Email Scams and Laptop Warning

December 21, 2017 by Phonzie Moua
Audit & Accounting, Copeland Buhl, Information Systems, Tax Services

W-2 phishing season is just a few weeks away. For the past several tax seasons, cyber criminals have used sophisticated social engineering tactics to dupe hundreds of payroll and HR departments into providing W-2 data on their employees. This results in the filing of fraudulent tax returns, other identity theft cases and class-action lawsuits against the company.

These attacks are incredibly disruptive to employees, extremely expensive for employers and are completely avoidable with awareness training. The typical W-2 phishing email is spoofed to look like it is from a high-level executive. It asks the employee to provide W-2 or other tax-related information either by replying to the phishing email, sending the information to another email address, or uploading it to a server owned by the bad guys.

In many instances, the request for the information appears to be urgent which forces the employee to act quickly. These spoofed messages can be very convincing. The emails have the same or similar email address and often contain the actual signature block of the executive that makes the employee believe that the email is authentic. Carefully check what you see and click on. Do your due diligence.


‘Tis the season is around the corner and the Grinch is always on the prowl. Please don’t leave your laptops in the car in plain sight. If you must leave your laptop in the car, please try to utilize your trunk. I know you may ask, “What if I don’t have a trunk?” Well, secure it out of plain sight away from preying eyes.

Have a wonderful holiday season and be safe.