Home >> Security

Tax season brings phishing threats

By: Selena Mann On: 06 Apr 2011 For: Computing Canada Creator

Phishing attacks are often seasonal. It's tax season. Put two and two together and find out how scam artists are posing as the taxman

IT departments must protect enterprise employees from tax phishing scams as they are being targeted by e-mail, according to Paul Wood, an analyst at Symantec Corp, headquartered in Mountain View, Calif.

Tax-related scams increase in mid-February throughout March. Fourty-eight per cent of malicious mail included tax-related phishing on March 20, this year. The majority of this e-mail claimed to be from the United Kingdom’s tax office, according to Wood.

“It’s certainly a seasonal trend, where in many countries, many people see an increase,”
Wood said.

Phishing scams change to follow the tax period, becoming more prevalent closer to the end of the financial year in April, he said.

“Phishing utilizes timely events to increase the likelihood of catching targets and information; during tax season it's tax phishing, during election season its election phishing,” said James Quin, an analyst at London, Ont.-based Info-Tech Research Group Inc.

Typically these scams involve legitimate-looking services like telling people of a chance for a rebate, using tax issues to lure employees. The e-mail then might ask for credit card information. A recipient of the phishing e-mail should know it is a scam if it asks for credit card info because the government does not give out rebates in that fashion. These scams usually contain grammatically correct language and legitimate-looking Web sites to con recipients into giving away personal information.

The goal of a phishing scam is to attack individuals, not the enterprise. So it is the employees at risk of being scammed, according to Quin.

“Tax scams, like most broadly targeted phishing attempts, are not focused on enterprises, and therefore have little impact on them,” Quin said.

Most employees in an enterprise are already protected under anti-spam tools and filtering out e-mail containing threats, he said.

“Enterprises do this more for their own protection than the protection of their employees, but the protection is extended to the employee automatically,” Quin said. “If the business is not using some form of spam protection, whether an in-house managed solution or a third-party service, they should consider it immediately.”

Sign up for our Newsletters

Tags: Symantec, privacy

Close X

Your Name:

Your E-mail:

Friend's Name:

Friend's E-mail:

Close X

| Views: 2020 | Rating:

(0 votes)

Rate this article on a scale of
1 to 5 stars,5 being the best.

Close X

Page 1

Quick Access

Video Conferencing Cloud Computing Resource Centre CIO Canada's Brainstorm Centre CIO Canada Debate IdeaCity Conference June 18-20 - Toronto

Selena Mann

Recent Canadian IT Jobs

more: IT Jobs , Post A Job

blog comments powered by Disqus

Related Videos

Building an Enterprise IT Security Training Program

Building an Enterprise IT Security Training ProgramOver 50% of security breaches are a result of end-user error, oversight, and ignorance. IT security training is an effective method of reducing end-user related security breaches.

Cloud Computing: Extending the Network (3 of 3)

Cloud Computing: Extending the Network (3 of 3)The end goals of private cloud computing are to; Enable efficient delivery of IT resources and services; Give the enterprise complete control over data; Enable choice in technologies and service providers

Cloud Computing: Getting to One Network (1 of 3)

Cloud Computing: Getting to One Network (1 of 3)In this first video of the series, the team will take you through how to consolidate the different types of traffic onto a single, general-purpose, high-performance, highly available network that greatly simplifies the network infrastructure and redu

Cloud Computing: The Unified Compute Model (2 of 3)

Cloud Computing: The Unified Compute Model (2 of 3)In this second video, the team will look at how to unite computing, networking, storage access, and virtualization into a single cohesive system. The Unified Compute model prepares you for cloud computing. This will be discussed in the next and fin

Professors warn of arms race in cyberspace

Professors warn of arms race in cyberspaceAt a panel discussion organized by Osgoode Hall, professors Ronald Deibert and Stephane Leman-Langlois discussed the attacks on Google Inc. and the challenges of working in countries such as China.

Computing Canada Poll

Read the Computing Canada articles you made happen.

• Democratizing Business Continuity
• Agility and efficiency through virtual switching

* Sponsored by Microsoft

Related White Papers

Getting a better grip on mobile devices - IBM Software provides solutions and strategies for managing both employee-owned and enterprise-owned equipment.

2012 Bit9 Cyber Security Research Report - The 2012 Bit9 Cyber Security Research Report presents the perspectives of more than 1,800 IT professionals on the world of advanced cyber threats.

Realistic Security, Realistically Deployed: Today's Application Control and Whitelisting - With today's sophisticated and constant barrage of cyber-threats defenses focused on a blacklist "permit-all-except" philosophy are doomed to fail. Modern security requires an application control and whitelisting approach.

Advanced Threat Landscape: What Organizations Need to Know - Combating today's cyber-threats requires an approach based on trust, not the blacklisting security strategies of the past.

IFCG Addresses Privacy and Data Security in a Regulated Industry Through a Managed Security Services Provider - IFCG turned to No Panic Computing (NPC) to provide security-hardened laptops, monitored and managed 24/7, boasting biometric access, encrypted hard drives, sophisticated anti-virus monitoring and an OS optimized for performance and data protection.

more: White Papers