Posts Tagged ‘phishing’

Cyber Crime: It Can Happen To You

Tuesday, December 1st, 2015

Phishing Scam Targets Tax Preparers To Get To Taxpayers

IRS Phishing Scams - Ohio CPA Firm

One thing you can do to help protect yourself from cyber criminals is to make sure your address bar reads “https” and NOT like the one pictured above. Read on for additional tips.

Fraudsters don’t take holidays. In fact, they tend to be more active this time of year because they believe we are more likely to let our guards down. Instead, I don’t intend on falling for any of their traps, and I encourage you to do the same.

It’s A Trap

We recently published a blog post with tips to help online shoppers protect themselves against some of the more common tactics used by cyber criminals. From click bait to phishing emails, every link, sponsored post and flashing banner ad is a potential threat and we encourage you to protect yourself at all costs.

For example, you likely receive regular electronic correspondence from companies, organizations, groups and other reputable groups. In fact, you probably willingly provided them with your email address. You may even trust these contacts so much that you never thinking twice about whether their email is valid, and that’s what criminals are counting on. Nobody is immune.

Read Also: Who Is That Email Really From?

A current scam finding its way into inboxes across the country is targeting tax preparers. The email, which is supposedly being sent by the IRS, looks legit and includes the agency’s letterhead, logo and copyright language, among other information designed to add credibility to the piece. But there’s a problem – this email is not official IRS correspondence. Instead, it’s being sent by cyber criminals who are looking to capture usernames and passwords to gain access to taxpayers’ sensitive data.

We’re Not Falling For It

The American Institute of CPAs reached out to the IRS to verify whether the email in question is, indeed, a phishing scam. The government agency confirmed that the email was a scam and were quick to advise recipients to delete the message immediately.

This is just one example of a phishing scam in action. Emails like these are distributed every day and, oftentimes, they come from trusted businesses, organizations or people. As cyber threats continue to be rampant in our society, we must never allow ourselves to become complacent.

What You Can Do

Here are some tips to help keep you safe.

  1. Do It Yourself – Never click on hyperlinks found within the body text of the email – especially if you received the message from an unknown sender. If you do want to check the validity of an offer or content, manually type the URL into your web browser. Same results, less risk.
  2. ‘S’ For Safety – If confidential information is being traded, take a look at your address bar to make sure it reads “https” rather than the standard “http” to be sure the web page you are visiting is, indeed, secure.
  3. If It Pops, Run – Sometimes, the best and easiest strategy you can take to protect yourself from scammers is to configure your computer’s settings and buy and install the proper tools. We recommend disabling all popups, keeping an updated antivirus, use anti-spam and anti-spy software and install and maintain a firewall. Cyber criminals are always looking for ways to get around these measures, but they still provide you with a great first defense.
  4. Watch Your Back With A Backup – We keep a lot of irreplaceable items on our computers and, to many, the thought of permanently losing their data, photos and other documents is terrifying. One way to take the power away from the scammers is to create and maintain a backup of your data – especially when considering the very real threat of ransomware. That way, if something were to happen, you wouldn’t lose these vital items.
  5. Education Is Power – These criminals are slick and they are always finding new ways to take what belongs to you. So, one of the absolute best ways to guard against an attack is to educate yourself on current cybercrimes, identity theft trends and tactics being used by fraudsters.

By Lesley Mast, CPA (Wooster Office)

Want to know more about what other threats are out there? Check out these articles:

Malware Threat Spreads To Smart Phones

Fraudulent Credit Card Transactions Will Become Merchant’s Problem On Oct. 1

How Much Is Your Data Worth To Criminals?

Share Button

WARNING: Tis The Season To Practice Safe Online Shopping Habits

Tuesday, November 17th, 2015
Cyber Security - Ohio CPA Firm

Keep your online Holiday shopping secure with these five tips from KnowBe4.

While it may be the most wonderful time of the year, cyber criminals are looking for ways to stuff their own stockings – at your expense. The holiday season is also a busy time of the year for scammers because, in general, more money is being spent and more people are clicking through cyberspace for the best deals and tracking their purchases. KnowBe4 recently published a blog about the top five scams shoppers should be on the lookout for, and I wanted to pass these on to our readers. Consider the following information to be an early gift from me to you, and hopefully your bank account can welcome the New Year unscathed.

Read Also: Malware Threat Spreads To Smart Phones

1. Post-Thanksgiving Madness (otherwise known as Black Friday and Cyber Monday)

Thanksgiving is just around the corner, which means shoppers are already planning their early-morning shopping strategies. Sure there are great deals up for grabs, but there are also scammers looking forward to feeding on the hype in the hopes that you will let your guard down. Believe it or not, it can be pretty easy to mistakenly fall for those offers that appear to be too good to be true simply because we have become conditioned to believe that these deals are part of the overall allure. Tip: Before completing the transaction, visit the retailer’s actual website to make sure the deal is valid. 

2. Don’t Miss This Deal – Your Facebook Friend Didn’t

Just because one of your friends shared a coupon or voucher on Facebook or another social media site, doesn’t mean it’s legit. In fact, hacked social media accounts are pretty common. Scammers like this approach because they know that you are more willing to take the bait if the scam comes from somebody you trust. If one of your friends is guilty of passing along some of these not-so-helpful posts, give them a call or send them a text to find out more. Chances are, you will be the one helping them out by letting them know that their account has been compromised. 

3. What Do You Mean ‘There’s A Problem’?! 

You’ve shopped, dropped and paid for two-day shipping and it looks like you will have your gifts in time for the next family gathering. But then your inbox gets hit with an urgent message from UPS or FedEx notifying you that there may be a problem with the delivery of your package. Fortunately, the email includes a link for you to click on to get the issue resolved. STOP! This is a common phishing scam. Scammers will often use this tactic in the hopes that you will click on the link. Before you know it, your computer has been infected with a virus … or worse – ransomware.

4. Click Here For A Refund 

Similar to the UPS/FedEx scam identified above, this tactic is another attempt to get the unsuspecting consumer to click on an infected link. In this scenario, you might receive an email from a major online retailer – Amazon, eBay, etc. – with the message that there’s a “wrong transaction,” which requires you to click on a link to secure your refund. Instead of a refund, when you click on the link you will receive the gift of a security breech instead. Clicking on these links simply opens the door for scammers to access to your personal information, which will then be sold to the highest bidder and used against you later.  

5. Use The Force Against Phishing Scams 

Wouldn’t it be nice to win tickets to see Star Wars: The Force Awakens when it is released on Dec. 18? Sure, but given what you know now, would you be willing to take the risk and click on the link in your email to find out if the offer is real? Scammers use a variety of tactics to get you to make a mistake. This scam, for example, is another way popular culture is being used against unsuspecting victims. 

Remember, whether it’s a deal, contest, sale, or any other type of offer, if it looks unbelievable or questionable (even if it appears to have been sent from a trusted source), don’t click on the link or open an attachment. If you have doubt, delete! KnowBe4 also offers readers two other great tips to keep your private information and your bank account safe 365 days a year:

  1. Never use a debit card online. Cyber criminals can (and will) wipe out your bank account in seconds once they gain access. You can protect yourself by using a credit card.
  2. Never use your credit card to shop when your computer is connected to an insecure public Wi-Fi. All online shopping should always be done on over a secure, private internet connection.

By Steve Roth, IT Director (New Philadelphia office)

Want to learn more ways to keep your computer and personal information safe? Check out these articles:

Who Is That Email Really From?

Who’s Phishing Your Data Today?

How Much Is Your Data Worth To Criminals?

Share Button

How Do You Protect Yourself from Identity Theft?

Thursday, April 11th, 2013

“Interested in credit card theft? There’s an app for that.”

Those were the recent words of Gunter Ollmann, a technology security consultant. To Mr. Ollmann’s point, identity theft is getting easier and easier to perpetrate. Identity thieves are using the internet to find victims and steal their private data.  But, the use of technology swings both ways; consumers are increasingly using it to protect themselves and their identities.  Here are some on- and offline steps you can take to protect yourself from those trying to gain access to your data: (more…)

Share Button

How can you protect yourself from tax fraud?

Friday, March 16th, 2012

Tax identity theft is an increasingly enormous problem. The IRS has been bombarding us with warnings of identity theft and scams this tax season.

Here’s a summary of some of the latest information you should know. (more…)

Share Button

Are You Secure? Cyber Security Targets Employee Benefit Accounts

Thursday, November 3rd, 2011

In July 2011, federal solutions group RSA’s Anti-Fraud Command Center detected more than 25,000 phishing attacks, the most recorded in a one-month period.  A part of the reason: Employees are increasingly being deceived into providing personal information through their employee benefit accounts. (more…)

Share Button

Is This Really A Message From The IRS?

Tuesday, April 5th, 2011

It’s that time of year when unsuspecting taxpayers receive suspicious emails, phone calls, faxes or notices claiming to be from the IRS. Many of the scams use the IRS name or logo to appear more authentic. (more…)

Share Button