IRS Warns Consumers Of "California Wildfire" Phishing Scam

The IRS is warning consumers of a new email scam going around posing as the IRS and soliciting donations for the California wildfire victims.

From the IRS:

In an effort to appear legitimate, the bogus e-mails include text from an actual speech about the wildfires by a member of the California Assembly.

The scam e-mail urges recipients to click on a link, which then opens what appears to be the IRS Web site but which is, in fact, a fake. An item on the phony Web site urges donations and includes a link that opens a donation form which requests the recipient’s personal and financial information.

The IRS also warns that clicking the link downloads malware. “The malware will steal passwords and other account information it finds on the victim’s computer system and send them to the scamster.”

The IRS asks you to forward this email and any other IRS-related phishing scams you get to phishing@irs.gov.

IRS Warns of E-mail Scam Soliciting Donations to California Wildfire Victims
[IRS]
(Photo:Richard DS)

Comments

Edit Your Comment

  1. azntg says:

    The IRS among all agencies soliciting for a donation? Geez, who thought of that one? It’s brilliant!

    Forget corporations, the government seems to be somewhat easier targets for phishing, especially since we (have to) “trust” in them and it’s next to impossible to verify anyway (if you can get through the maze of phone numbers)

  2. BigNutty says:

    The IRS asking for donations is really ridiculous. I live near the fire zones and their has been tons of publicity about scams that are appearing everywhere in my local area but I guess in other parts of the country, people are not as informed about the scams.

    Before you help a charity or are asked for a donation, please investigate first.

  3. emona says:

    IRS requesting donations? I’d be too busy laughing to click anything.

  4. XTC46 says:

    @azntg: actually, it’s really easy to verify. Look at the address bar of the web page you are at. If it is an irs page, the domain will be irs.gov not IRS.IMgonnascrewyou.com. Corporations keep their domains easy to remember, just make sure the page you are on is in their domain, if it is, then you have a pretty safe bet it isnt a scam.

  5. Rusted says:

    I get everything in text anyway. Love that Mozilla Thunderbird. They just can’t hide behind the HTML.