Information Security Tax Season
What you need to know
As the cyber security landscape continues to evolve, spring is a prime window for cyber criminals to pursue sensitive information related to tax season. The IRS has already released multiple notices about scams targeting taxpayers, and information such as Social Security Numbers are fair game.
What you need to do
- Look out for mobile phone-based spear phishing attacks like smishing and vishing. Attackers impersonate people you’re familiar with and ask for a quick callback or text. A simple reply or clicked link is enough for attackers to gain access.
- Know how to spot and report common phishing attempts. An SJSU employee will never ask you for your login information or your password, regardless of how legitimate the email, phone texts, or chat messages may appear. In addition, some phishing attempts are related to services you no longer use or have never used. In either event, please report the phish via Gmail.
If you have identified such an attempt, please report tax-related illegal activities via this IRS guidance. In addition, please report IRS-related phishing attempts or fraud to the Treasury Inspector General for Tax Administration at 800-366-4484.