cyber criminal

BEWARE: Cyber Criminals Attack Target Self-assessment Taxpayers

Millions are being bombarded with fake HMRC phishing emails

With just a few weeks to go until the deadline for self-assessment tax return for the 2014/15 financial year, millions of taxpayers are reporting the increase of fake phishing emails from cyber criminals purporting to be HM Revenue and Customs (HMRC).

As many as 40pc of the estimated 10 million Britons filling for self-assessment have received fake emails pretending to be tax authority – according to a digital authentication vendor MIRACL.

Brian Spector, CEO at MIRACL, said, “The volume of data involved in filling out a tax return online makes [fraud] a far greater risk. With all the financial data involved in a tax return, a criminal could potentially take out a mortgage in your name. Data theft and identity fraud is a multi-billion dollar business on the dark web, and so consumers must be vigilant.”

The findings come just two weeks after the HMRC issued a warning for taxpayers to be wary of scam emails being sent by criminals who are hoping to get their hands on people’s personal data.

How to spot a fake HMRC email

One of the first things to check is the sender’s email address. Fraudsters will often use email accounts with HMRC or revenue names in them e.g. refunds@hmrc.org.uk. However, others can often spoof the “from” address to make it seem legitimate e.g. @hmrc.gov.uk.

Here are some other points to bear in mind:  

  • HMRC will never send an email to ask for your personal information or password, or include a link or attachment.”
  • HMRC emails will never contain phrases such as ‘You only have three days to reply’ or ‘ Urgent action required’.
  • Fraudulent emails will often include links to pages that look like the HMRC but are not.
  • An email from HMRC will not ask for any personal or financial information, including a user’s address, nor will it include any email attachments, links, or repayment offers.

Keep in mind the methods that fraudsters use to obtain information are constantly changing, so people need to be alert at all times when reading through their emails.