{"id":15038,"date":"2019-04-08T12:01:57","date_gmt":"2019-04-08T20:01:57","guid":{"rendered":"http:\/\/www.palada.net\/index.php\/2019\/04\/08\/news-8787\/"},"modified":"2019-04-08T12:01:57","modified_gmt":"2019-04-08T20:01:57","slug":"news-8787","status":"publish","type":"post","link":"http:\/\/www.palada.net\/index.php\/2019\/04\/08\/news-8787\/","title":{"rendered":"Steer clear of tax scams"},"content":{"rendered":"<p><strong>Credit to Author: Eric Avena| Date: Fri, 05 Apr 2019 16:00:13 +0000<\/strong><\/p>\n<p>In the month of February, we saw an average of 300,000 phishing attempts across Microsoft\u2019s browsing platforms daily. Our security experts expect these attempted scams to become increasingly more prevalent through the April 15 Tax Day, especially in the two weeks leading up to it, when about <a href=\"https:\/\/turbotax.intuit.com\/tax-tools\/tax-tips\/Tax-Extensions\/What--Me-Worry--Last-Minute-Taxes\/INF19451.html\">25 percent<\/a> of people file their taxes. The phishing campaigns we\u2019ve seen aren\u2019t just in the U.S., though; we\u2019ve also recently uncovered similar tactics in Canada, Brazil and India. It\u2019s important for users across the globe to follow best practices and stay vigilant.<\/p>\n<p>With less than a month until the filing deadline in the U.S., we are urging the public to take the following simple steps to avoid tax scams \u2013 especially during the last-minute rush to file taxes.<\/p>\n<ul>\n<li><strong>Watch for suspicious emails.<\/strong> Be suspicious of all links and attachments, especially when the email seems \u201coff\u201d or unexpected \u2013 like an unexpected email from your credit card company, or financial institution. Phish-y emails often include spelling and grammatical errors, or will ask you to send personal information. In these cases, you can apply additional scrutiny on the sender, the content, and any links and attachments. If you know the sender, for example, you can double-check with them before opening or downloading the file.<\/li>\n<\/ul>\n<ul>\n<li><strong>Carefully inspect URLs.<\/strong> Hover over links to verify that the URL goes to the website where it\u2019s supposed to direct you. Is it pointing to the site you expected? URL shorteners provide a lot of convenience, but can make this inspection difficult. If you\u2019re unsure, rather than clicking a link, use search engines like <a href=\"https:\/\/www.bing.com\/\">Bing<\/a> to get to the tax-related website you\u2019re looking for and log in from there.<\/li>\n<\/ul>\n<table style=\"width: 40%; float: right; margin-left: 20px;\">\n<tbody>\n<tr>\n<td style=\"padding: 20px; background-color: #f5f5f5;\"><em>We recently discovered a phishing campaign targeting Canadian Tax payers where scammers were pretending to help Canadian taxpayers get their refunds, but really aimed to steal banking credentials. We\u2019ve also seen old phishing documents resurface \u2013 these claim to be from the Canada Revenue Agency (CRA), inform victims that they have a refund via e-transfer from the CRA, and ask them to divulge their bank details where the funds will be \u201cdeposited\u201d. We\u2019ve also seen similar campaigns in Brazil and India.<\/em><\/td>\n<\/tr>\n<\/tbody>\n<\/table>\n<ul>\n<li><strong>Be wary of any attachments.<\/strong> If you haven\u2019t just made a purchase for tax software, don\u2019t be tricked by getting an email with an invoice from a tax preparation company. Sending fake invoices for services is one of the top methods attackers use to trick people into opening a malicious attachment that could automatically execute malware on your computer. Malicious attachments could also contain links that download and execute malicious programs. We\u2019ve seen PDFs that contain innocuous-looking links that lead to people accidentally downloading malicious software designed to steal credentials, like usernames and passwords.<\/li>\n<\/ul>\n<ul>\n<li><strong>Don\u2019t rely on passwords alone.<\/strong> Scammers take advantage of weak or stolen passwords used across multiple websites, so don\u2019t just rely on your password to keep you safe. When possible, always use multi-factor authentication like the <a href=\"https:\/\/www.microsoft.com\/account\/authenticator\">Microsoft Authenticator<\/a> app for managing your sign-ins for Microsoft accounts and others, and <a href=\"https:\/\/www.microsoft.com\/windows\/windows-hello\">Windows Hello<\/a> for easy and secure sign-in to your Windows 10 device. These solutions enable biometric authentications like your face or fingerprint to quickly and safely sign in across devices, apps and browsers without you having to remember passwords. Did you know that with a Microsoft Account, you can securely and automatically sign-in to other Microsoft cloud-based applications including Bing, MSN, Cortana, Outlook.com, Xbox Live (PC only), Microsoft Store and Office?<\/li>\n<\/ul>\n<ul>\n<li><strong>Keep software current.<\/strong> Run a modern operating system, like Windows 10 or <a href=\"https:\/\/www.microsoft.com\/windows\/s-mode\">Windows 10 in S mode<\/a>, with the latest security and feature updates, in tandem with next-generation anti-malware protection, such as Windows Defender Antivirus.<\/li>\n<\/ul>\n<p>Microsoft security solutions can proactively <a href=\"https:\/\/www.microsoft.com\/security\/blog\/2018\/10\/17\/how-office-365-learned-to-reel-in-phish\/\">inspect links and attachments<\/a>, as well as <a href=\"https:\/\/www.microsoft.com\/security\/blog\/2018\/12\/19\/tackling-phishing-with-signal-sharing-and-machine-learning\/\">block phishing documents<\/a> and other malicious downloads to help protect users, even if they accidentally click a phishing link or open a malicious attachment. We expect tax scams to be on the rise in the next several months as global tax deadlines approach so our experts will be on the lookout for new campaigns.<\/p>\n<p>Here\u2019s a couple of examples of what we\u2019ve seen just in the last few weeks: two documents named <em>irs_scanned_551712.doc<\/em> and <em>Tax(IP.PIN).doc<\/em>. You\u2019ll notice that the security tools built into Microsoft Office caught these and displayed a warning at the top. Before enabling content like these, ensure that the sender is a trusted source, and notice things like missing or misspelled words.<\/p>\n<p><img loading=\"lazy\" decoding=\"async\" class=\"alignnone size-full wp-image-89236\" src=\"https:\/\/www.microsoft.com\/security\/blog\/wp-content\/uploads\/2019\/04\/tax-2a.png\" alt=\"tax-related phishing document with malicious macro code\" width=\"986\" height=\"860\" srcset=\"https:\/\/www.microsoft.com\/security\/blog\/wp-content\/uploads\/2019\/04\/tax-2a.png 986w, https:\/\/www.microsoft.com\/security\/blog\/wp-content\/uploads\/2019\/04\/tax-2a-300x262.png 300w, https:\/\/www.microsoft.com\/security\/blog\/wp-content\/uploads\/2019\/04\/tax-2a-768x670.png 768w\" sizes=\"auto, (max-width: 986px) 100vw, 986px\" \/><\/p>\n<p><img loading=\"lazy\" decoding=\"async\" class=\"alignnone size-full wp-image-89237\" src=\"https:\/\/www.microsoft.com\/security\/blog\/wp-content\/uploads\/2019\/04\/tax-1a.png\" alt=\"tax-related phishing document with malicious macro code\" width=\"1024\" height=\"729\" srcset=\"https:\/\/www.microsoft.com\/security\/blog\/wp-content\/uploads\/2019\/04\/tax-1a.png 1024w, https:\/\/www.microsoft.com\/security\/blog\/wp-content\/uploads\/2019\/04\/tax-1a-300x214.png 300w, https:\/\/www.microsoft.com\/security\/blog\/wp-content\/uploads\/2019\/04\/tax-1a-768x547.png 768w\" sizes=\"auto, (max-width: 1024px) 100vw, 1024px\" \/><\/p>\n<p>Be on the lookout for scams like we\u2019ve described here. There will undoubtedly be more schemes that crop up. Stay vigilant! Learn how to <a href=\"https:\/\/support.microsoft.com\/en-us\/help\/4033787\/windows-protect-yourself-from-phishing\">report phishing scam<\/a> websites through Microsoft Edge or Internet Explorer and suspicious email messages through Outlook.com, Outlook 2016, or Office 365.<\/p>\n<p>Keep these tips and tricks handy, and share with your networks so we can increase awareness of and stop the spread of Tax Day scams! For more information about Microsoft Security, please visit <a href=\"https:\/\/www.microsoft.com\/security\">microsoft.com\/security<\/a>.<\/p>\n<p>The post <a rel=\"nofollow\" href=\"https:\/\/www.microsoft.com\/security\/blog\/2019\/04\/05\/steer-clear-of-tax-scams\/\">Steer clear of tax scams<\/a> appeared first on <a rel=\"nofollow\" href=\"https:\/\/www.microsoft.com\/security\/blog\/\">Microsoft Security<a>.<\/p>\n<p><a href=\"https:\/\/www.microsoft.com\/security\/blog\/2019\/04\/05\/steer-clear-of-tax-scams\/\" target=\"bwo\" >https:\/\/blogs.technet.microsoft.com\/mmpc\/feed\/<\/a><\/p>\n","protected":false},"excerpt":{"rendered":"<p><strong>Credit to Author: Eric Avena| Date: Fri, 05 Apr 2019 16:00:13 +0000<\/strong><\/p>\n<p>In the month of February, we saw an average of 300,000 phishing attempts across Microsoft\u2019s browsing platforms daily. Our security experts expect these attempted scams to become increasingly more prevalent through the April 15 tax day.<\/p>\n<p>The post <a rel=\"nofollow\" href=\"https:\/\/www.microsoft.com\/security\/blog\/2019\/04\/05\/steer-clear-of-tax-scams\/\">Steer clear of tax scams<\/a> appeared first on <a rel=\"nofollow\" href=\"https:\/\/www.microsoft.com\/security\/blog\/\">Microsoft Security<a>.<\/p>\n","protected":false},"author":4,"featured_media":0,"comment_status":"open","ping_status":"closed","sticky":false,"template":"","format":"standard","meta":{"colormag_page_container_layout":"default_layout","colormag_page_sidebar_layout":"default_layout","footnotes":""},"categories":[10759,10378],"tags":[4500,18741,21482,21481,3924],"class_list":["post-15038","post","type-post","status-publish","format-standard","hentry","category-microsoft","category-security","tag-cybersecurity","tag-email-security","tag-endpoint-security","tag-microsoft-365","tag-phishing"],"_links":{"self":[{"href":"http:\/\/www.palada.net\/index.php\/wp-json\/wp\/v2\/posts\/15038","targetHints":{"allow":["GET"]}}],"collection":[{"href":"http:\/\/www.palada.net\/index.php\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"http:\/\/www.palada.net\/index.php\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"http:\/\/www.palada.net\/index.php\/wp-json\/wp\/v2\/users\/4"}],"replies":[{"embeddable":true,"href":"http:\/\/www.palada.net\/index.php\/wp-json\/wp\/v2\/comments?post=15038"}],"version-history":[{"count":0,"href":"http:\/\/www.palada.net\/index.php\/wp-json\/wp\/v2\/posts\/15038\/revisions"}],"wp:attachment":[{"href":"http:\/\/www.palada.net\/index.php\/wp-json\/wp\/v2\/media?parent=15038"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"http:\/\/www.palada.net\/index.php\/wp-json\/wp\/v2\/categories?post=15038"},{"taxonomy":"post_tag","embeddable":true,"href":"http:\/\/www.palada.net\/index.php\/wp-json\/wp\/v2\/tags?post=15038"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}