Identity thieves used thousands of stolen SSNs to generate IRS e-filing pins

best tax software united states american taxes 1040 social security number ssn header
Attackers using malware and stolen personal information managed to generate 101,000 e-filing PIN numbers, according to the IRS. Affected taxpayers will be notified by mail, and their accounts will be monitored.

The attack, which happened last month, was carried out by attackers who already had access to the Social Security Numbers (SSNs) of 464,000 people, according to the IRS. An automated system, detected by the IRS, managed to generate 101,000 e-filing PIN numbers before the scheme was shut down.

The attack was revealed to the public yesterday via a statement from the IRS, which briefly outlined what happened.

“Using personal data stolen elsewhere outside the IRS, identity thieves used malware in an attempt to generate E-file PINs for stolen social security numbers,” said the statement. “An E-file pin is used in some instances to electronically file a tax return.”

The IRS was quick to state that “no personal taxpayer data was compromised or disclosed by IRS systems,” and that the attackers had access to the SSNs prior to the attack. In essence, having access to the SSNs is what made the attack effective.

There’s a massive amount of leaked personal information available in online black markets, including databases of leaked SSNs. Would-be fraudsters are always looking for new ways to monetize this purloined data. And this is an example of turning raw materials — a database of social security numbers — into something potentially more lucrative — a database of working e-file pins. Stealing even a small fraction of that many people’s tax rebates would certainly be profitable, and seemingly valid e-file pins could go a long way toward making that possible.

The incident, which happened last month, was not related to last week’s brief IRS outage.

“IRS cybersecurity experts are currently assessing the situation, and the IRS is working closely with other agencies and the Treasury Inspector General for Tax Administration,” said the statement. “The IRS also is sharing information with its Security Summit state and industry partners.”

Online security is hard, but it is essential when it comes to tax data. Remember: keep personal information like your social security number to yourself, and never share it over email, IM, or social networks.

Smart Home

People are stealing Ring doorbells (and it’s no knock-knock joke)

Ring Video Doorbell thefts in a Denver neighborhood raise questions about how much security the smart home devices actually provide. One homeowner and the police have a video of the theft. Here's what to do if your Ring device is stolen.
Gaming

Soulja Boy’s ‘new’ console appears to include stolen Nintendo games

Rapper Soulja Boy recently released his SouljaGame console, and it includes several emulated games that appear to be stolen from companies like Nintendo, SNK, and Capcom. A handheld version is also available.
Computing

Is your PC slow? Here's how to restore Windows 10 to factory settings

Computers rarely work as well after they accumulate files and misconfigure settings. Thankfully, with this guide, you'll be able to restore your PC to its original state by learning how to factory reset Windows.
Computing

With 20,000 sites swallowed up, a botnet is eating WordPress alive

A botnet of infected WordPress sites has been attacking other WordPress sites, generating up to five million malicious logins on certain WordPress backends within the last thirty days.
Computing

Windows 10 user activity logs are sent to Microsoft despite users opting out

Windows 10 Privacy settings may not be enough to stop PCs from releasing user activity data to Microsoft. Users discovered that opting out of having their data sent to Microsoft does little to prevent it from being released.
Computing

Intel's discrete graphics will be called 'Xe,' IGP gets Adapative Sync next year

Intel has officially dubbed its discrete graphics product Intel Xe, and the company also provided details about its Gen11 IGP. The latter will include adaptive sync support and will arrive in 2019.
Computing

Intel answers Qualcomm's new PC processors by pairing Core and Atom in 'Foveros'

Intel has announced a new packaging technology called 'Foveros' that makes it easier for the company to place multiple chips together on one package. That includes chips based on different Intel architectures, like Core and Atom.
Computing

Razer’s classic DeathAdder Elite gaming mouse drops to $40 on Amazon

If you're looking to pick up a new gaming mouse for the holidays, Amazon has you covered with this great deal on the classic Razer DeathAdder Elite gaming mouse with customizable buttons, RGB lighting, and a 16,000 DPI optical sensor.
Computing

Intel's dedicated GPU is not far off -- here's what we know

Did you hear? Intel is working on a dedicated graphics card. It's called Arctic Sound and though we don't know a lot about it, we know that Intel has some ex-AMD Radeon graphics engineers developing it.
Computing

Firefox 64 helps keep your numerous tabs under control

Mozilla officially launched Firefox 64 by placing new features into the laps of its users including new tab management abilities, intelligent suggestions, and a task manager for keeping Firefox's power consumption under control.
Computing

Here's our guide to how to charge your laptop using a USB-C cable

Charging via USB-C is a great way to power up your laptop. It only takes one cable and you can use the same one for data as well as power -- perfect for new devices with limited port options.
Computing

Apple MacBook Air vs. Microsoft Surface Pro 6

The MacBook Air was updated with more contemporary components and a more modern design, but is that enough to compete with standouts like Microsoft's Surface Pro 6 detachable tablet?
Computing

Installing fonts in Windows 10 is quick and easy -- just follow these steps

Want to know how to install fonts in Windows 10? Here's our guide on two easy ways to get the job done, no matter how many you want to add to your existing catalog, plus instructions for deleting fonts.
Computing

Email take-backsies! Gmail's unsend feature is one of its best

Everyone has sent a message they wish they could take back. How great would it be if you could undo that impulsive email? If you're a Gmail user, you can. Here's how to recall an email in Gmail.