Comments on: IRS Tax Refund Phishing Scheme http://www.fivecentnickel.com/2005/12/15/irs-tax-refund-phishing-scheme/ personal finance tips, tricks, and commentary Mon, 13 Feb 2012 18:22:18 +0000 http://wordpress.org/?v=2.9.2 hourly 1 By: Sagedragon http://www.fivecentnickel.com/2005/12/15/irs-tax-refund-phishing-scheme/comment-page-1/#comment-239012 Sagedragon Tue, 02 Aug 2011 15:06:41 +0000 http://www.fivecentnickel.com/?p=237#comment-239012 I've had three of the same scam mails. One of the links is actually an executable file that presumably unloads nasties on your machine, most likely keystroke loggers with a Trojan back end. The Subject is: Support IRS.gov Email return is: information@irs.security.gov The issue supposedly is Unreported/Underreported Income (Fraud Application) ... at least they got that right. The body includes: To download your tax statement from Internal Revenue Service (IRS) website (click on the link below): download tax statement: commensurate-00000700955160US.pdf Which looks for to the casual observer like an Adobe Acrobat file. But the actual link includes a ".exe" extension. This may be more invasive than just a phishing message. I’ve had three of the same scam mails. One of the links is actually an executable file that presumably unloads nasties on your machine, most likely keystroke loggers with a Trojan back end.
The Subject is: Support IRS.gov
Email return is: information@irs.security.gov
The issue supposedly is Unreported/Underreported Income (Fraud Application) … at least they got that right.
The body includes:
To download your tax statement from Internal Revenue Service (IRS) website (click on the link below):

download tax statement: commensurate-00000700955160US.pdf

Which looks for to the casual observer like an Adobe Acrobat file. But the actual link includes a “.exe” extension.

This may be more invasive than just a phishing message.

]]> By: EFM http://www.fivecentnickel.com/2005/12/15/irs-tax-refund-phishing-scheme/comment-page-1/#comment-117058 EFM Tue, 06 May 2008 19:04:58 +0000 http://www.fivecentnickel.com/?p=237#comment-117058 Thank you! I got that same email! But for my stimulus! Ugh! I can't believe I really was thinking that it was real! Thanks so much! Thank you! I got that same email! But for my stimulus! Ugh! I can’t believe I really was thinking that it was real! Thanks so much!

]]> By: FMF http://www.fivecentnickel.com/2005/12/15/irs-tax-refund-phishing-scheme/comment-page-1/#comment-1102 FMF Mon, 26 Dec 2005 18:21:52 +0000 http://www.fivecentnickel.com/?p=237#comment-1102 Yep, they just get more and more sophisticated. I have to keep a list of legit sites that I frequent and even then, it's still a minefield (like when you get an email from "PayPal"). Yep, they just get more and more sophisticated. I have to keep a list of legit sites that I frequent and even then, it’s still a minefield (like when you get an email from “PayPal”).

]]> By: Jeremy http://www.fivecentnickel.com/2005/12/15/irs-tax-refund-phishing-scheme/comment-page-1/#comment-1019 Jeremy Tue, 20 Dec 2005 01:43:46 +0000 http://www.fivecentnickel.com/?p=237#comment-1019 Thanks for this heads up. I've linked to the post at my new blog <a href="http://financialrevolution.blogspot.com" rel="nofollow">Financial Revolution</a>. What I find so surprising is not how legit this message looked, but why so many of these scams look so bad (typos, poor quality images, bad grammar.) Considering how lucrative these things are supposed to be, I would think more thiefs would put in the time to do it well. Thanks for this heads up. I’ve linked to the post at my new blog Financial Revolution. What I find so surprising is not how legit this message looked, but why so many of these scams look so bad (typos, poor quality images, bad grammar.) Considering how lucrative these things are supposed to be, I would think more thiefs would put in the time to do it well.

]]>