Explore the latest news and trends  

Sign up for our weekly security newsletter

Be the first to receive important updates on security


Spear Phishers Dump Tax Notices on Executives

Computer security provider McAfee reported that several telephone calls are coming to the US Tax Court regarding e-mail that purported to be from this Court. McAfee's researchers and the US government warned on May 23, 2008 that the message is supposedly from someone belonging to the practitioner bar of the Tax Court.

According to the US government, the incident is one of "Spear Phishing" in which a spoofed e-mail is sent out to a particular organization. Usually, the attacks target the top-level executives.

According to Researcher Kevin McGhee at McAfee, the e-mail has been designed to appear like the Tax Court's petition form and sounds almost convincing. The message also has a valid telephone number of the company and the name of one of the executives is mentioned as the defendant in a tax-related case opposite the Commissioner of Internal Revenue, says McGhee. ComputerWorld published McGhee's statement on May 23, 2008.

However, according to the federal agency, the Tax Court is not distributing any notice via e-mail to anybody who might be having a case running. Therefore, recipients of the e-mail showing the subject line, "US Tax Petition" or "Notice of Deficiency #" should ignore or delete the message and not click any link given in it. This is because anyone who clicks the link is taken to a counterfeit Tax Court site where he is asked to improve on his copy of the Internet Explorer browser from Microsoft. The fraud case makes a string manipulation whereby a dash is added to the real site's actual domain name. This easily convinces the unwary user who thinks the fake site is authentic and so might go for the link.

But clicking the given IE update link results in downloading and installation of malware containing a keylogger which intercepts usernames and passwords punched on the keyboard and then forwards those details to a remotely-located identity thief.

But nor such targeted phishing attacks to steal personal identities neither the attacks that feign to be legal correspondences from the US Internal Revenue or the federal courts have not been observed for the first time.

Related article: Spyware Detection Programs Track Advertisers’ Cookies

» SPAMfighter News - 04-06-2008

3 simple steps to update drivers on your Windows PCSlow PC? Optimize your Slow PC with SLOW-PCfighter!Email Cluttered with Spam? Free Spam Filter!

Dear Reader

We are happy to see you are reading our IT Security News.

We do believe, that the foundation for a good work environment starts with fast, secure and high performing computers. If you agree, then you should take a look at our Business Solutions to Spam Filter & Antivirus for even the latest version of Exchange Servers - your colleagues will appreciate it!

Go back to previous page