Security News > 2021 > March > Scammers target universities in ongoing IRS phishing attacks
The Internal Revenue Service is warning of ongoing phishing attacks impersonating the IRS and targeting educational institutions.
"The phishing emails appear to target university and college students from both public and private, profit and non-profit institutions," the US revenue service warned.
These phishing messages use "Tax Refund Payment" or "Recalculation of your tax refund payment" subject lines to attract the targets' attention and increase the phishers' social engineering attacks' success rates.
After landing on the phishing pages, the targets are then prompted to fill out a form with sensitive personal information, which the attackers can later use to commit fraud.
Electronic Filing PIN. "This impersonation is especially convincing as the attacker's landing page is identical to the IRS website including the popup alert that states' THIS US GOVERNMENT SYSTEM IS FOR AUTHORIZED USE ONLY', a statement that also appears on the legitimate IRS website," Abnormal Security revealed.
Last year, aggressive scammers also impersonated the IRS in emails threatening targets with arrest warrants and legal charges unless they paid fake outstanding amounts related to late or missed payments.
News URL
Related news
- Google raps Iran's APT42 for raining down spear-phishing attacks (source)
- Xeon Sender Tool Exploits Cloud APIs for Large-Scale SMS Phishing Attacks (source)
- Cybercriminals exploit file sharing services to advance phishing attacks (source)
- CERT-UA Warns of New Vermin-Linked Phishing Attacks with PoW Bait (source)
- How AitM Phishing Attacks Bypass MFA and EDR—and How to Fight Back (source)
- Novel attack on Windows spotted in phishing campaign run from and targeting China (source)
- North Korean scammers plan wave of stealth attacks on crypto companies, FBI warns (source)
- Cybercriminals Exploit HTTP Headers for Credential Theft via Large-Scale Phishing Attacks (source)
- Australian Organisations Targeted by Phishing Attacks Disguised as Atlassian (source)
- Free Sniper Dz Phishing Tools Fuel 140,000+ Cyber Attacks Targeting User Credentials (source)