Tax season is here, and with it comes phishing season. The IRS is expecting last year’s Form W-2 phishing scheme to make the rounds again this year, so here’s what you need to know to prepare yourself and your business to fend off this dangerous scam.
If you or your company has already been victimized by this or similar scams, the IRS can take steps to help prevent employees from being victims of tax-related identity theft if they are notified of the attack. Because of the nature of this scam, often businesses do not discover the theft immediately, so it is important to educate your payroll or finance personnel and be proactive about preventing security breaches of this nature.
The IRS established a special email notification address specifically for employers to report Form W-2 data thefts. Here’s how Form W-2 scam victims can notify the IRS:
Businesses and organizations that fall victim to the scam and/or organizations that only receive a suspect email but do not fall victim to the scam should send the full email headers to firstname.lastname@example.org and use “W2 Scam” in the subject line.
Employers can learn more at Form W-2/SSN Data Theft: Information for Businesses and Payroll Service Providers.
Read more information from irs.gov about this scam at IRS, States and Tax Industry Warn Employers to Beware of Form W-2 Scam; Tax Season Could Bring New Surge in Phishing Scheme.