Trend Micro Facebook TrendLabs Twitter Malware Blog RSS Feed You Tube - Trend Micro
Search our blog:

  • Mobile Vulnerabilities

  • Zero-Day Alerts

  • Recent Posts

  • Calendar

    September 2015
    S M T W T F S
    « Aug    
  • Email Subscription

  • About Us

    IRS (Internal Revenue Service) spam that leads to phishing sites is in circulation–again! The new spam informs the user that he is eligible for a tax refund, and must fill out a form to avail of the refund.

    The link within the spammed email message does not look like an official IRS address: http://{BLOCKED}

    See image below:

    {IRS refund email}

    Clicking the link points to the page below:

    {IRS refund site}

    The page does use the IRS logo and looks nearly similar to the IRS official site, however. This could deceive the more naive Internet user.

    Clicking the “Tax Refund Online Form” link leads to a bogus form page which actually phishes for sensitive user information. These spammers-phishers have also been so kind as to include the following reminders:

    • For security reasons, we will record your ip-address and date.
    • Deliberate wrong inputs are criminally pursued and indicted.

    The “refund” angle may be old (see here and here), but apparently it is yet to be exhausted. More inventive techniques have used the agency’s name in asking for contributions to the victims of the California wildfires in early November, serving malware in a complaint form, or using a voice message to deliver the message.

    Note that the IRS would never contact anyone using email, as stated in the IRS’s official site. To learn more about phishing attempts of this kind, read the official site’s interesting page dedicated to IRS-related scams.

    Share this article
    Get the latest on malware protection from TrendLabs
    Email this story to a friend   Technorati   NewsVine   MySpace   Google   Live   StumbleUpon

    Comments are closed.


    © Copyright 2013 Trend Micro Inc. All rights reserved. Legal Notice