W-2 Email Scam Finds More Victims in 2017

Caitlin E. Reilly reports:

The number of organizations that fell prey to a recurring W-2 email scam that involved identity thieves posing as company executives rose subatantially in 2017, an Internal Revenue Service official said May 18.

[…]

In the first four months of 2017, 870 organizations reported to the IRS that they received a W-2 phishing email, up from about 100 organizations in the first four months of 2016, Powell said. Of the 870 organizations, about 200 lost data, up from about 50 in 2016, she said.

Read more on BNA.

So I guess my W-2 phishing list is doing a pretty good job of keeping up with the incidents where losses are reported. As of today, I have 203 on the list.

Clorox Files $380M Suit Alleging Cognizant Gave Hackers Passwords in Catastrophic 2023 Cyberattack
Two more entities have folded after ransomware attacks
Michigan ‘ATM jackpotting’: Florida men allegedly forced machines to dispense $107K
Missouri Adopts New Data Breach Notice Law
Multiple lawsuits filed against Doyon Ltd over April 2024 data breach and late notification
CISA tags Citrix Bleed 2 as exploited, gives agencies a day to patch

Related: