Here are five things the IRS wants you to know about phishing scams.
1. The IRS does not send unsolicited e-mails about a person’s tax account or ask for detailed personal and financial information via e-mail.
2. The IRS never asks taxpayers for their PIN numbers, passwords or similar secret access information for their credit card, bank or other financial accounts.
3. If you receive an e-mail from someone claiming to be the IRS or directing you to an IRS site,
- Do not reply to the message.
- Do not open any attachments. Attachments may contain malicious code that will infect your computer.
- Do not click on any links. If you clicked on links in a suspicious e-mail or phishing Web site and entered confidential information, visit IRS.gov and enter the search term 'identity theft' for more information and resources to help.
5. Remember, the official IRS Web site is http://www.irs.gov/. Do not be confused or misled by sites claiming to be the IRS but end in .com, .net, .org or other designations instead of .gov.
Link: Suspicious e-Mails and Identity Theft