The IRS has warned that impersonation scams targeting “.edu” email accounts are prevalent. Although a number of emails are flagged for phishing by Google, some suspicious messages have the potential to circumvent filters.
Recent phishing scams are:
- Targeting email addresses that end in “.edu” across all higher education institutions.
- Impersonating the IRS, using the IRS logo, and containing subject lines such as “Tax Refund Payment” or “Recalculation of your tax refund payment.”
- Asking users to click a link and provide personal information such as Social Security Number, Date of Birth, and more in order to claim their refund. Never click on these types of links or provide personal information.
Do not become a phishing victim:
- It is tax season and it is important to remember that the IRS, banks, or other institutions will never ask for personal information via email. If you are unsure about the content or validity of an email, do not respond to it. Forward the email to the Information Systems Security Team at firstname.lastname@example.org for further analysis.
- Taxpayers who believe they may have provided identity thieves with this information should consider immediately obtaining an Identity Protection PIN. Learn more on the IRS website.
- To check the status of a tax refund, go to “Where’s My Refund?” on IRS.gov.
Want to learn more about phishing and how to protect yourself?
- Visit Virus and Malware Removal Tools and Tips | AskDeac
- Connect with InfoSec and review Security Essentials
- Register for a Computer and Information Security Essentials Class
- View your Wake Forest email in the Gmail web interface or Gmail app on your mobile device to leverage warning banners across suspicious messages.
If you have questions concerning this message or need assistance, please contact the Information Systems Security Team at email@example.com.