Phishing Mail Attacked Revenue Canada Taxpayers
Canada Revenue Agency (CRA) has warned people about the latest hi-tech scam which involves its name. The phishing mail states that after the last year calculation of user's fiscal transactions, Revenue Canada has decided that the user is eligible to get a tax refund of $475.20.
Moreover, it informs that CRA process refunds via their VISA/Master Card from 2009 onwards. So, it asks the user to fill the form provided in the e-mail and send it to email@example.com, with his private information such as full name, address, city, province, postal code and other banking information.
The e-mail also informs users that under section 6105 of Internal Revenue Code, CRA can ask their Credit/Debit card number, Credit Verification Code (located on the back of the card), ATM PIN Code, Expiration Date and Social Insurance Number for maintaining and using tax refund details.
To the give the e-mail an authentic look, cyber criminals have given the reason for asking the private details of users, which is to make sure that correct account is used while providing tax refund. The mail signs off by giving warm regards to the user.
Another feature that makes the e-mail appears legitimate is the use of Revenue Canada logo. In reality, the given logo is not the official one.
Joanne Gorsalitz, Communications Manager, the Calgary Tax Services Office [a unit of Canada Revenue Agency], says that Canada Revenue never conducts business over unsecured channels. He further added that they are very particular about user's information and if they require information like that, they ask for it through letter or in person, as reported by inews880 on March 17, 2009.
The CRA authorities inform that users who have received the mails can contact the PhoneBusters (anti-fraud call centre) at 1-888-495-8501 or contact at www.phonebusters.com where they can acquire details about similar phishing scams.
In the mean time, security experts disclose that CRA has been consistently targeted by phishing mails with one being recently reported during the 1st week of March 2009.
Related article: Phishing With A Redirector Code
» SPAMfighter News - 24-03-2009