Tax Technology Scams—Protect Yourself

Written by | Posted in IRSTax Fraud/Evasion/Crimes
Annette Nellen

Technology has made tax compliance a lot simpler and more efficient. I believe at some point, tax compliance and payment will be a just-in-time activity we can easily do from our smart phone or watch.

But, computer systems and networks need to be extremely secure due to the highly sensitive data and the thieves who work 24/7 to get the data. Just this week, the IRS alerted tax professionals of thieves and scammers trying to get control of practitioner computers to avail themselves of client tax data.

This is not the first warning from the IRS. A few times during 2016 the IRS warned tax professionals of scams aimed at obtaining their PTIN and client data. As part of the Security Summit, the IRS launched a campaign called – Protect Your Client: Protect Yourself, to bring greater awareness of threats and how to avoid them. One such scam involves thieves taking control of the practitioner’s computer and thus being able to obtain data from it.

The IRS encourages practitioners to review the security settings on their computers. In a 9/2/16 press release (IR-2016-119), the IRS recommends:

In addition to activating security measures for tax software products, IRS urges all tax preparers to take the following steps:

  • Run a security “deep scan” to search for viruses and malware;
  • Strengthen passwords for both computer access and software access; make sure your password is a minimum of eight digits (more is better) with a mix of numbers, letters and special characters and change them often;
  • Be alert for phishing scams: do not click on links or open attachments from unknown senders;
  • Educate all staff members about the dangers of phishing scams in the form of emails, texts and calls;
  • Review any software that your employees use to remotely access your network and/or your IT support vendor uses to remotely troubleshoot technical problems and support your systems. Remote access software is a potential target for bad actors to gain entry and take control of a machine.

In addition, the IRS recently issued instructions to tax professionals on how to monitor their PTIN activity.

It’s challenging enough for tax practitioners to work with the tax law and keep up to date with it. They also need to have a good foundation in technology and keep up to date to understand how to keep e-data secure and have appropriate technology set up for their tax practice.

What do you think?

Annette Nellen, CPA, Esq., is a professor in and director of San Jose State University’s graduate tax program (MST), teaching courses in tax research, accounting methods, property transactions, state taxation, employment tax, ethics, tax policy, tax reform, and high technology tax issues.

Annette is the immediate past chair of the AICPA Individual Taxation Technical Resource Panel and a current member of the Executive Committee of the Tax Section of the California Bar. Annette is a regular contributor to the AICPA Tax Insider and Corporate Taxation Insider e-newsletters. She is the author of BNA Portfolio #533, Amortization of Intangibles.

Annette has testified before the House Ways & Means Committee, Senate Finance Committee, California Assembly Revenue & Taxation Committee, and tax reform commissions and committees on various aspects of federal and state tax reform.

Prior to joining SJSU, Annette was with Ernst & Young and the IRS.

Twitter LinkedIn 

Subscribe to TaxConnections Blog

Enter your email address to subscribe to this blog and receive notifications of new posts by email.



Post Views: 1,568