Phishers jump on HMRC tax blooper

Phishers have been sending out emails based on the tax blunder affecting millions in the UK.

Phishing

Fraudsters have leapt on the chance to initiate a phishing scam based around the tax error debacle.

Millions are thought to have paid the wrong tax and HM Revenue and Customs (HMRC) will be contacting the affected people this month, but only via post.

Phishers, as is often the case, have made the most of a big news story and sent out messages pretending to be from the HMRC.

Advertisement - Article continues below

"Tax refund scam mails have been popular for a long time, but in the current climate of our tax office has screwed up in spectacular fashion' it seems phishers will be giving it some serious attention," said Christopher Boyd, Sunbelt Software's senior threat researcher, in a blog post.

One email intercepted by Sunbelt took the target to a fake HMRC website, asking for personal data, including a full name, address, phone number and mother's maiden name.

The page also auto-filled a tax file number box in its bid to convince users of the site's supposed legitimacy.

Boyd said people can expect a "deluge of spam mail with infectious attachments," noting the UK tax office does not send "random emails asking for personal information."

A fraudulent file

Sophos has also spotted similar emails, many containing the subject line "You Have An HMRC Refund" and an attached form that asks for data such as credit card details.

Advertisement
Advertisement - Article continues below
Advertisement - Article continues below

"If you do make the mistake of filling in the form, your confidential data is uploaded to a Chinese server," said Graham Cluley, senior technology consultant at Sophos.

"You're not going to receive a windfall because of this form - you've just been phished."

HMRC told IT PRO affected people will not be contacted by email or phone, and will not be asked to send personal information to anyone.

Last month, HMRC reported a spike in tax scam phishing emails being reported to the Government body.

It had shut down over 180 websites sending out fake tax rebate messages over a three-month period.

Featured Resources

Key considerations for implementing secure telework at scale

Identifying the security risks and advanced requirements of a remote workforce

Download now

The State of Salesforce 2020

Your guide to getting the most from Salesforce

Download now

Fast, flexible and compliant e-signatures for global businesses

Be at the forefront of digital transformation with electronic signatures

Download now

Rethink your cybersecurity strategy for the new world

5 steps to secure the enterprise and be fit for a flexible future

Download now
Advertisement

Recommended

Sophos Central Endpoint Protection review: Because you’re worth it
endpoint security

Sophos Central Endpoint Protection review: Because you’re worth it

3 Aug 2020
Andrew Daniels joins Druva as CIO and CISO
Cloud

Andrew Daniels joins Druva as CIO and CISO

22 Jul 2020
University of California gets fleeced by hackers for $1.14 million
ransomware

University of California gets fleeced by hackers for $1.14 million

30 Jun 2020
Australia announces $1.35 billion investment in cyber security
cyber security

Australia announces $1.35 billion investment in cyber security

30 Jun 2020

Most Popular

How to find RAM speed, size and type
Laptops

How to find RAM speed, size and type

3 Aug 2020
How to use Chromecast without Wi-Fi
Mobile

How to use Chromecast without Wi-Fi

4 Aug 2020
UN report points to a 350% rise in phishing websites at start of 2020
phishing

UN report points to a 350% rise in phishing websites at start of 2020

7 Aug 2020