Since the 2015 IRS tax season there have been many more reports of tax fraud on campus and across the country compared to previous years. The IRS has advised that approximately 1 out of every 100 taxpayers will be victims of tax fraud.
In 2015, roughly 130 UT Austin faculty and staff were affected by IRS tax scams in which attackers filed a forged return and received a fraudulent tax refund. Roughly 70% of the reported victims were faculty members.
The Information Security Office has worked directly with many of these affected parties and would like to share some potentially helpful information with you as well.
Please note that while there were no breaches associated with UT Austin information resources, attackers have employed a variety of tactics to carryout their fraud. Many taxpayers fell victim to highly targeted phishing scams, spoofed calls from the Travis County Sheriff's office and other law enforcement agencies, compromised tax preparation software credentials and services, and malware infections on their personal devices that logged keystrokes; reports also emerged of attackers stealing W2 forms from their victim's mailboxes.
For additional perspective, the UT Austin Information Security Office consulted with a number of other higher education institutions across the country and most of them reported similar activity. In one case, a smaller institution reported close to 200 cases. These reports further indicated that faculty members accounted for the majority of the victims.
In many cases, attackers have also created IRS transcript accounts for the victims.
What Can You Do?
- Setup Multi Factor Authentication on all of your personal and business accounts
- Be aware of Vishing attacks: https://security.utexas.edu/vishing
- We would strongly urge you to set up an IRS transcript account before an attacker does: http://www.irs.gov/Individuals/Get-Transcript
- We suggest setting up an IRS PIN: https://www.irs.gov/identity-theft-fraud-scams/get-an-identity-protection-pin
- We suggest that you create an account with the Social Security Administration before attackers do so on your behalf (http://ssa.gov/myaccount/). Consider claiming accounts for your underage children as well.
- We suggest you review these articles about the recent rash of IRS scams which offer practical resources for victims of tax fraud along with some insight into how the attackers are operating:
Article: Creating an IRS transcript account before the attackers do
Article: Consider freezing your credit file
(NOTE: Consider doing this for your underage children as attackers will often try to exploit credit of minors which is generally not being monitored by their parents)
Article: IRS Identifies Five Easy Ways to Spot Suspicious Calls
- There are a variety of services that can proactively monitor your credit activity for abuse or misuse. For members of the UT Select benefits program you can use this free Identity Protection Service: https://www.utsystem.edu/offices/employee-benefits/identity-protection-services. Another option that the university has had good luck with is AllClearID: https://www.allclearid.com/identity-protection-services/
- Lastly, here are a few related news articles that cover the various breach events associated with the IRS scams:
Article: Seton reports a breach of ~40,000 customer records
Article: IRS reported at least 100,000 filers were breached via fraudulent access to tax transcripts
Article: IRS reported a local Austin employee was arrested in a tax return scheme
Article: IRS confirmed that roughly $40M was stolen by cyber thieves
If you have any questions or concerns or if you believe you have been a victim of such fraud please do not hesitate to contact the Information Security Office at firstname.lastname@example.org.
Thanks for your vigilance!