Snapchat among companies duped in tax-fraud scam

SAN FRANCISCO - Tax-filing season is turning into a nightmare for thousands of employees whose companies have been duped by email fraudsters.

See Full Article

A major phishing scheme has tricked several major companies - among them, the messaging service Snapchat and disk-drive maker Seagate Technology - into relinquishing tax documents that exposed their workers' incomes, addresses and Social Security numbers.

The scam, which involved fake emails purportedly sent by top company officials, convinced the companies involved to send out W-2 tax forms that are ideal for identity theft. For instance, W-2 data can easily be used to file bogus tax returns and claim fraudulent refunds.

The embarrassing breakdowns have prompted employers to apologize and offer free credit monitoring to employees. Such measures, however, won't necessarily shield unwitting victims from the headaches that typically follow identity theft.

"This mistake was caused by human error and lack of vigilance, and could have been prevented," Seagate's chief financial officer, Dave Morton, wrote in a March 4 email to the company's employees about the breach.

The swindlers behind the tax scam are exploiting human gullibility rather than weaknesses in computer or Internet security. They have targeted company payroll and personnel departments, in many instances with emails claiming to be requests from the company CEO asking for copies of worker W-2s.

The schemes are so widespread that the IRS sent a March 1 notice alerting employers' payroll departments of the spoofing emails. The agency said the scheme has so far claimed "several victims," but declined Tuesday to disclose how many other employers had reported releasing W-2s to unauthorized parties. The IRS said it's seen a 400 per cent increase in phishing and computer malware incidents this tax-filing season.

The federal alert didn't come soon enough for Snapchat, which on Feb. 28 revealed that its payroll department had been duped by an email impersonating its CEO, Evan Spiegel. The Los Angeles company didn't specify how many employee W-2s it released. Snapchat didn't respond to requests for comment Tuesday.

"When something like this happens, all you can do is own up to your mistake, take care of the people affected, and learn from what went wrong," Snapchat wrote in a post on its corporate blog .

Seagate acknowledged surrendering the W-2s for all of its current and former employees who worked at the company last year. The Cupertino, California, company said "several thousand" people were affected, but declined to be more precise. As of July last year, Seagate employed about 52,000 workers but all but 10,500 of them were based in Asia.

Both Snapchat and Seagate notified federal authorities about the phishing attacks and are offering affected workers two years of free credit monitoring.

It's unclear how many other employers have been sucked into the tax scam. Hundreds of companies appear to have been targeted, according to Stu Sjouwerman, CEO of KnowBe4, a Florida company that trains employers to detect and avoid such scams.

Phishing attacks commonly occur during holidays and other annual events, such as tax season, to prey upon people's routines, said Farih Orhan, director of technology at security firm Comodo. The attacks are becoming increasingly effective because they rely on powers of persuasion instead of an attachment or link that might raise suspicion, said Ed Jennings, chief operating officer at email security company Mimecast.

"It's just like someone who convinces you to hand over $20 on the street," Jennings said.

Sjouwerman said the W-2 seeking attacks are most likely are being sent by Eastern European hacker groups planning to sell the information or claim fraudulent tax refunds.

The most effective phishing attacks use emails decked in company logos and colours to reduce the chances of detection, Orhan said. It's relatively easy for con artists to pose as a CEO online, since they can quickly fetch convincing details from a Google search or a perusal of professional networking service LinkedIn.

That doesn't excuse payroll or personnel departments who reflexively acquiesce to requests in apparently legitimate email, experts say. For instance, Sjouwerman said his firm's controller received a phishing email that, at first glance, appeared to be sent by him. But the email asked the controller to "kindly prepare" employees' W-2s, a phrase that he never uses. Company employees were alert enough not to send out the W-2s.

Even without a red flag like that, payroll and personnel specialists should be trained well enough to question why a CEO needs to see individual worker W-2s in the first place.

"It's a case of: 'Oh, the boss wants it'," Sjouwerman said. "They stop thinking, 'Why would this be?"'

-----

AP Technology Writer Brandon Bailey contributed to this report.



Advertisements

Latest Economic News

  • Biggest U.S. banks strong enough to withstand recession: Fed

    Economic CTV News
    In this Thursday, Nov. 17, 2016, file photo, Federal Reserve Chair Janet Yellen testifies on Capitol Hill in Washington, before the Joint Economic Committee. (AP Photo/Susan Walsh, File) Source
  • Postmedia selling Infomart division

    Economic CBC News
    Postmedia Network Canada Corp. has signed a deal to sell Infomart, its media monitoring division, to Meltwater News Canada Inc. for $38.25 million. The cash-strapped media company says net proceeds from the sale will be used to repay debt. Source
  • A new platform for Whole Foods? How deal could upend grocery

    Economic CTV News
    NEW YORK -- Seeing Whole Foods products first in Amazon searches? Breezing through the grocer's stores with an app that scans affordable fruits and seafood? Those are among the possible scenarios that unnerved the food industry last week, when Amazon announced a $13.7 billion megadeal to acquire Whole Foods. Source
  • Foreign home buyers surge 37 per cent in Montreal on growth in Chinese purchases

    Economic CTV News
    MONTREAL -- Canada's federal housing agency says the number of foreign buyers in the Montreal area surged by 37 per cent in the first four months of the year. The 236 purchases by foreigners accounted for 1.8 per cent of all real estate transactions from January to April, the Canada Mortgage and Housing Corp. Source
  • Qatar Airways seeks 10% stake in American Airlines

    Economic CBC News
    State-owned Qatar Airways is attempting to buy 10 per cent of American Airlines, a surprising move that would trigger an antitrust review by the U.S. government and carry political and trade-policy implications. American Airlines Group Inc. Source
  • Boeing plays down Bombardier dispute, still hopes to sell fighter jets to Canada

    Economic CTV News
    OTTAWA - A senior Boeing official says the U.S. aerospace giant's trade dispute with Montreal-based rival Bombardier is a "company-to-company issue." And Leanne Caret, the head of Boeing's massive defence, security and space division, still hopes to sell Super Hornet fighter jets to Canada. Source
  • Full list of 59 Sears Canada stores slated to close

    Economic CTV News
    Sears Canada will be closing stores in every province except Prince Edward Island, as the retailer slashes 2,900 jobs amid a major restructuring effort. Sears filed for court protection from creditors on Thursday, before announcing that it will close 20 full-line locations, 15 Sears Home stores, 10 outlet stores and 14 Sears Hometown locations. Source
  • Canadian retail sales top April forecasts

    Economic CBC News
    Canadian consumer spending in April was stronger than expected, which economists say lends weight to the Bank of Canada's recent suggestions that interest rate hikes could be on the way. Statistics Canada reported Thursday that retail sales for April rose by 0.8 per cent on a monthly basis to $48.6 billion. Source
  • Warren Buffett’s company buys into Toronto-based Home Capital

    Economic Toronto Sun
    TORONTO - Home Capital Group Inc. says American investment firm Berkshire Hathaway Inc. has agreed to indirectly acquire $400 million of its common shares in a private placement and provide a new $2 billion line of credit to its subsidiary, Home Trust Company. Source
  • Sears Canada cutting 2,900 jobs, closing 59 locations

    Economic Toronto Sun
    TORONTO — Sears Canada said Thursday it is seeking court protection from its creditors in order to restructure its business. The struggling retailer has piled up losses and seen its stock dive, losing more than 80 per cent of its value in the last year, despite efforts to reinvent itself at a time when more Canadians are shirking bricks-and-mortar in favour of online shopping. Source