Citizen Services

IRS targeted in bot attack

Shutterstock image (by dencg): digital warning sign.

Data thieves used an automated attack technique and stolen Social Security numbers to try to establish accounts with IRS systems, the tax agency disclosed late on Feb. 9.

The attack was designed to generate e-filing PINs, which would presumably be used to request fraudulent tax refunds.

The IRS said attackers deployed two key weapons: an automated bot and stolen Social Security numbers they'd obtained elsewhere.

"With our improved systems, we were able to catch it quickly," IRS Commissioner John Koskinen told the Senate Finance Committee on Feb. 10. He compared the attack to last year's compromise of the Get Transcript app.

"None of those attacks breached our system itself," Koskinen said, noting that in both instances, hackers already had personal information on targeted taxpayers.

In a statement on the latest attack, the IRS said, "No personal taxpayer data was compromised or disclosed by IRS systems." Officials plan to notify affected taxpayers via mail and will monitor their accounts for future identity theft attempts.

Attackers used roughly 464,000 Social Security numbers in the latest attack.

Koskinen blamed global organized crime syndicates and noted that the attackers "hopped" from country to country as the IRS detected and attempted to halt the activity. Officials are investigating the incident but believe that the attack has been stopped.

They said it is not related to last week's hardware failure at the IRS.

About the Author

Zach Noble is a former FCW staff writer.

Featured

  • Defense
    Ryan D. McCarthy being sworn in as Army Secretary Oct. 10, 2019. (Photo credit: Sgt. Dana Clarke/U.S. Army)

    Army wants to spend nearly $1B on cloud, data by 2025

    Army Secretary Ryan McCarthy said lack of funding or a potential delay in the JEDI cloud bid "strikes to the heart of our concern."

  • Congress
    Rep. Jim Langevin (D-R.I.) at the Hack the Capitol conference Sept. 20, 2018

    Jim Langevin's view from the Hill

    As chairman of of the Intelligence and Emerging Threats and Capabilities subcommittee of the House Armed Services Committe and a member of the House Homeland Security Committee, Rhode Island Democrat Jim Langevin is one of the most influential voices on cybersecurity in Congress.

Stay Connected

FCW INSIDER

Sign up for our newsletter.

I agree to this site's Privacy Policy.