exterior of a home with focus on the garage13 Features That Can Make Your Home Sell Faster in 2024
Young man eating a burrito10 Things You Can Get for Free in April
Frustrated older woman who is a senior or retired woman looking at her smartphone in consternation5 Social Security Payment Quirks That No One Warns You About
5 Dumb Retirement Mistakes Everyone Makes5 Dumb Retirement Mistakes Everyone Makes

IRS: Tax Data Breach Was Much Worse Than Thought

Advertising Disclosure: When you buy something by clicking links on our site, we may earn a small commission, but it never affects the products or services we recommend.

Image Not Available

Hackers who stole personal information from an online Internal Revenue Service program called “Get Transcript” accessed data on more people than previously thought, according to the federal agency.

The IRS announced Monday that, after an “extensive review,” it has identified “more questionable attempts to obtain transcripts using sensitive information already in the hands of criminals.” That puts an additional 390,000 Americans at risk.

As a result:

  • About 220,000 taxpayers will receive letters from the IRS because of successful attempts to access their Get Transcript accounts.
  • About 170,000 other households will receive letters from the IRS “as an additional protective step” to notify them that their personal information could be at risk because of unsuccessful attempts to access the IRS system.

The agency said it would begin mailing the letters in the next few days and offer free credit monitoring to more than 100,000 people, as well as what the IRS characterizes as “identity protection PINs.”

This follows a June IRS announcement that the agency had identified 100,000 successful attempts to access to transcripts through Get Transcript, which was shut down in May after the IRS discovered the breaches. An additional 100,000 unsuccessful attempts to breach Get Transcript were also identified at that time.

Hackers were able to break into the program because they had already obtained enough personal information on taxpayers from non-IRS sources, the agency has said:

In this sophisticated effort, third parties succeeded in clearing a multi-step authentication process that required prior personal knowledge about the taxpayer, including Social Security information, date of birth, tax filing status and street address before accessing IRS systems. The multi-layer process also requires an additional step, where applicants must correctly answer several personal identity verification questions that typically are only known by the taxpayer.

The IRS believes it’s possible that some of the attempts to access tax transcripts were made so that the hackers could use the information to file fraudulent tax returns next year:

For example, any prior-year return information criminals obtain would help them more easily craft seemingly authentic returns, making it more difficult for our filters to detect the fraudulent nature of the returns.

How do you feel about this news? Share your thoughts in our Forums. It’s the place where you can speak your mind, explore topics in-depth, and post questions and get answers.

Get smarter with your money!

Want the best money-news and tips to help you make more and spend less? Then sign up for the free Money Talks Newsletter to receive daily updates of personal finance news and advice, delivered straight to your inbox. Sign up for our free newsletter today.

  Like Article   Add a Comment