Media releases are provided as is by companies and have not been edited or checked for accuracy. Any queries should be directed to the company itself.

Cybercriminals Target Australians with an ATO Tax Refund Phishing Scam

Watch out for fake Australian Taxation Office emails
  • 17 June, 2009 10:43

<p>Symantec recently observed a fresh round of phishing scams targeting the Australian Taxation Office (ATO). Cybercriminals are distributing emails that falsely claim to be from the ATO and offer online tax refunds. The emails bear the tax office logo and lure consumers to visit the phishing link to complete the fake tax refund request. Some phishing links direct Australians to a fake tax refund form, requiring them to input details such as their Tax File Number, credit card number and ATM pin. If a consumer completes the form and presses the ‘print’ button, these details are quickly submitted to the cybercriminals.</p>
<p>Online fraudsters are getting smarter and more sophisticated when it comes to executing their scams as consumers are becoming more aware and educated about phishing tactics. For example, rather than asking intended victims to respond by email, which many know not to do, this particular scam asks intended victims to supply their details and print off a form, even providing a mailing address so that the form can be processed.</p>
<p>To help protect personal information Symantec recommends the following:</p>
<p>Always maintain a level of caution around any messages from within a website or that appear to be sent by a website. If a user clicks on a link, double-check the actual domain that is shown at the top of the page. It’s best practice to type the direct Web address directly into your address bar rather than rely upon links from a message</p>
<p>Maintain an up-to-date browser and operating system. Use security software and check out web safety services, where a community of web users collaborate to report dangerous phishing and malware sites</p>
<p>Double check you’ve arrived at the correct destination. When clicking over to the ATO (or any site) make a habit of looking at what appears in the address line. You might not always be able to spot a fake site but in the case of this particular scam, it’s obviously not www.ato.gov.au</p>
<p>Be suspicious of requests to enter your account name and password</p>
<p>Don’t click on suspicious links or email attachments</p>
<p>Additional information can be found here: https://forums2.symantec.com/t5/Online-Fraud/Phishers-Untimely-Arrival-at-the-ATO-for-Tax-Refunds/ba-p/393706#A113</p>
<p>Press Contacts:</p>
<p>Jasmin Athwal</p>
<p>Max Australia</p>
<p>+61 2 9954 3492</p>
<p>Jasmin.Athwal@maxaustralia.com.au</p>
<p>Debbie Sassine</p>
<p>Symantec</p>
<p>+61 2 8220 7158</p>
<p>debbie_sassine@symantec.com</p>

Most Popular

Editor's Recommendations

Solution Centres

Events

View all events Submit your own security event

Latest Videos

More videos

Blog Posts

Media Release

More media release