As if tax season wasn't unpleasant enough, the Internal Revenue Service (IRS) has become the subject of a massive hack with over a hundred thousand cases of identity theft.
The IRS announced in a statement that identity thieves used malware to identify 464,000 unique social security numbers in January. Out of this lot, the same tool cracked the E-file PIN number, which is used to electronically file tax returns, for 101,000 social security numbers.
With this information, hackers could have potentially signed into the IRS online tax filing system and dug up users' financial history, including yearly income, bank information and investment records.
In the face of this possibility, the IRS maintains that the hackers were not able to access any personal taxpayer information kept in the IRS system. The government agency also says it will take immediate steps to notify affected taxpayers how their personal information was compromised by mail, which really isn't immediate at all.
Currently, IRS cybersecurity experts are working closely with the Treasury Inspector General for Tax Administration and other agencies to assess the situation. The IRS also plans to bring up this troubling occurrence with its Security Summit state and industry partners in an effort to get to the bottom of the breach.
In the interim, taxpayer can change their E-file pins and contact their financial institution (i.e. credit cards and banks) to be on the look out for any suspicious activity.
- Hacking isn't cool kids, don't let it become a problem