Idaho State Tax Commission

Idaho State Tax Commission

Quick Security Tips for Tax Professionals

tax.idaho.gov/donttakethebait

Protect Yourself!

  • Don't share email passwords.
  • Don't open attachments from suspicious sources.
  • Don't click links from suspicious sources.
  • Do be cautious even with sources that look legitimate.
  • Do forward suspicious emails to phishing@irs.gov.
  • Do alert the IRS if you may have sent private data to an unauthorized party: dataloss@irs.gov.
  • Do alert the Tax Commission if you may have sent private data to an unauthorized party: fraud@tax.idaho.gov.
IRS and ISTC security logos

Check this page regularly, sign up for our Tax Pros newsletter, or follow us on Twitter.   Return to the main Tax Pros page »

Don't take the bait!

Fast response is critical
A summary: who to contact Read more on the IRS website [09-11-2018]
Criminals' fingerprints hard to spot
Warning signs a tax pro's had data stolen Read more on the IRS website [09-04-2018]
It's also the law
Client security is your legal responsibility Read more on the IRS website [08-21-2018]
Your employees help keep you safeguarded
"...only as secure as their least informed employee." Read more on the IRS website [08-21-2018]
Keep tabs on your EFIN, PTIN, and CAFs
Monitor usage to see if criminals are impersonating you Read more on the IRS website [08-14-2018]
Tax professionals share horror stories
Hard-won security lessons from fellow tax pros Read more on the IRS website [08-07-2018]
The most common way to steal customer data
Spear phishing remains the most common approach Read more on the IRS website [07-31-2018]
Be strong
Strong passwords and encryption for sensitive data Read more on the IRS website [07-24-2018]
The "Security Six"
Six areas of security that help protect both you and your clients Read more on the IRS website [07-17-2018]
IRS, Security Summit campaign launches
"The IRS and the Security Summit partners urge all tax professionals to take stronger security steps to protect themselves and their clients" Read more on the IRS website [07-10-2018]
Filing season starts with theft
More complex scam takes advantage of gaps in practitioners' security. Always report data thefts. Read more on the IRS website [02-02-2018]
Insurance form scam
Criminals spoof tax pros, contact clients, and send them to fake insurance sign-up. Read more on the IRS website [10-12-2017]
IRS warns: New e-Services scam
Tries to trick tax pros into "signing" a new e-Services user agreement. Read more on the IRS website [10-11-2017]
Breach or theft? Do this fast
A quick response by tax practitioners can help avert problems. What to do. Read more on the IRS website [09-12-2017]
The security 90/10 rule
Great checklist for you, your employees, and even to share with your clients. Read more on the IRS website [09-05-2017]
Free from the IRS and NIST
Handbooks walk you through real-life checklists so you and your clients can be more secure. Read more on the IRS website [08-29-2017]
Criminals trying for your EFIN
"For tax professionals working with the IRS, protecting these account numbers is critical." Read more on the IRS website [08-22-2017]
Payroll, financial, and HR employees targeted
National and international organized crime behind many of these scams. Read more on the IRS website [08-15-2017]
W-2 Email Scam   (04-19-2017)
Check for weak security on wireless devices
Remote takeovers of practitioners' business network can be devastating. Read more on the IRS website [08-08-2017]
IRS recommends: Don't pay the ransom
Ransomware attacks on increase; tax practitioners have been targeted. Read more on the IRS website [08-01-2017]
Increase in identity theft involving business-related tax returns
Three to five data breaches reported each week. Read more on the IRS website [07-25-2017]
Account takeover tactics detailed
Criminals do their homework, finding personal clues about you online so they can take over your account. Read more on the IRS website [07-18-2017]
Emails appearing to be from trusted source are from criminals
91% of cyberattacks and data breaches begin with a "spear phishing email." Read more on the IRS website [07-12-2017]
Spoofed requests look like they're from organization executive
A dangerous scam targets HR and payroll departments requesting employee information and/or W-2s. Read more on the IRS website [03-28-2017]
W-2 Email Scam   (04-19-2017)

Protect Your Client, Protect Yourself

The IRS has provided over 30 security awareness tax tips all linked from one page. Read them to protect your client and protect yourself.

Page last updated September 18, 2018. Last full review of page: July 26, 2017.

This information is for general guidance only. Tax laws are complex and change regularly. We can't cover every circumstance in our guides. This guidance may not apply to your situation. Please contact us with any questions. We work to provide current and accurate information. But some information could have technical inaccuracies or typographical errors. If there's a conflict between current tax law and this information, current tax law will govern.