Tax Pros: Watch Out for Evolving Phishing Threats

The IRS, along with its Security Summit partners, has issued a timely warning for tax professionals: phishing attacks and other cyber threats are evolving and increasingly targeting us. This alert marks week two of the Protect Your Clients; Protect Yourself summer series, which offers ongoing guidance on cybersecurity. 

🔍 What’s Changing

Cybercriminals continue to evolve their tactics, adding new layers of deception:

• Phishing/Smishing: Generic emails or texts containing malicious links or attachments.

• Spear-phishing: Highly tailored attacks targeting individual practitioners.

• Clone-phishing: Duplicate, previously-trusted emails now carrying malware.

• Whaling: Attacks targeting leaders or high-value personnel.

• New-client scams: Fake client inquiries designed to trick tax pros into clicking malicious links. IRS

  
  

🚩 Red Flags to Watch For

Be alert for:

• Unexpected or duplicate messages with new attachments or links.

• Urgent requests—e.g., “Passwords expired—update now!”

• Slightly altered sender addresses (e.g., “irs‑support.com” vs “irs.gov”).

• Messages urging immediate action to fix alleged issues. 

  
  

🛠️ The Security Six: Key Safeguards

The IRS emphasizes six essential protections for your practice:

1. Anti-virus software with automatic updates

2. Firewalls to filter traffic

3. Multi-factor authentication (MFA) for cloud services

4. Regular data backups

5. Drive encryption to protect stored data

6. VPNs for secure remote access 

   
   

👥 What You Should Do Now

• Share this warning and your own best practices with your team.

• Educate staff on how to identify phishing—use mock tests if helpful.

• Install or confirm MFA on all cloud and email accounts.

• Securely back up sensitive client data.

• If you encounter a breach or suspicious attack, immediately contact your local IRS Stakeholder Liaison and notify your state tax agency via the Federation of Tax Administrators.

  
  

🔜 What’s Next

Upcoming Wednesday alerts in this continuing series will cover:

• Defensive network architecture

• Secure remote access

• Incident response tactics

• Written Information Security P

  lans (WISPs)

  
  

These updates will align with the Nationwide Tax Forums this summer—don’t miss regional sessions on cybersecurity.

Final Word

Tax professionals remain key targets for identity thieves. By adopting best practices, training your team, and staying alert to evolving threats, you're protecting your clients—and your firm.

Disclaimer: This article is for informational and educational purposes only and does not constitute legal tax advice. Advanced Tax Solutions is not liable or responsible for any damages resulting from or related to your use of this information. It is your responsibility to refer to official IRS documentation for information regarding any tax laws or tax information shown here.