W-2 Phishing, Wire Transfer Scam Targets School Districts

The Internal Tax Revenue Service (IRS) earlier this month issued an urgent alert to all employers that an extensive W-2 e-mail phishing scam has permeated the corporate sector and spread to school districts, nonprofits and others.  

“This is one of the most dangerous email phishing scams we’ve seen in a long time. It can result in the large-scale theft of sensitive data that criminals can use to commit various crimes, including filing fraudulent tax returns,” IRS Commissioner John Koskinen said in the alert. “We need everyone’s help to turn the tide against this scheme.”

How the scam works: Cyber criminals use spoofing techniques to disguise an e-mail to make it look like it comes from an executive at the employee’s company or organization. “The e-mail is sent to an employee in the payroll or human resources departments, requesting a list of all employees and their Forms W-2,” the alert said. This strategy — sometimes referred to as business e-mail compromise (BEC) or business e-mail spoofing (BES) — first appeared during last year’s tax season. This time around, however, the cyber criminals are asking payroll employees to wire transfer funds to a certain account, which has resulted in job loss and thousands of dollars lost.

The latest “State of the Phish” report from Wombat Security Technologies found that while phishing attacks lowered 10 percent overall last year, users in the education industry were still twice as likely to fall for phishing e-mails (clicking through these e-mails 30 percent of the time compared to the national average of 15 percent). These findings suggest that e-mail phishing continues to be a highly effective cyberattack that results in serious damage to a company’s and employee’s critical data and information.

The Consortium for School Networking (CoSN), which is closely monitoring the situation, has issued its own alert, directing its members to the EdTech Strategies web page with real-time updates on the situation. A list of school districts that have been impacted by the W-2 phishing and wire transfer scam is available on the web page here. For more information, watch the video report from ABC Action News below. 

About the Author

Sri Ravipati is Web producer for THE Journal and Campus Technology. She can be reached at [email protected].

Featured

  • Stock market graphs and candlesticks breaking apart with glass-like cracks

    Chinese Startup Disrupts AI Market

    A new low-cost artificial intelligence model from China is wreaking havoc in the technology sector, with tech stocks plummeting globally as concerns grow over the potential disruption it could cause.

  • interconnected glowing nodes and circuits in blue and green, forming a neural network on a dark background with a futuristic design

    Tech Giants Launch $100 Billion National AI Infrastructure Project

    OpenAI, SoftBank, and Oracle have announced a new venture, Stargate, through which they aim to build a massive AI infrastructure network across the United States. The initiative, which was announced at the White House with President Donald Trump, has been described as the "largest AI infrastructure project in history."

  • glowing digital brain made of blue circuitry hovers above multiple stylized clouds of interconnected network nodes against a dark, futuristic background

    Report: 85% of Organizations Are Leveraging AI

    Eighty-five percent of organizations today are utilizing some form of AI, according to the latest State of AI in the Cloud 2025 report from Wiz. While AI's role in innovation and disruption continues to expand, security vulnerabilities and governance challenges remain pressing concerns.

  • laptop surrounded by floating digital books and cloud-based documents

    Mississippi Department of Education Approves Imagine Learning Resources for Statewide Adoption

    The Mississippi Department of Education has added Imagine Learning's Imagine IM and Traverse solutions to its list of state-adopted high-quality instructional materials.