1. Beware of Tax-Related Business Email Compromises
Business email compromises (BEC) are becoming increasly savvy, Masergy's Watson says. An example of a BEC during tax season would be a payroll administrator receiving an email supposedly from the CEO or a top official at the company asking to be sent all of the company's W2s or 1099s. Teach your payroll people to look out for common phishing scams. Today, the fraudsters especially like to use copycat domains or defunct domains that look real but aren't.
Michael Blache, CISO at TaxSlayer, advises companies to make it as difficult as possible for people to obtain company tax information. For example, if a person claims to be looking for an old W2, require that person to physically go to the payroll administrator's office. If somebody calls by phone, have that person send the last four digits of his Social Security number as well as a copy of a valid driver's license. Make it difficult for the fraudsters, and they will move on.
(Image: momius – Adobe Stock)