Tax season can be a stressful time for many Americans, and scammers are waiting for you to slip up so they can steal your personal information, identity and money. The National Cyber Security Alliance (NCSA) and the Internal Revenue Service (IRS) want to help you stay safe online while filing your taxes with these best practices, tips, and resources.
LOCK DOWN YOUR LOGIN
Create long and unique passphrases for all accounts and use multi-factor authentication (MFA) wherever possible. MFA will fortify your online accounts by creating an extra layer of security, such as a unique one-time code sent to your phone. Most major email and online tax preparation services have this tool available.
UPDATE YOUR SOFTWARE
Before filing your taxes at home or work, be sure that all internet-connected devices ?including PCs, smartphones and tablets are running the most current versions of software to improve the performance and security of your devices.
BEWARE OF PUBLIC WI-FI
Public wireless networks are not secure. If you are filing your taxes online make sure you are doing it on a secure and personal network. We advise the use of a Virtual Private Network (VPN) any time you need to operate on Wi-Fi.
THINK BEFORE SUPPLYING SENSITIVE INFORMATION
Unsolicited emails, calls, or texts that prompt you to click on a link or share valuable personal and financial information are very likely scams. With your personal data, online thieves can swindle funds and/or commit identity theft.
LEARN HOW TO RECOGNIZE A SCAM WITH THE FOLLOWING TIPS:
IRS COMMUNICATIONS: REAL VS. FAKE
Be skeptical of any phone calls, emails, or texts claiming to be from the IRS, or other government agencies. Almost all contact from the IRS will be initiated via the U.S. Postal Service. They will only call once they have established a line of communication with you via physical mail first. The IRS will not demand you make an immediate payment to a source other than the U.S. Treasury. Unscrupulous callers claiming to be federal employees can be very convincing by using fake names or phony ID numbers. If you are unsure if the caller is legitimate, hang up, look up the direct number for the agency online, and call that source to verify.
OTHER RED FLAGS
- Requests for PII: Personally Identifiable Information (PII) refers to any data that could potentially identify a specific individual. For example: Bank account information, Social Security numbers, login credentials, and mailing addresses.
- Urgency: The sender uses an abnormal sense of urgency, or other scare tactics, to obtain information.
- Attachments: The message includes an attachment, such as a PDF. Never open attachments from a suspicious or unknown email address. It may download malware or viruses onto your device.
TIP: WHEN IN DOUBT, THROW IT OUT
If an email seems suspicious, even if you think you know the source, it’s best to just delete it. You can also report IRS, Treasury or tax-related phishing scams to email@example.com, then delete it.
WORKING WITH TAX PREPARERS
DO YOUR RESEARCH
Vet your tax preparer before handing over sensitive information and ask what steps they take to protect your information. Businesses of all sizes are susceptible to cyberthieves, so it is critical to choose a preparer who takes security seriously.
CHOOSING A CYBER-SAVVY TAX PREPARER
Be selective about who you choose to file your taxes. Consider asking them the following questions:
- How will we exchange files and sensitive information?
- Who at your firm has access to my data?
- Are our communications end-to-end encrypted?
- What types of network security have you implemented?
- How do you back up client data?
SECURELY SENDING DOCUMENTS
The most secure way of transferring documents is physically, either handing them to your tax preparer in person or sending them through the mail. However, if you must transfer them electronically, be sure to do it as securely as possible:
Encrypt your files before sending them via email. Encryption protects the content from being read by entities other than the intended recipients. Encryption features are available on most major email platforms.
Use a secure portal to upload documents. Portals encrypt documents during transfer and storage and limit access to only approved individuals.
TIP: BACK IT UP
Protect your valuable documents by making an electronic copy and storing it safely. If you have a copy of your data and your device falls victim to ransomware, you will be able to restore the data from a backup.
Use the 3-2-1 rule as a guide to backing up your data:
- Keep at least three (3) copies of your data:
- Store two (2) backup copies on different storage media,
- With one (1) of them located offsite.
The National Cyber Security Alliance (NCSA) builds strong public/private partnerships to create and implement broad-reaching education and awareness efforts to empower users at home, work and school with the information they need to keep themselves, their organizations, their systems and their sensitive information safe and secure online and encourage a culture of cybersecurity.
Meadows Bank is a champion of data privacy and security. We are aware of the threats and scams designed to steal information and/or money from you and are thus committed to providing information and tools to help you stay safe online. To view this tip sheet in a pdf graphic form, please visit https://staysafeonline.org/resource/tax-time-2021/. If you discover bank account fraud, please inform us right away by email firstname.lastname@example.org or phone 702.471.BANK (2265).