All US taxpayers now need to check Gmail or Outlook – look for keywords your bank might leave blank

DevanColeMarch 24, 2023
13
All US taxpayers now need to check Gmail or Outlook - look for keywords your bank might leave blank

A seemingly harmless phrase in your inbox may indicate that you are a target of cyber criminals.

Security experts warn US taxpayers of a new phishing campaign.

That one sentence in an email could be a sign of bank-draining malware

1

That one sentence in an email could be a sign of bank-draining malwareCredit: getty

With tax season approaching, scammers claim to be the IRS to install “Trojan Emotet” first spotted by Malwarebytes.

Trojan Emotet is malicious software that can steal data such as B. user credentials stored in the browser by listening to network traffic.

WHAT DOES THE EMAIL CONTAIN?

The phishing email uses the subject line “IRS Tax Forms W-9” and a spoofed return address from “IRS Online Center”.

So if you see the phrase “IRS” in an email, proceed with caution.

Gmail and Outlook users receive a
Google users warned about

Remember that the IRS will never Contact you via email or text according to its website.

The full email is as follows:

“Let me know if you’d like a hard copy in the mail too.

Respectful [SIC]

Barbara LaCosta

inspector

treasury.”

But the telltale sign to look out for is the “Respectful” typo.

In addition, the email contains a 709 KB “W-9 form.zip” attachment containing a 548 MB Word document titled “W-9 form.doc”.

“You won’t find many real Word documents that weigh 500MB or more. In fact, a file size of 500MB is a potential indicator that Emotet is lurking in the background,” said Chris Boyd, Malwarebytes Malware Intelligence Analyst.

“Malware authors artificially increase the size of the document to try to fool or break security tools. This is because the large file size can prove too difficult for the tools to get to grips with and analyze properly,” he continues.

HOW TO AVOID A PHISHING SCAM

First, you should thoroughly check who sent the email.

Even if it looks official, double-check the email and look for any misspellings or slight anomalies in the sender’s email address.

Never feel pressured to open an attachment and avoid clicking on the phrase “activate content”.

You should also be careful with links in e-mails.

I'm a gardener - the spring bug that could do more harm than good
Shooting coach says French prodigy resembles Suns star and could be'face of the NBA'

If you are sure an email you have received is a scam, report it to your email provider and delete it.

https://www.the-sun.com/tech/7712519/taxpayers-gmail-outlook-irs-scam-phising/ All US taxpayers now need to check Gmail or Outlook – look for keywords your bank might leave blank

DevanColeMarch 24, 2023
13
Photo of DevanCole

DevanCole

DevanCole is a Dailynationtoday U.S. News Reporter based in London. His focus is on U.S. politics and the environment. He has covered climate change extensively, as well as healthcare and crime. DevanCole joined Dailynationtoday in 2021 from the Daily Express and previously worked for Chemist and Druggist and the Jewish Chronicle. He is a graduate of Cambridge University. Languages: English. You can get in touch with me by emailing: devancole@dailynationtoday.com.

Related Articles

The most iconic character classes in RPGs

The most iconic character classes in RPGs

January 1, 2022
Think you know everything about Cowboy Bebop? Solve puzzles to find the answer

Think you know everything about Cowboy Bebop? Solve puzzles to find the answer

November 15, 2021
Guitar solo!

First impressions: Final Fantasy XIV Endwalker is a satisfying end to a decade-long story

December 9, 2021
Ghostrunner teases its 'Ultimate DLC' reveal

Ghostrunner teases its ‘Ultimate DLC’ reveal

November 24, 2021
Back to top button