Out of Season IRS Phishing Campaigns – Akamai Security Intelligence and Threat Research Blog
Over the past two months, Akamai’s threat research team has been closely monitoring a phishing campaign that impersonates the official Internal Revenue Service (IRS) website, and is requesting sensitive information, email addresses, and passwords….
Javvad Malik, Security Awareness Advocate, KnowBe4:
“Phishing attacks are becoming trickier to spot. In this case, the attackers spoofed legitimate domains and made the sites look nearly identical, so this type of attack would be quite difficult for the untrained eye to identify. It’s especially important to ensure that you hover over a link to make sure that it’s legitimate before clicking on it. When it comes to the IRS in particular, they will not email or call you about anything. It will only come to you via official paper postal mail.”