Insights: Article

Dangerous W-2 Phishing Scam Evolving: Targets Include Hospitals

By Anders Erickson

January 02, 2017

A dangerous email phishing scam could affect your hospital.

Cyber criminals are using spoofing techniques to disguise an email, making it appear like it's coming from an executive within the organization so that the recipient (usually in the payroll or HR department) feels compelled to respond. The cyber criminal asks for a list of employees and their W-2s. They intend to use this information to fake a tax return and fraudulently collect an employee's refund before the employee files themselves. Cyber criminals may also be asking to wire money, and continue to evolve their scams.

The IRS issued an alert in February to all employers to beware of the emerging phishing email scheme. It's spreading to many industries, including health care, school districts, tribal casinos, chain restaurants, temporary staffing agencies, and shipping and freight.

If you believe that your organization has been a victim of these types of scams, you can:

  • Report the W-2 thefts to the IRS immediately so that they can begin to help protect the employees from tax-related identity theft. Forward to phishing@irs.gov and place "W2 Scam" in the subject line.
  • File a complaint with the Internet Crime Complaint Center (IC3,) operated by the Federal Bureau of Investigation.


If you are an employee whose W-2 has been stolen:

  • You should review the recommended actions by the Federal Trade Commission at www.identitytheft.gov or the IRS at www.irs.gov/identitytheft.
  • File a Form 14039, Identity Theft Affidavit, if your tax return gets rejected because of a duplicate Social Security number and/or if instructed to do so by the IRS.


If your organization has avoided scams so far, there are measures to take to prevent future attacks. You can:

  • Consult cybersecurity experts about how to establish a culture of security at your organization.
  • Enact policies and procedures safeguarding the handling of W-2s during tax season.
  • Encourage your employees to be safe online and avoid scam sites fronting as tax return eService sites.


Questions?
For more information about cybersecurity, please contact your Eide Bailly representative or Eide Bailly's Cybersecurity Leader Anders Erickson at 208.383.4731 or aerickson@eidebailly.com.

Latest Insights

September 21, 2018
Article
In the wake of hurricanes, devastating results have been experienced by communities and businesses throughout the Texas Gulf Coast, Caribbean, Florida and southeastern United States. As a result of these catastrophes, businesses will turn to…
September 20, 2018
Firm News
Eide Bailly LLP announced the winners of its 2018 Nonprofit Resourcefullness Awards, recognizing creative and sustainable revenue ideas from nonprofits in Arizona, Colorado, Minnesota, North Dakota and Utah.
September 19, 2018
Article
The IRS has started sending out Letter 5699 asking businesses to verify if they should have filed Forms 1094/1095-C. These forms are required for all ALEs.
September 19, 2018
Recorded Webinar
Are you considering doing business or having employees in Pennsylvania? Have you had issues with your state tax filing? Join our state and local tax team for some helpful insights into Pennsylvania tax filings.
September 19, 2018
Recorded Webinar
Are you considering doing business or having employees in Nevada? Have you had issues with your state tax filing? Join our state and local tax team for some helpful insights into North Dakota tax filings. This webinar will cover registration,…
September 19, 2018
Recorded Webinar
Are you considering doing business or having employees in North Dakota? Have you had issues with your state tax filing? Join our state and local tax team for some helpful insights into North Dakota tax filings. This webinar will cover registration,…
September 18, 2018
Article
As the largest tax reform legislation in the past 30 years becomes reality, it is important to stay up-to-date on planning opportunities and how reform may impact you and your business. Our Tax Reform: Practical Insights examples aim to break down…
September 18, 2018
Tool
Get ahead of tax season with the Eide Bailly Tax Planning Guide. A supplemental strategy guide to help guide year-end and make the tax laws work for you.
September 18, 2018
Article
The SCOTUS Wayfair decision has prompted a new focus on state and local tax compliance. The decision to register, report, and comply is important.