Computer Security Research - McAfee Avert Labs Blog

A highly targeted spear phishing campaign is currently doing the rounds. Executives–including some of our own at McAfee–have received emails purportedly from the U.S. Tax Court. The emails are designed to look like a petition from the Tax Court and are fairly believable, with domains similar to the legitimate ustaxcourt.gov in the “from” address and links. There’s also a legitimate telephone number for the organisation. The executive’s name is listed as the respondent in a case versus the Commissioner of Internal Revenue.

The scammers do their homework when it comes to spear phishing. Instead of pumping out millions of emails to anybody and everybody, spear phishers send out their scams only to people they know will be susceptible to the scam. In this case a top executive–rather than the average employee–is much more likely to be involved in a court case of this nature.

Clicking on the link may result in malicious code such as keyloggers being installed on your system.

The U.S. Tax Court currently has the following notice on its web site:

“The United States Tax Court has received many telephone calls regarding an e-mail which purports to originate from the Court being sent by a member of the Tax Court’s practitioner bar. This message is an example of “Spear Phishing,” which is an e-mail spoofing attempt that targets a specific organization. The Tax Court is not disseminating any e-mail notice to anyone who currently has a case before this Court.”

This entry was posted on Thursday, May 22nd, 2008 at 9:13 am and is filed under Scams, Spam and Phishing. You can follow any responses to this entry through the RSS 2.0 feed. You can leave a response, or trackback from your own site.

BelchSpeak » Post Topic » SpearPhishing: Tax Courts Are Gonna Sue Ya! Says:
May 22nd, 2008 at 12:24 pm

[…] McAfee’s blog here: The scammers do their homework when it comes to spear phishing. Instead of pumping out millions of […]

Feds Warn of Fake Tax E-Mail - PeerDen.com - Torrents, DDLs & More! Says:
May 25th, 2008 at 2:45 am

[…] are designed to look like a petition from the Tax Court and are fairly believable," said McAfee researcher Kevin McGhee in a notice posted to the company’s Web site. "There’s also a legitimate telephone number for […]

Trends: Spyware, Adware, Malware Down; Phishing Up • DygiScape Says:
May 25th, 2008 at 2:55 pm

[…] Phishing is still alive and well, probably because phishers have become more sophisticated in launching Spear Phishing, making their e-mails more and more like the real consumer notifications. Phishing has also evolved much more dynamically than “Download these Smilies,” usually targeting viral events like terrorism, humor and funny videos; and more recently, 2008 Econominic Stimulus Check and Tax Court Summons scams. […]

Para Last Says:
June 4th, 2008 at 12:11 pm

LOL - Funny But NOT! I thought that top executives would be more up to date on things like this… I guess not, but they should be or at least listening to their IT’s very carefully! But it just goes to show you that most top CEO’s, COO’s, CEA’s, COE’s, & on & on & on, figure that their IT ‘pee ons’, have every thing under control. It’s not that easy to keep on top of all this crap. This is a very good example of why EVERYONE in any business, organization, etc., needs to be aware…

Beware of Spear Phishing by ‘U.S. Tax... [ McAfee Avert Labs ] Says:
June 7th, 2008 at 3:23 am

[…] 22nd 2008 5:13pm [-] From: avertlabs.com […]

Beware of Spear Phishing by ‘U.S. Tax Court’

5 Responses to “Beware of Spear Phishing by ‘U.S. Tax Court’”

Leave a Reply

Archives

Categories