HMRC takes down record number of malicious websites in scam crackdown

Deploying new technology has also led to a dramatic reduction in the number of fake texts, according to figures

HMRC has requested the takedown of more than 20,000 malicious websites in the past 12 months, but has warned organisations and the public to remain vigilant.

The crackdown on scams and malicious sites has seen a 29% increase in the number of takedown requests made last year - 20,750 against 16,069 between June 2016 and 2017 - according to figures released by the department.

HMRC has also claimed to have saved the public more than 2.4 million by tackling a method by which fraudsters lure the public into calling premium phone lines listed on fake website resembling the department's - pinning its overall increase in output on a handful of new technologies it has deployed.

"HMRC is cracking down harder than ever, as these latest figures show," said Mel Stride MP, the financial secretary to the treasury.

"But we need the public's help as well. By doing the right thing and reporting suspicious messages you will not only protect yourself, you will protect other potential victims."

The department has trialled a new technology that stops phishing texts from being delivered, identifies these scams with 'tags' suggesting they are from HMRC. It has recorded a 90% reduction in reports of fake HMRC texts.

Meanwhile, the department implemented an email verification system, dubbed DMARC, that gives its emails an added layer of credibility against a wave of fake emails designed to resemble HMRC, often aimed at tricking recipients into handing personal information.

Since DMARC was introduced in 2016, HMRC said, there has been approximately half a billion phishing emails blocked, with the most common type of scam email or text message informing the recipient they are due a 'tax refund'. The department said it does not offer tax refunds via such means.

Meanwhile, HMRC has released a catalogue of known phishing attacks to help organisations and members of the public who may be targeted to report any malicious activity they may come across.

Citing a wide range of activity, the department highlighted rebate scams, bogus phone calls and social media scams as being particularly prevalent, and recommended the public forward all potentially malicious activity found to phishing@hmrc.gsi.gov.uk.

Featured Resources

Four cyber security essentials that your board of directors wants to know

The insights to help you deliver what they need

Download now

Data: A resource much too valuable to leave unprotected

Protect your data to protect your company

Download now

Improving cyber security for remote working

13 recommendations for security from any location

Download now

Why CEOS should care about the move to SAP S/4HANA

And how they can accelerate business value

Download now

Recommended

Veritas Access Appliance with IBM Spectrum® Protect
Server & storage

Veritas Access Appliance with IBM Spectrum® Protect

27 Nov 2020
Ransomware protection with Veritas NetBackup Appliances
Security

Ransomware protection with Veritas NetBackup Appliances

27 Nov 2020
Ransomware resiliency: The risks associated with an attack and the reward of recovery planning
Security

Ransomware resiliency: The risks associated with an attack and the reward of recovery planning

27 Nov 2020
Sopra Steria cyber attack costs to hit €50 million
Security

Sopra Steria cyber attack costs to hit €50 million

26 Nov 2020

Most Popular

80% of cyber professionals say the Computer Misuse Act is working against them
Security

80% of cyber professionals say the Computer Misuse Act is working against them

20 Nov 2020
Cisco acquires container security startup Banzai Cloud
Security

Cisco acquires container security startup Banzai Cloud

18 Nov 2020
350,000 Spotify users hacked in credential stuffing attack
Security

350,000 Spotify users hacked in credential stuffing attack

24 Nov 2020