The IRS says a new email scam is targeting tax professionals — and your taxes.
The IRS is warning people of a new and dangerous email scam circulating email accounts around the country.
The email will have the subject line, “Software Support Update.”
In the email, the hacker claims to be someone from a tax software provider. However, the purpose of the email is to steal usernames and passwords.
If unsure about the validity of an email, the IRS said it’s best to check its website.
IRS Tips to Prevent Ransomware Attacks
Tax practitioners – as well as businesses, payroll departments, human resource organizations and taxpayers – should talk to an IT security expert and consider these steps to help prepare for and protect against ransomware attacks:
Make sure employees are aware of ransomware and of their critical roles in protecting the organization’s data.
For digital devices, ensure that security patches are installed on operating systems, software and firmware. This step may be made easier through a centralized patch management system.
Ensure that antivirus and anti-malware solutions are set to automatically update and conduct regular scans.
Manage the use of privileged accounts — no users should be assigned administrative access unless necessary, and only use administrator accounts when needed.
Configure computer access controls, including file, directory and network share permissions, appropriately. If users require read-only information, do not provide them with write-access to those files or directories.
Disable macro scripts from office files transmitted over e-mail.
Implement software restriction policies or other controls to prevent programs from executing from common ransomware locations, such as temporary folders supporting popular Internet browsers, compression/decompression programs.
Back up data regularly and verify the integrity of those backups.
Secure backup data. Make sure the backup device isn’t constantly connected to the computers and networks they are backing up. This will ensure the backup data remains unaffected by ransomware attempts.