Stories
Slash Boxes
Comments

SoylentNews is people

posted by martyb on Thursday April 16 2015, @12:55PM   Printer-friendly
from the gone-phishin' dept.

If you filed your IRS (US Internal Revenue Service) income tax forms through someone else, and that list gets into the hands of phishers, do you think you could detect it?

A lot of people fall for this. Hard. Gizmodo reports:

A lot of people are falling for them: A study of 150,000 phishing emails by Verizon partners found that 23 percent of recipients open phishing messages, and 11 percent open attachments. Is that not crazy? One in 10 people opens an attachment when they have no idea what they’re opening.

And it happens fast: It takes an average of 82 seconds from the time a phishing campaign is launched, until the first sucker bites. And this isn’t just phishing in people’s Gmail accounts. It’s happening on sensitive business and government accounts where the targets should theoretically know better.

Another article in Wired is reporting:

Typically, it takes months if not years to uncover a breach. In 2012, for example, FireEye reported that the average cyber-espionage attack continued unabated for 458 days before the victim discovered the hack.

[More after the break.]

I have received numerous phishing emails. So far, I have recognized them because I knew the people I am dealing with and when something outlandish comes up, I call 'em. However, these days, who knows anybody at these big, monolithic, and automated tax-collection centers, and who wants to take the risk that an ignored IRS email is indeed fake?

I have been holding out as long as I can against having anything to do with the government on the internet. I flat out do not trust the internet when it comes to email. Any of us can tell if it's some casual friend chitchat, but when mail arrives looking like it's from your bank and money is involved, it gets noticed. With the the advent of things like Electronic Funds Transfer, things can happen behind our back, and we ignore the email at our peril....

Many of us here know just how easy it is to make an extremely legitimate looking business email. It would really bother me to receive demands from compliance from some entity purporting to represent the IRS via email, with no way for me to know for sure it's bogus without taking the bait.

How many of you filed your IRS returns electronically? How do you protect yourself from phishing attacks?

 
This discussion has been archived. No new comments can be posted.
Display Options Threshold/Breakthrough Mark All as Read Mark All as Unread
The Fine Print: The following comments are owned by whoever posted them. We are not responsible for them in any way.
  • (Score: 2) by wonkey_monkey on Thursday April 16 2015, @01:04PM

    by wonkey_monkey (279) on Thursday April 16 2015, @01:04PM (#171559) Homepage

    [More after the break.]

    There wouldn't have been a break if you hadn't written "[More after the break.]"

    --
    systemd is Roko's Basilisk
    Starting Score:    1  point
    Karma-Bonus Modifier   +1  

    Total Score:   2  
  • (Score: 0) by Anonymous Coward on Thursday April 16 2015, @01:48PM

    by Anonymous Coward on Thursday April 16 2015, @01:48PM (#171583)

    Agreed, if you have to do it then just do this:

    More...

    We're not stupid. "Click here" "Click Image for larger image" "Link to site"
    We like the old slashcode but not the old AOL internet ways.

  • (Score: 1) by Urlax on Friday April 17 2015, @06:21PM

    by Urlax (3027) on Friday April 17 2015, @06:21PM (#172135)

    coming from my rss reader, the summary was indeed in 2 parts. the first part was in the feed, both parts in the summary. nice system if you ask me.