Security News > 2020 > October > Phishing attack spoofs IRS COVID-19 relief to steal personal data

Phishing attack spoofs IRS COVID-19 relief to steal personal data
2020-10-07 13:31

In this attack, the initial email promised an important update on the recipient's COVID relief funds to be disbursed to the person's address.

The initial email snuck past Microsoft 365 email security because it didn't follow the usual traits of traditional phishing attacks, according to Armorblox.

The email subject of "IRS Covid Relief Fund Update" and the sender's name of "Irs Covid Relief Funds" were both specific and related to important topics.

Like many phishing emails the message contains a few grammatical errors, such as the IRS not being capitalized in the sender's name.

The phishing page for this attack asked for personal information that the IRS would never ask for via email.


News URL

https://www.techrepublic.com/article/phishing-attack-spoofs-irs-covid-19-relief-to-steal-personal-data/#ftag=RSS56d97e7