February 2, 2018 By Mark Samuels 2 min read

Concerns about tax security are leading experts to encourage Americans to file their personal returns as soon as possible.

According to NBC Nightly News, early submission can help taxpayers thwart the growing faction of cybercriminals seeking to commit tax fraud. Other recommended security measures include using personal identification numbers (PINs) and looking out for fraudulent communications from criminals impersonating the Internal Revenue Service (IRS).

Experts Weigh In on the State of Tax Security

Tax-related scams jumped by as much as 400 percent last year, NBC reported. The IRS warned that rates could be even higher through 2017, especially given that the slew of high-profile attacks over the past year involving sensitive information.

IBM Security Vice President Caleb Barlow told NBC that taxpayers should take proactive steps to stop cybercriminals in their tracks. “One of the big things you can do is file early because once you’ve filed, it’s going to be nearly impossible for them to submit a fraudulent claim,” he said.

Etay Maor, a senior fraud prevention strategist at IBM Security, gave NBC reporters a look at the type of potential tax fraud that takes place on the Dark Web via the firm’s Cyber Command Center. He noted that criminals sell prepared, fraudulent tax documents for between $40 and $60 per record.

“They try to file the tax returns before you so they can collect on your money before you can,” said Maor. To prevent fraudulent claims, NBC reported, individuals should:

  • Establish a six-digit PIN with the IRS to ensure that data is safe and secure.
  • Beware of emails or phone calls from the IRS, since these are almost always fake.

Understanding the Wider Threat

The concept of cybercriminals hijacking tax returns is not new, and the IRS has previously advised the public and businesses of all sizes to implement security measures to combat this type of fraud. However, it’s important to look at this problem in the context of the more than 1,500 data breach incidents that occurred in the U.S. in 2017, according to the Identity Theft Resource Center.

This record total, combined with the growth of Dark Web forums designed specifically for the illegal sale and purchase of sensitive information, should put Americans on high alert this tax season. Watch the full video below for more information.

More from

DOD establishes Office of the Assistant Secretary of Defense for Cyber Policy

2 min read - The federal government recently took a new step toward prioritizing cybersecurity and demonstrating its commitment to reducing risk. On March 20, 2024, the Pentagon formally established the new Office of the Assistant Secretary of Defense for Cyber Policy to supervise cyber policy for the Department of Defense. The next day, President Joe Biden announced Michael Sulmeyer as his nominee for the role.“In standing up this office, the Department is giving cyber the focus and attention that Congress intended,” said Acting…

Unpacking the NIST cybersecurity framework 2.0

4 min read - The NIST cybersecurity framework (CSF) helps organizations improve risk management using common language that focuses on business drivers to enhance cybersecurity.NIST CSF 1.0 was released in February 2014, and version 1.1 in April 2018. In February 2024, NIST released its newest CSF iteration: 2.0. The journey to CSF 2.0 began with a request for information (RFI) in February 2022. Over the next two years, NIST engaged the cybersecurity community through analysis, workshops, comments and draft revision to refine existing standards…

What should Security Operations teams take away from the IBM X-Force 2024 Threat Intelligence Index?

3 min read - The IBM X-Force 2024 Threat Intelligence Index has been released. The headlines are in and among them are the fact that a global identity crisis is emerging. X-Force noted a 71% increase year-to-year in attacks using valid credentials.In this blog post, I’ll explore three cybersecurity recommendations from the Threat Intelligence Index, and define a checklist your Security Operations Center (SOC) should consider as you help your organization manage identity risk.The report identified six action items:Remove identity silosReduce the risk of…

Topic updates

Get email updates and stay ahead of the latest threats to the security landscape, thought leadership and research.
Subscribe today