Don't fall for this #1 tax scam

Crooks wanting to steal your identity are using bogus e-mails and websites designed to look like genuine IRS

communications. You might expect the April 15 filing deadline to mark the end of these scams, but they, in fact, are expected to continue for months.

An example of these bogus e-mails: You receive a message confirming IRS receipt of your tax return, but the IRS needs more information to process your return. The e-mail looks official and completely legitimate. But it isn’t. The IRS does NOT contact taxpayers asking for personal and financial information. These e-mails should be deleted immediately. Fake IRS websites are also created by scammers to lure victims into filling out forms providing information that results in identity theft.

Watch out for scams if you invest in coins

Buying rare and precious coins can be an exciting hobby and, for some, a lucrative investment. Unfortunately, it's also a business that's rife with potential for con artists. As always, it's wise to proceed with caution. Following a few simple guidelines can offer protection from unethical sellers.

* Research, research, research. Know what you're buying. Carefully study the characteristics of the coins you're considering, paying specific attention to rarity, grading, market availability, and price trends. Comparison shop for similar coins by checking prices in leading coin publications. If a dealer's advertised price is much lower than listed prices, the dealer may be misrepresenting a coin's grade or quality. Online discussion groups dedicated to coin collecting are also a great place to post questions about a particular coin.

* Know the seller. Before you buy, check out the dealer's reputation. How long has the firm been in business? Is the dealer a member of a professional organization? Has the Better Business Bureau received any complaints about this company? What guarantees does the seller provide?

* Be careful with online auctions. For many years the market for rare and precious coins has been a fertile field for fraudsters, and online selling has taken the game to a new level. Dealers who use online auctions such as eBay have been caught using a variety of scams: doctoring images, posting bogus descriptions, selling counterfeits, sending coins that differ from those advertised (the old "bait and switch" routine), and failing to deliver purchased items. Again, if you're planning to buy at an online auction, find out as much as possible about the seller. Check feedback ratings. Read both positive and negative comments. Make sure the seller has sold similar coins in the past with good results. Ask the seller for clarification if something appears suspicious. And if you win the bidding, beware of sending payments to a location that differs from the one listed in the auction.

Whether buying coins online or off, the old maxim, "let the buyer beware" is always sound advice.

Watch out for bogus e-mails

The e-mail from your bank gets your attention right away. It says you need to log into your account in the next 48 hours to continue your online privileges. Something about a system upgrade. You wonder, is it legitimate? How can you know for sure?

Bogus e-mails designed to steal your identity, also known as phishing, are becoming a bigger problem these days. While they can take many different forms, most scams are designed to trick you into revealing personal information such as your social security number or online account password. Through clever use of logos and familiar-looking web addresses, these e-mails often appear to be an urgent message from your bank, mortgage lender, or e-mail provider.

You may not realize it, but thieves are especially eager to gain access to your web e-mail account. Why? Once a scammer has access to your e-mails, he or she can often figure out where you bank and detect clues to passwords you might use.

So what can you do to protect yourself? Take a moment and think before you click. Never respond to an e-mail asking for your social security number or birth date. You can almost bet that it is a scam. If an e-mail contains a website link that you are not familiar with, do not click on it. Instead, either go directly to the company’s trusted website, or contact them by phone.

Also remember that e-mail scams become more prevalent following a significant public event, such as a natural disaster or sudden stock market drop. Thieves will prey on your sympathies or fears during these times, so be extra careful when responding to appeals for charity or notices to update your financial records. Also, be leery of e-mails with demanding language or incorrect grammar -- both are potential signs of a counterfeit e-mail.

For preventive measures, try to use a different password for every online account, and change your passwords regularly. Make your passwords stronger by using combinations of letters, symbols, and numbers. Also, keep your computer anti-virus software up to date.

Finally, do your part to thwart these crimes by reporting any suspected scam e-mails to reportphishing@antiphishing.org. If you receive a bogus tax-related e-mail, forward it to the IRS at phishing@irs.gov. And of course, feel free to contact our firm if you need a second set of eyes on any suspicious-looking e-mail.

IRS alerts taxpayers to scams involving college tax credit

The IRS has issued a tax scam warning connected with the American Opportunity Tax Credit.
Promoters of the scheme target senior citizens, low-income individuals, and members of church congregations. The con artists say they can get a tax refund or stimulus payments based on the American Opportunity Tax Credit, even if the taxpayer was not enrolled in or paying for college.
Victims of these scams can lose the upfront fees they are asked to pay to have the promoters file these claims on their behalf.
The IRS also warns taxpayers to be careful of these scams because they are legally responsible for the accuracy of any tax return filed and will have to repay any refunds received in error, plus penalties and interest. They may also face criminal prosecution.
In its notice about the promotion of these bogus refund claims, the IRS cautions taxpayers to beware of any of the following:
* Fictitious claims for refunds or rebates based on false statements of entitlement to tax credits.
* Unfamiliar for-profit tax services selling refund and credit schemes to the membership of local churches.
* Internet solicitations that direct individuals to toll-free numbers and then solicit social security numbers.
* Homemade flyers and brochures implying credits or refunds are available without proof of eligibility.
* Offers of free money with no documentation required.
* Promises of refunds for "Low Income -- No Documents Tax Returns."
* Claims for the expired Economic Recovery Credit Program or for economic stimulus payments.
* Unsolicited offers to prepare a return and split the refund.
* Unfamiliar return preparation firms soliciting business from cities outside of the normal business or commuting area.

Common Business Scams

Two of the more recent and popular business scams involve getting the checking account number of your business. In one case the scammer calls a business firm claiming to represent a bank credit card company. The caller offers extremely favorable interest rates and repayment terms for new customers. The scammer claims to need some basic information to complete the firm's pre-approved credit application. Included in this basic information is the business's checking account number. After getting the account number, the scammer writes "demand drafts" on the account which will be honored by the bank if the draft has a valid checking account number on it. To help cover up the deception, the scammer often writes the drafts for small amounts that will not attract attention.

In the second scam, the scammer mails the company a check for a small amount. When the check is returned to the scammer, the information on the check will permit the scammer to learn the company's checking account number. The scammer then uses the account number to start writing demand drafts on the company's account.

Companies can help to fight these scams by thoroughly reviewing and reconciling the company's bank statement each month. If you discover any suspicious activity, call your bank immediately and then later notify it in writing. Businesses can avoid the second scam by reconciling all incoming checks with existing customer accounts and balances before cashing any check. Don't cash checks until you have identified the source.

PROTECT YOUR BUSINESS AGAINST CYBER ATTACKS

It is estimated that cyber crime costs the economy more than one trillion dollars per year. While attackers initially focused on large companies, they are increasingly targeting small and medium-sized businesses that often do not protect their systems as much as the larger companies. Automated attacks are becoming more sophisticated and frequent. Because of the volume and the technological sophistication of these attacks, any business-no matter its size-needs to be prepared with proper security measures. With the availability of "toolkits" for installing malware, cyber criminals do not even need to be well-versed in technology to penetrate a system.

Malware can be installed by sending an e-mail attachment, using a social network site, or breaking into a company's website. Once the malware is installed, the crook controls the computer. Some of the malware programs wait for the user to visit a banking or financial site and then capture the user's log-in information which is sent to the attacker. The compromised computer may also be used for its computing power, permitting the launching of additional attacks. Currently the biggest cyber risk involves bank account fraud, using legitimate account numbers. Attacks on bank accounts can be particularly harmful to small businesses. Banks typically do not extend the same protection to businesses that they do to consumers. Banks will generally provide some kind of coverage for losses connected to consumer accounts but do not provide similar protection for businesses.

Unfortunately, many small and medium-size businesses have done very little to protect themselves against cyber attacks. A poll of approximately 1,500 small businesses indicated that one-third of them did not even have basic antivirus software installed on their computers. Small businesses that had some protection tended to rely on antivirus software and basic network firewalls. Such protection may work against well-known viruses and attacks but not against the more sophisticated new attacks. A further concern is that computers increasingly operate outside of firewalls.

Companies should begin by assessing their degree of risk, taking into account the number of people who can access the network, the current level of protection, and the nature of the data being stored. Most cyber attacks come by web or e-mail, so filtering systems would be needed for those avenues of attack. When purchasing antivirus software, get the business-class version, rather than the consumer version. Businesses may want to hire the services of a computer security company. Finally, keep in mind that cyber criminals are more likely to direct their attacks at computer users than computer systems.

DON'T SABOTAGE YOUR BUSINESS WITH BAD DATA

Bad data often lead to bad business decisions. Make a detailed review of your data on a regular basis. Know who is getting paid and what they are getting paid for. You need to be confident that the data underlying your financial statements is accurate and current. Don't wait until the end of the year to find out how things have been going for the previous twelve months. You may wish to hire a consultant to make a custom report of items that are of particular significance to your business operations. Most business software can provide alerts to warn you when certain indicators are not within an acceptable range. Be sure that your bank account is reconciled on a monthly basis.

HOW TO WAKE DORMANT CUSTOMERS

If some of your customers have quietly slipped away, don't give up on them without a fight. There are some fairly simple things that you can do to try to wake up those dormant customers. First, find out why they have gone silent. There are online surveys and polls that can be specifically customized to fit your business. Ask them what you need to do better. Find out if you need to make some adjustments in the goods or services that you offer. Be prepared to react to their feedback and make adjustments where possible. Let your dormant customers know how you have responded to their feedback.

Second, you should be prepared to offer them special incentives to renew their business relationship with you. These incentives could take the form of discounts, cash, or personalized service. The incentives should involve offering your customers something that your competitors can not. It should be something unique to your business and valuable from the customer's viewpoint. Be prepared to use the new technology to get back your old customers. Use social network sites to connect with previous customers. As part of your original online survey, determine what sites your customers are using and bring them into play.

It is estimated that almost 450 million people use Facebook every day, and increasingly customers will be looking to such sites for business transactions. Use a browser app to reconnect with and maintain contact with customers. Social networking sites and browser apps can be a good way to convey the satisfaction of your current customers. If you do business online, e-mail can be an effective way of contacting and encouraging the return of former customers. Use the company website to seek out actively any customer problems and suggestions for improvement.

Many businesses become so concerned with attracting new customers that they often lose sight of the importance of trying to renew a business relationship with a former customer.

IT'S THE USER THAT MATTERS

Business people worry regularly about the security of their computer operating systems. Security would be better served by worrying about the users of the system, rather than the system itself. Today's cyber criminals are more likely to target user behavior than a technical flaw in the operating system. It is simpler for the attacker to get users to compromise their own security by opening an e-mail attachment.

Two popular scams provide good examples of this. One involves an e-mail claiming to be from the IRS which directs the recipient to open the attachment and fill out a required form. Another claims to be from the BBB and tells the recipient to open the attachment to get information about a complaint that has been filed. In both cases, opening the attachment installs malware in the recipient's operating system.

IRS Scam Emails May Put Your Info at Risk

I found this blog via taxgirl.com and thought I would pass along as some of our clients have encountered this before.

IRS Spammers

By now, you have to have received one of the scam emails purporting to be from the IRS with the subject line: "Notice of Underreported Income." I've received 59 of them just since September 18, 2009. Persistent little spammers.

But if you're smart or if you follow me on twitter (not that those things are mutually exclusive), you know that those emails are bad news.

The emails look like this:

The email encourages you to click on a link to view your tax statement. Don't do it. The links are associated with a number of viruses and malware, including Zeus Trojan. If your computer becomes infected with the Zeus Trojan, your personal and financial information may be at risk, with a specific focus on online banking.

How prevalent is Zeus Trojan? A recent investigation by a prominent computer security firm found that at least 55% of the computers that it searched were infected, despite anti-virus software on the computers. The group behind Zeus, thought to be located in Europe, has become more aggressive as it targets users.

How do you protect yourself and your information? Don't click on links or attachments in emails which purport to be from the IRS unless you requested the information. The IRS never begins investigations or contacts taxpayers with tax information unannounced via email. Never. Ever. Never.

Hit delete and don't look back.