1. This site uses cookies. By continuing to use this site, you are agreeing to our use of cookies. Learn More.

Identity thieves obtain 100,000 electronic filing PINs from IRS system

Discussion in 'CSO' started by RSS, Feb 10, 2016.

  1. RSS

    RSS New Member Member

    The Internal Revenue Service was the target of an attack that used stolen Social Security numbers and other taxpayer data to obtain PINs that can be used to file tax returns electronically.

    The attack occurred in January and targeted an IRS Web application that taxpayers use to obtain their so-called Electronic Filing (E-file) PINs. The app requires taxpayer information such as name, Social Security number, date of birth and full address.

    Attackers attempted to obtain E-file PINs corresponding to 464,000 unique SSNs using an automated bot, and did so successfully for 101,000 SSNs before the IRS blocked it.

    MORE ON CSO:Data breach numbers still high in 2015

    The personal taxpayer data used during the attack was not obtained from the IRS, but was stolen elsewhere, the agency said in a statement. The IRS is notifying affected taxpayers via mail and will monitor their accounts to protect them from tax-related identity theft.

    To read this article in full or to leave a comment, please click here

    Continue reading...

Share This Page