Browse archive

Latest news

(IN)SECURE Magazine issue 38 released

65+ websites compromised to deliver malvertising

Customized spam uses cell phone users’ data against them

Facebook once again accessible via Tor

Oracle releases critical security updates for Java

Employees biggest IT threat to businesses

Google asks secret court permission to publish FISA numbers

Failed backups endanger revenue and productivity

How to detect hidden administrator apps on Android

Key obstacles to effective IT security strategies

CyanogenMod founder aims to thwart data-grabbing apps

Microsoft releases Enhanced Mitigation Experience Toolkit 4.0

Hacking charge stations for electric cars

Tax-themed malicious spam bombard inboxes

Posted on 15 February 2013.

As the end of the U.S. tax season slowly approaches, cyber crooks are stepping up their game and are sending bogus out tax-themed emails.

Webroot warns about an alert supposedly sent by the U.S. Internal Revenue Service, claiming that the recipient's income tax refund appeal has been turned down:

Those users who follow the offered link will be redirected to a compromised website hosting the Blackhole exploit kit and will be saddled with various malware.

Intuit, the company that develops popular tax preparation software and offers related services to businesses, is warning its customers about bogus "TurboTax State Return Rejected" emails:

The attached .zip file that the recipients are urged to download and peruse contains malware.

If any of these or similar emails do manage to bypass anti-spam filters, users are urged to remember that following links and opening files contained in unsolicited emails is always a bad idea.