Identity thieves obtain 100,000 electronic filing PINs from IRS system

The Internal Revenue Service was the target of an attack that used stolen social security numbers and other taxpayer data to obtain PINs that can be used to file tax returns electronically.

The attack occurred in January and targeted an IRS Web application that taxpayers use to obtain their so-called Electronic Filing (E-file) PINs. The app requires taxpayer information such as name, Social Security number, date of birth and full address.

Attackers attempted to obtain E-file PINs corresponding to 464,000 unique SSNs using an automated bot, and did so successfully for 101,000 SSNs before the IRS blocked it.

http://www.pcworld.com/article/3031...0-electronic-filing-pins-from-irs-system.html

 

Wow..whoever they are, they have big nerves to mess around with the IRS. That is so terrible, and I am sure if they are caught, the consequences will be jail time for them!

 

This type of hacking is quite disturbing social security numbers are the
one main things that follow you from school to death.



Great article sefie,It's my only wish that someone in the UK could fill
mine in for me and of course pay my tax at the same time.

 

There are precautions to take if you are affected. First there are sites to help with the situation of being a victim of stolen data.
Here are helpful sites to go to for help and information.

* Fed. Trade Commission's page for consumers who have been victimized of info theft.
http://www.consumer.ftc.gov/features/feature-0014-identity-theft .

* Identity Theft Resource Center and site filled with lots of information and help.
http://www.idtheftcenter.org/id-theft/victim-resources.html .

* Privacy Rights Clearinghouse for consumers packed with information and help.
https://www.privacyrights.org/content/victim-data-breach-what-should-you-do .

* Site from the Dept. of Justice. Steps to take when you're a victim of security breaches.
http://www.ncdoj.gov/Help-for-Victims/ID-Theft-Victims/Security-Breach.aspx .

* Information from cardratings.com.
http://www.cardratings.com/most-data-breach-victims-take-no-action.html .

* What to do when victim of IRS data breach.
http://time.com/money/3898105/irs-data-breach-what-to-do/ .

Don't worry too much. I know it's a lot of reading, but it's a lot of help for you. Take care.

 

Not to be political, but these kinds of attacks only happen when someone higher up than the IRS enables them. Normally there are government computer security audits that prevent things like this from happening, and as such they can only happen if there is something extremely overlooked...or...someone intentionally laid the groundwork necessary for this to happen. There are too many attacks that are being done in this way for it to be coincidental or just isolated incidents. They knew which computers to go after, and those networks were not even allowed to be on the internet before. This smells rotten, like a certain country out there paid for this to happen. Or worse. It's going to get to the point where everyone who is a US citizen will need to use disposable security numbers like they use disposable credit and debit card numbers from their bank to protect their information and status in their life. This is what happens when you let the worst of the world just come on in and connect sensitive networks to theirs. But again, I think this was deliberately done...

 

That is really interesting, @IBMPC8088 Maybe this is a plot for something much bigger. And yes, everything you said makes sense, because those people are supposed to stop from happening and it'd probably not be possible to do such a thing without inside help. This is very rotten indeed.

 

@Krisstina Isobe Thanks a lot for sharing that info with us, you never know when you might need it.

@something back It is indeed! I've heard so many stories involving this kind of crimes and the consequences are just disastrous for the victim most of the time D:

@IcyBC Yeah, there are some really daring cyber criminals out there D: Probably very cocky people.