Join Early Retirement Today
Reply
 
Thread Tools Search this Thread Display Modes
Phishing emails
Old 02-09-2015, 08:14 PM   #1
Give me a museum and I'll fill it. (Picasso)
Give me a forum ...
audreyh1's Avatar
 
Join Date: Jan 2006
Location: Rio Grande Valley
Posts: 16,466
Phishing emails

Someone I know got an interesting phishing email today from the "IRS" announcing that they had a new IP PIN to use for e-filing their 2014 return. File attached.

Subject: Your 2014 electronic IP PIN!

Quote:
Dear member

This is to inform you that our system has generated your new secure electronic PIN to e-File your 2014 tax return.

Please kindly download the Microsoft file to securely review it.

Thanks

Internal Revenue Service
<address given>
From http://www.irs.gov/uac/Report-Phishing

Quote:
The IRS doesn't initiate contact with taxpayers by email, text messages or social media channels to request personal or financial information. This includes requests for PIN numbers, passwords or similar access information for credit cards, banks or other financial accounts.
It's worth reviewing the IRS website because it also discusses phone scams.
__________________

__________________
Well, I thought I was retired. But it seems that now I'm working as a travel agent instead!
audreyh1 is online now   Reply With Quote
Join the #1 Early Retirement and Financial Independence Forum Today - It's Totally Free!

Are you planning to be financially independent as early as possible so you can live life on your own terms? Discuss successful investing strategies, asset allocation models, tax strategies and other related topics in our online forum community. Our members range from young folks just starting their journey to financial independence, military retirees and even multimillionaires. No matter where you fit in you'll find that Early-Retirement.org is a great community to join. Best of all it's totally FREE!

You are currently viewing our boards as a guest so you have limited access to our community. Please take the time to register and you will gain a lot of great new features including; the ability to participate in discussions, network with our members, see fewer ads, upload photographs, create a retirement blog, send private messages and so much, much more!

Old 02-09-2015, 08:20 PM   #2
Thinks s/he gets paid by the post
ls99's Avatar
 
Join Date: May 2008
Posts: 4,792
Pretty slick. Bet many will get suckered.
__________________

__________________
There must be moderation in everything, including moderation.
ls99 is offline   Reply With Quote
Old 02-09-2015, 08:23 PM   #3
Give me a museum and I'll fill it. (Picasso)
Give me a forum ...
freebird5825's Avatar
 
Join Date: Feb 2008
Location: East Nowhere, 43N Latitude, NY
Posts: 9,017
TY for the info.
I showed Mr B, who is constantly communicating with the IRS by email, for himself as well as his tax clients.
__________________
"All our dreams can come true, if we have the courage to pursue them." - Walt Disney
freebird5825 is offline   Reply With Quote
Old 02-09-2015, 08:38 PM   #4
Thinks s/he gets paid by the post
 
Join Date: Nov 2011
Posts: 2,361
"Dear member" and "download the Microsoft file" stand out as awkward phrases the IRS would not use.
__________________
GrayHare is offline   Reply With Quote
Old 02-09-2015, 09:05 PM   #5
Give me a museum and I'll fill it. (Picasso)
Give me a forum ...
audreyh1's Avatar
 
Join Date: Jan 2006
Location: Rio Grande Valley
Posts: 16,466
Quote:
Originally Posted by GrayHare View Post
"Dear member" and "download the Microsoft file" stand out as awkward phrases the IRS would not use.
Easily corrected by a more sophisticated phisher
__________________
Well, I thought I was retired. But it seems that now I'm working as a travel agent instead!
audreyh1 is online now   Reply With Quote
Old 02-09-2015, 09:19 PM   #6
Thinks s/he gets paid by the post
 
Join Date: Nov 2011
Posts: 2,361
Quote:
Originally Posted by audreyh1 View Post
Easily corrected by a more sophisticated phisher
Fortunately the phishers are rarely smart enough. "Dear IRS Customer" and "download the computerized file" will also stand out.

OTOH, phishers likely prefer less sophisticated victims, ones who do not notice odd phrasing, and are presumably less likely to notice odd financial activity.
__________________
GrayHare is offline   Reply With Quote
Old 02-09-2015, 09:46 PM   #7
Thinks s/he gets paid by the post
 
Join Date: Mar 2010
Posts: 1,649
Thanks for the heads up Audrey1. Have passed it on.
__________________
sheehs1 is offline   Reply With Quote
Old 02-09-2015, 09:48 PM   #8
Moderator
Alan's Avatar
 
Join Date: Jul 2005
Location: Eee Bah Gum
Posts: 21,100
Thanks Audrey.
__________________
Retired in Jan, 2010 at 55, moved to England in May 2016
Now it's adventure before dementia
Alan is online now   Reply With Quote
Old 02-10-2015, 11:10 PM   #9
Give me a museum and I'll fill it. (Picasso)
Give me a forum ...
audreyh1's Avatar
 
Join Date: Jan 2006
Location: Rio Grande Valley
Posts: 16,466
Yes, often phishing emails are poorly worded, have obvious grammatical, spelling, syntax, or capitalization errors. But they can be clean to. You can't count on "obvious" phoniness to catch it.



This example is from Krebs on Security.
Phishers Pounce on Anthem Breach

Someone following the news may know that neither credit card info nor health data was accessed, but how many folks have paid attention or will even remember?
__________________
Well, I thought I was retired. But it seems that now I'm working as a travel agent instead!
audreyh1 is online now   Reply With Quote
Old 02-10-2015, 11:33 PM   #10
Give me a museum and I'll fill it. (Picasso)
Give me a forum ...
audreyh1's Avatar
 
Join Date: Jan 2006
Location: Rio Grande Valley
Posts: 16,466
Never mind ( but still....)

Quote:
Update, Feb. 9, 6:15 p.m. ET: In a somewhat farcical turn of events, it appears that the image above is actually from a phishing education campaign created by a company that helps firms impress upon their employees the importance of cybersecurity. The image above, when clicked, brings users to this page, which warns visitors they’ve clicked on a link design to test awareness. That page is run by Knowbe4, whose CEO Stu Sjouwerman said in response to an inquiry that the image was likely forwarded to Anthem by a cautious employee of one of Knowbe4’s customers who received the phishing test but did not click the link. Full disclosure: Knowbe4 is an advertiser on this blog.
__________________
Well, I thought I was retired. But it seems that now I'm working as a travel agent instead!
audreyh1 is online now   Reply With Quote
Old 02-11-2015, 09:08 AM   #11
Full time employment: Posting here.
 
Join Date: Jun 2013
Posts: 619
Phishers deliberately make their attempts pretty transparent to immediately weed out all but the most vulnerable; most are more transparent than even the IRS scam from the OP. For scams like the Anthem, I instinctively hover over the URL in the hotlink, and it's immediately obvious that something is phishy.

While were on the topic, has anyone else been getting semi-regular phone calls regarding winning $25,000 in a drawing? I'm kind of wondering what happens to those who follow up (and maybe somebody here has just for fun). I'm guessing the scammer asks for a bank account in which to deposit the winnings.
__________________
Which Roger is offline   Reply With Quote
Old 02-11-2015, 09:36 AM   #12
Recycles dryer sheets
fidler4's Avatar
 
Join Date: Mar 2013
Posts: 208
ImageUploadedByEarly Retirement Forum1423668962.918421.jpg


Sent from my iPad using Early Retirement Forum
__________________

__________________
fidler4 is offline   Reply With Quote
Reply


Currently Active Users Viewing This Thread: 1 (0 members and 1 guests)
 
Thread Tools Search this Thread
Search this Thread:

Advanced Search
Display Modes

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is On
HTML code is Off
Trackbacks are Off
Pingbacks are Off
Refbacks are Off


Similar Threads
Thread Thread Starter Forum Replies Last Post
Are others seeing an increase in phishing emails? donheff Other topics 25 05-15-2012 05:47 PM
Is there a service that can notify me of emails by text message? thefed Other topics 6 12-30-2007 09:52 PM
forwarded "FYI" emails maddythebeagle Young Dreamers 22 12-01-2007 07:58 PM
Fake emails Shredder Other topics 4 02-24-2006 11:40 AM

 

 
All times are GMT -6. The time now is 05:08 PM.
 
Powered by vBulletin® Version 3.8.8 Beta 1
Copyright ©2000 - 2017, vBulletin Solutions, Inc.