, forms or other IRS property by calling the TIGTA toll-free hotline at 1-800-366-4484 or visiting the TIGTA Web site. Other Federal Resources For more information on understanding and preventing identity theft and suspicious e-mails (phishing), or dealing with their aftermath, check out the following federal resources: Department of the Treasury's identity theft resource page Federal Trade Commission's (FTC) consumer Web site FTC's OnGuardOnLine Web site Firstgov Social Security Administration (SSA)