Practice Management Simple 5-Point Checklist to Recognize and Fight Phishing Attacks Read the Article Open Share Drawer Share this:Click to share on Twitter (Opens in new window)Click to share on Facebook (Opens in new window)Click to share on LinkedIn (Opens in new window) Written by Dorinda DeScherer Published Sep 19, 2017 2 min read The IRS offers these five tips on how to spot and avoid a phishing email: It contains a link. Scammers often pose as the IRS, financial institutions, or tax companies or software providers. They may claim you need to update your account or change a password. The email offers links to a spoofing site that may look similar to the legitimate official website. Do not click on the link. If in doubt, go directly to the legitimate website and access your account. It contains an attachment. Scammers often include an attachment to an email. This attachment may be infected with malware that can download malicious software to your computer without your knowledge. If it’s spyware, scammers can track your keystrokes to obtain information about passwords, Social Security numbers or other sensitive data. Do not open attachments from unknown sources. It appears to be from a government agency. Scammers attempt to trick people into opening email links by posing as the IRS and other government agencies. The IRS does not initiate taxpayer communications through email. It’s an “off” email from a friend. Scammers also hack email accounts and try to leverage stolen email addresses. You may receive an email from a “friend” that just doesn’t seem right. It may be missing a subject for the subject line, or contain odd requests or language. If it seems off, avoid opening it and do not click on any links. It has a lookalike URL. A questionable email may try to trick you with the URL. For example, instead of www.irs.gov, it may be a false lookalike such as www.irs.gov.maliciousname.com. Editor’s note: The Intuit® ProConnect™ Tax Pro Center has several articles on helping you protect identity theft at your firm and as an advocate for your clients. In addition, if you ever feel you’ve received a phishing email that isn’t from Intuit, forward the email to spoof@intuit.com. Previous Post Lacerte® Extension Files: The Reports Are Out There Next Post Starting Your Own Firm: Tools You Need for Success Written by Dorinda DeScherer Dorinda DeScherer is an attorney specializing in tax and employment law. She is an honors' graduate of Barnard College of Columbia University and the University of Maryland School of Law. She is currently a principal with Editorial Resource Group, where she specializes in writing and editing professional publications. More from Dorinda DeScherer Comments are closed. Browse Related Articles Practice Management Make your office a “no phishing” zone Tax Law and News Knowing how the IRS contacts taxpayers can help keep yo… Client Relationships Educating Your Tax Clients About Security Threats Tax Law and News Watch out for “new client” email scam Tax Law and News IRS “Dirty Dozen” list of tax scams for 202… Tax Law and News Taxpayers can protect themselves from scammers by knowi… Client Relationships Keep Your Clients Tax Returns Safe and Secure Tax Law and News IRS Warns Taxpayers and Tax Pros of Email Scam Targetin… Tax Law and News IRS Dirty Dozen: phishing, smishing, and more Tax Law and News Make Your Clients Aware of Last-Minute Phishing Email S…