Fake IRS, FBI emails can take data hostage for ransomware
WASHINGTON — The Internal Revenue Service is warning people to avoid a new email scam where the sender impersonates the IRS and FBI to take computer data hostage.
The scam email uses the emblems of both the IRS and the Federal Bureau of Investigation. It asks users to “click here” to download a what the sender claims will be an FBI questionnaire. Instead, the link downloads a virus called ransomware that prevents users from accessing data stored on their device unless they pay money to the scammers.
“This is a new twist on an old scheme,” said IRS Commissioner John Koskinen. “People should stay vigilant against email scams that try to impersonate the IRS and other agencies that try to lure you into clicking a link or opening an attachment.”
The IRS always reaches out to citizens with a written notification of any problems first, he said. The IRS never uses email, text messages or social media to discuss personal tax issues, such as those involving bills or refunds.
“People with a tax issue won’t get their first contact from the IRS with a threatening email or phone call,” Koskinen said.
This isn’t the only email scam — calling “phishing” — that uses the IRS logo to defraud people.
The IRS, state tax agencies and tax industries — working in partnership as the Security Summit — are conducting an awareness campaign called Don’t Take the Bait, which includes warning tax professionals about the various types of phishing scams, including ransomware attacks like this one.
Victims should not pay the ransom, the IRS said. Paying it only encourages the criminals, and frequently the scammers won’t provide the decryption key even after a ransom is paid, the agency said.
Instead, victims should immediately report any ransomware attempt or attack to the FBI at the Internet Crime Complaint Center,
www.IC3.gov. Forward any IRS-themed scam emails to phishing@irs.gov.
For more information, visit the “Tax Scams and Consumer Alerts” page on IRS.gov.