We have stopped another blended threat email campaign, which once again spoofs the Internal Revenue Service. The text-based email, which has a variety of subject lines, such as “the CP2000 notice (Underreported Income Notice),” asks recipients to “review your tax statement on Internal Revenue Service (IRS) website.” When someone clicks on the link, they are taken to a landing page that includes the
As with past IRS spam warnings, the IRS has made it very clear that it does not communicate with individual taxpayers via email. Any email with the IRS’ brand is likely to be a scam, should be forwarded to the IRS at firstname.lastname@example.org and then deleted.
This campaign was detected by Red Condor’s Spam Trigger filter, which quickly identifies spam and phishing campaigns before they penetrate users’ networks. Once identified, the campaigns are quarantined and reviewed as rules are written and automatically distributed to Red Condor’s antispam appliance and Hosted Service customers.