by Ameritax | Dec 2, 2021 | Tax Tips and News
Aside from being required by the FTC to have a written data security plan, criminals have increasingly been targeting tax professionals with phishing emails and social media messages. The pandemic—it turns out—has simply given them even more opportunities to create fraudulent government announcements.
To help prevent future tax-office data breaches, the Security Summit is recommending that tax pros review their security protocols before tax season begins. What better place to start than with the fundamentals?
What are the “Security Six?”
The IRS describes that the Security Six as “easy steps [that] can make a big difference, both for tax pros and taxpayers.” So, let’s take a look at what they recommend:
- Use anti-virus software and set it for automatic updates to keep systems secure. This includes all digital products, computers, and mobile phones.
- Use firewalls. Firewalls help shield computers from outside attacks but cannot protect systems in cases where users accidentally download malware, for example, from phishing email scams.
- Use multi-factor authentication to protect all online accounts, especially tax products, cloud software providers, email providers and social media.
- Back up sensitive files, especially client data, to secure external sources, such as external hard drive or cloud storage.
- Encrypt data. Tax professionals should consider drive encryption products for full-drive encryption. This will encrypt all data.
- Use a Virtual Private Network (VPN) product. As more practitioners work remotely during the pandemic, a VPN is critical for secure connections.
The IRS press release also notes that learning to identify and avoid common phishing scams is an essential step in avoiding data theft. Tax-pro-specific scams tend to have messages about expired account passwords, EFIN verification, and e-filing-related messages that appear to come from the IRS.
What should I do if I receive a phishing email or social media message?
First, never open an email or social media message that you suspect is a phishing scam. If you accidentally open the email, make sure you don’t click on any attachments or embedded links, since they could lead to a fake website or contain information-stealing malware or ransomware.
If you think you’ve received a tax-related phishing scam, be sure to report it to the IRS and TIGTA. That way, they can add it to their database of current scams and warn other tax professionals and taxpayers about it.
Remember, when it comes to data security, we’re all in this together.
Where can I find a sample tax office security plan?
In addition to reviewing these basic tips, you can check out the Drake Software Tax Office Security Plan. This sample security is composed of a series of worksheets that address common security-related issues, like classifying stored information, identifying threats, and prioritizing potential issues.
Visit our “Easy Steps to Create Your Mandatory Tax Office Security Plan (SAMPLE INCLUDED!)” blog to download a free copy.
Source: IR-2021-239
– Story provided by TaxingSubjects.com
by Ameritax | Nov 30, 2021 | Tax Tips and News
With the passage of Thanksgiving, Americans are shifting into gifting mode. For many, that means giving a holiday monetary gift to a well-deserving charity of one sort or another.
Unfortunately, scammers can use this noble intention to enrich themselves through fake charities. While the scammers’ main prize is money, they also can use the fake charity platform to download the taxpayer’s sensitive personal and financial information.
Merry Christmas indeed.
To help combat these thieves, the Internal Revenue Service wants taxpayers to know just who they’re giving to, and how to access that information.
The bright side of this warning is that much of this fake philanthropy can be avoided. The Security Summit, which is made up of representatives from state tax agencies, the nation’s tax community and the IRS, says the easiest and most effective way to be sure a charity is legitimate is to use the IRS’ Tax Exempt Organization Search Tool.
The IRS maintains a database of all federally recognized tax-exempt organizations. Using the online tool to check out a charity may be as simple as entering the charity’s name in the tool and seeing if it comes back as legitimate.
If a charity isn’t on the list of recognized organizations, donations to that organization can’t be tax-deductible. At worst, the charity could be a scam.
‘Tis the season for scammers
The Christmas holiday season can be one long payday for scammers. Between holiday shopping, the coming tax season and the pandemic, scammers have numerous opportunities to steal what were supposed to be charitable donations or highjack personal information.
The Security Summit members warn taxpayers to be especially careful this time of year when shopping online or viewing emails or texts.
Scammers will stop at nothing to get into a taxpayer’s wallet, setting up bogus organizations to take advantage of the public’s generosity. They use tragedies and disasters to appeal to taxpayers’ desire to help others.
Scammers also use phone calls
Some scammers us the telephone to advance their phony charities; those seeking donations for disaster relief are especially common over the phone. As with online charities, taxpayers should check out the charity before they donate, and should never feel pressured to give right away.
No matter what the charity, no matter whether the appeal is made online or by phone, here are the best ways to avoid being scammed by a fake charity:
- Individuals should never let any caller pressure them. A legitimate charity will be happy to get a donation at any time, so there’s no rush. Donors are encouraged to take time to do their own research.
- Confirm the charity is real. Potential donors should ask the fundraiser for the charity’s exact name, website and mailing address so they can confirm it later. Some dishonest telemarketers use names that sound like well-known charities to confuse people.
- Be careful about how a donation is made. Taxpayers shouldn’t work with charities that ask for donations by giving numbers from a gift card or by wiring money. That’s a scam. It’s safest to pay by credit card or check –– and only after researching the charity.
This is National Tax Security Awareness Week. The IRS and its Security Summit partners issued this alert to help taxpayers guard themselves against identity theft and the theft of sensitive tax information—all are methods used to file fake tax returns and obtain bogus refunds.
For more information on the Security Summit and identity theft, see IRS.gov/securitysummit for details.
Source: IR-2021-237
– Story provided by TaxingSubjects.com
by Ameritax | Nov 29, 2021 | Tax Tips and News
Now that the IRS is putting the wraps on the last installment of the Advance Child Tax Credit payments for 2021, some taxpayers who didn’t apply for other credits might get a reminder to do a little extra checking.
For some taxpayers, these notices may be the gateway to an additional refund from the IRS.
Taxpayers could get one or both of two possible notices—either a CP08 or a CP09, depending on their circumstances—and they may not understand why they suddenly got a letter from the IRS out of the blue.
Here’s a brief rundown.
Understanding the CP08 Notice
Both notices could be considered a reminder of sorts, dealing with IRS tax credits. The CP08 notice is for taxpayers who may qualify for the Additional Child Tax Credit and could be eligible to receive additional money.
This notice urges taxpayers to read its instructions carefully and to fill out the Additional Child Tax Credit worksheet that’s attached to Form 15110.
If the worksheet verifies that the taxpayer has at least one qualifying child, the taxpayer should sign and date the Form 15110 and fill out Form 1040 Schedule 8812, Additional Child Tax Credit.
The Form 15110 and the Schedule 882 should be mailed to the IRS in the provided envelope.
If the envelope that’s provided is lost or otherwise cannot be used, the address for the correct IRS service center is printed in the top left corner of the notice.
Once mailed, the documents go to the IRS for review. Taxpayers who successfully claim the credit should get their refunds in about eight to 10 weeks. Those who are denied will get a letter from the IRS telling them why they were turned down.
To find more information about the Additional Child Tax Credit, see Publication 972, the Child Tax Credit and Credit for Other Dependents; and the Instructions for Form 1040.
Understanding the CP09 Notice
The CP09 notice reminds taxpayers they may qualify for the Earned Income Tax Credit, also known as the EITC, but they failed to claim the credit the last time they filed a return.
The EITC is a credit for taxpayers who work and have earned income. The credit could give some taxpayers a refund, even if they don’t owe any tax.
After reading this notice carefully, recipient taxpayers should fill out the Earned Income Tax Credit worksheet on Form 15111 that accompanies the notice.
If the worksheet shows the taxpayer is qualified for the credit, Form 15111 should be signed and dated, then mailed in the envelope that came with the notice. Like the CP08 notice, the CP09 notice must be sent to the proper IRS processing center.
If the provided envelope isn’t available, taxpayers should mail their completed documents to the IRS address in the top left of their notice.
Taxpayers who are not qualified for the credit should not mail Form 15111 to the IRS; no other action is needed in that case.
Taxpayers who are eligible after review for the credit should get their refund checks in about six to eight weeks, if they don’t owe any back taxes or other debts that the IRS is required to collect.
Taxpayers who are rejected by the IRS review are sent letters of explanation.
For more information on the Earned Income Credit, see Publication 596, Earned Income Credit, or visit the EITC webpage on IRS.gov.
Sources: Understanding Your CP08 Notice; Understanding Your CP09 Notice
– Story provided by TaxingSubjects.com
by Ameritax | Nov 29, 2021 | Tax Tips and News
Cyber Monday traditionally closes out the busiest holiday shopping weekend of the year, which sees Americans swarming stores and crawling websites for post-Thanksgiving sales. Despite predictions of fewer in-person shoppers and eye-popping deals, there’s no doubt that consumers want to get the best bang for their buck.
Unfortunately, that laser-like focus puts Americans at risk of falling victim to the myriad phishing scams deployed this time of year. After all, people are even more likely to click on unsolicited sale emails and web ads when they’re desperately trying to track down The Perfect Gift™.
To help combat these holiday scams, the Security Summit is kicking off this year’s National Tax Security Awareness Week with ten tips for keeping your information out of criminals’ hands on Cyber Monday (and beyond).
What is the Security Summit?
The Security Summit is an organization composed of the Internal Revenue Service, state departments of revenue, and private members of the tax industry. They provide data-security recommendations and raise awareness of tax-based scams and threats.
What is National Tax Security Awareness Week?
National Tax Security Awareness Week is the Summit’s annual data security awareness campaign. For six years, they have promoted data security tips and highlighted phishing scams in an effort to combat identity theft tax refund fraud and other online data theft crimes.
How do I safely shop on Cyber Monday?
The Summit recommends taxpayers do these ten things to prevent data theft:
- Don’t forget to use security software for computers, tablets and mobile phones – and keep it updated. Protect electronic devices of family members, especially teens and young children.
- Make sure anti-virus software for computers has a feature to stop malware, and there is a firewall enabled that can prevent intrusions.
- Phishing scams – like imposter emails, calls and texts — are the No. 1 way thieves steal personal data. Don’t open links or attachments on suspicious emails. This year, fraud scams related to COVID-19, Economic Impact Payments and other tax law changes are common.
- Use strong and unique passwords for online accounts. Use a phrase or series of words that can be easily remembered or use a password manager.
- Use multi-factor authentication whenever possible. Many email providers and social media sites offer this feature. It helps prevent thieves from easily hacking accounts.
- Shop at sites where the web address begins with “https” – the “s” is for secure communications over the computer network. Also, look for the “padlock” icon in the browser window.
- Don’t shop on unsecured public Wi-Fi in places like a mall. Remember, thieves can eavesdrop.
- At home, secure home Wi-Fi with a password. With more homes connected to the web, secured systems become more important, from wireless printers, wireless door locks to wireless thermometers. These can be access points for identity thieves.
- Back up files on computers and mobile phones. A cloud service or an external hard drive can be used to copy information from computers or phones – providing an important place to recover financial or tax data.
- Working from home? Consider creating a virtual private network (VPN) to securely connect to your workplace.
While many of these tips are straightforward, two can be a little trickier to follow: knowing how to deal with phishing scams and getting a reputable VPN.
When it comes to avoiding phishing scams, here are three general tips:
- Don’t open unsolicited emails or social media messages.
- Don’t click links in emails, social media messages, or website ads.
- Don’t assume the sender name on emails and social media messages is who actually sent the message—criminals can and will impersonate or take over individual and business accounts.
Remember, if something seems too good to be true, it probably is. Instead of following links in emails or social messages, visit the company’s website directly.
As for finding a VPN that’s a good fit for your office, check out the “Working Virtually: Use a virtual private network to secure remote locations; Part 3 of Security Summit tips for tax professionals” press release.
Where can I find additional data-security resources?
The IRS closed their press release with links to the following resources:
What will the Security Summit cover next?
Tomorrow, the Security Summit has tips for avoiding fake charity scams—just in time for Giving Tuesday!
Sources: IR-2021-233; IR-2021-236
– Story provided by TaxingSubjects.com
by Ameritax | Nov 25, 2021 | Tax Tips and News
The Internal Revenue Service is making a pitch about the Advance Child Tax Credit payments that smacks of the spiel for sale pricing from used car dealers: “When it’s gone, it’s gone!”
The IRS—thankfully minus the loud plaid sport coat—says after November 29, taxpayers won’t be able to post any changes in their income and get a larger payment on December 15, the last scheduled payment in 2021.
Any income updates must be posted through the Child Tax Credit Update Portal (CTC-UP) by 11:59 p.m. Eastern Time on November 29 to be included in the December payment.
The portal can be accessed at IRS.gov/childtaxcredit2021.
The IRS also had good news for Spanish speakers this week, launching a Spanish-language version of the CTC-UP that helps more families update their income figures ahead of the last remaining advance payment.
Advance payments of the CTC were made possible by the American Rescue Plan. Most qualifying families started getting their advance payments in July.
Eligible families could get advance payments of up to $300 monthly for each child under the age of 6, and up to $250 per month for each child between the ages of 6 and 17.
Payments were based on 2019 or 2020 filed returns, although some recipients registered online through the Child Tax Credit Update Portal to qualify. The CTC-UP was pivotal, allowing taxpayers to verify the qualifications for the credit, but also gave them the ability to perform other actions:
- Switch from receiving a paper check to direct deposit;
- Change the account where their payment is direct deposited;
- Update their mailing address;
- Stop monthly payments and
- Report significant changes in their income that could potentially raise or lower their monthly payments.
The advance payments, however, are only half the Child Tax Credit story. The advance payments amount to only half of the total credit amount for any taxpayer. The taxpayer receives the remaining half of the credit when they file their 2021 income tax return next year.
Families who got advance payments of the CTC in 2021 will also receive Letter 6419 early next year, documenting the advance payments they received in 2021 and the number of qualifying children they reported to figure their advance payments.
What’s on tap for 2022?
Advance payment of the Child Tax Credit may not be on the table for next year, but that doesn’t mean the credit will be out of reach of deserving taxpayers.
The IRS says eligible families—whether they typically file a return or not—will be able to receive a lump-sum payment of the CTC once they file a 2021 return next year.
To that end, the agency is encouraging its industry partners and community groups to share information and to use available online tools to help low-income families, non-filers and other underserved groups learn about the benefits of the Child Tax Credit and how to sign up.
Links to these online tools, answers to frequently asked questions and other resources can be found on the IRS’ special advance CTC 2021 page.
Source: IR-2021-235
– Story provided by TaxingSubjects.com