“The Internal Revenue Service (IRS) disclosed today that identity thieves abused a feature on the agency’s Web site to pull sensitive data on more than 330,000 potential victims as part of a scheme to file fraudulent tax refund requests. The new figure is far larger than the number of Americans the IRS said were potentially impacted when it first acknowledged the vulnerability in May 2015 — two months after KrebsOnSecurity first raised alarms about the weakness. The IRS’s experience should tell consumers something about the effectiveness of the technology that the IRS, banks and countless other organizations use to screen requests for sensitive information.”
http://krebsonsecurity.com/2015/08/irs-330k-taxpayers-hit-by-get-transcript-scam/
Related posts:
Tweet referencing Pink’s song ‘Timebomb’ gets teen arrested at concert
Parking Agent Hogs Handicapped Spot, Gets Sacked
Supreme Court Upholds Vehicle Search Based On Spurious 911 Call
Israel: Syria Missile Defense Acquisition a ‘Red Line’ for Military Action
“You? A Tax Evader?”
North Korea: Is War the Inevitable Outcome?
WaPo and Bezos: The Hope and the Reality
The Last Time This Indicator Flashed Red Was in 1987
State Department self-censors criticism of Eritrean diaspora tax in Human Rights Report
Highway Robbery Gets Trump Seal of Approval
Hillary Clinton: Stop helping terrorists, Silicon Valley – weaken encryption
No One Saw This Coming…
Pre-Internet Laws Are Jeopardizing Today's Electronic Privacy
USAF General: Nobody's Ready for the Killer Robot
130 Mexican Political Candidates Assassinated in 10 Months