Income Tax Service 5200 W Market St Greensboro, NC 27409 336-852-9505

Terry Hough President

10 Tips for Fighting Tax-Related ID Theft

April 6, 2016

1. When is a Web site not a Web site? When it’s a “spoofed” site – one that’s designed to mimic an official site, so that victims can be lured into divulging private information through it. Often scammers send an e-mail asking users to verify personal information, with a convenient link to the spoofed site. These sites can often be spotted through their URLs, which may bear no resemblance to that of the organization they purport to come from. For instance, the IRS Web site is www.irs.gov, not www.irsgov275.hu.

2. If it sounds too good to be true, it is. Ignore Web sites, e-mails and tax preparers who promote inflated tax refunds. Refunds should be based on the taxpayer’s tax situation, not the marketing claims of the tax preparer, and many of those offering inflated returns are actually fronts for ID theft operations, or unscrupulous preparers who inflate client refunds through illegal deductions (and often skim most of the inflated refund off themselves).

3. Hang up! The IRS never initiates contact with taxpayers over the phone. The original scam here was to call taxpayers and threaten them with prison time if they didn’t immediately pay a (non-existent) tax debt; this year it has been refined to ID thieves claiming to be IRS agents who only need to verify a few pieces of data to process the taxpayer’s return.

4. Information is precious. Sensitive personal information needs to be protected, particularly when being transmitted. Take the necessary precautions when giving info out online, check the security levels of the sites you’re visiting, and use technology like private client portals, e-mail encryption, and virtual private networks where appropriate.

5. The password is... A weak password on even the least-important-seeming account can lead fraudsters to the sort of information that allows them to unlock other accounts or steal an identity outright. Taxpayers should regularly change their passwords, and use strong passwords that aren’t easy to guess.

6. Perils in public. Public Wi-Fi is great -- but not for any kind of sensitive personal information, and definitely not for filing taxes.

7. Social criminals. It’s remarkable how much information ID thieves can gather from social media to populate a bogus return. Change social media settings to Private or otherwise make them inaccessible to strangers.

8. Keep it secret; keep it safe. Don’t leave old tax return information and other sensitive data lying around on a hard drive; encrypt it and store it somewhere secure. Paper copies should always be stored safely too.

9. Alert the team. The biggest security bug in any system is people, whether at a business or in a family. Educating everyone who has access to a system that includes private information -- from children and spouses to employees and partners is critical.