Attention e-services users: don't fall for a fraudulent email with the subject line “Security Awareness for Tax Professionals.” The “From” line is “Your e-Services Team.” It has both an IRS logo and an e-services logo that hyperlinks to a URL verified as a phishing site. The spoofing site poses as an e-services registration page.
The scammers are attempting to exploit current IRS efforts to strengthen the e-services authentication process and its ongoing communications with tax professionals about their accounts. Scammers are attempting to steal e-services usernames and passwords or additional personal data through a registration page.
If you have already clicked on the fake logo and provided your username and password, contact the e-services help desk at 866.255.0654 to reset your account. If the same password is used for other accounts, these should be changed as well.
As an extra precaution, users should perform a deep security scan on their computers, re-evaluate their security controls and be alert to any other signs of identity theft or data compromise.
Tax professionals should always go directly to IRS.gov to access e-services and never click on any links provided in emails. Tax professionals who receive a suspicious email should send it as an attachment to Phishing@irs.gov and then delete it. Recipients should not click on any links.