Top Tax Scams of 2024 Your Organization Should Watch Out For

Tax Season Scams 2024As the April 15, 2024 filing deadline approaches, tax scammers are working overtime to take advantage of rushed or stressed taxpayers.

This tax season, scammers have adopted more sophisticated techniques - particularly leveraging artificial intelligence (AI) to disguise their schemes. However, remaining vigilant and taking some simple precautions can help you avoid becoming a victim.

In this post, we'll outline the most prevalent scams reported so far in 2024 and provide tips to help you protect yourself. We've directly observed the examples described, but some details have been altered to prevent enabling criminal plans. 

AI-Powered Scams Grow Slicker

Scammers continually refine old tricks using modern tools like AI. Last year marked a turning point as AI technologies let crooks churn out convincing impersonations much faster. Now, AI underpins many impersonation schemes through distorted website replicas, personalized messages, and realistic audio recordings.

While still imperfect, AI allows smaller operations to extensively mimic legitimate organizations at scale. As techniques advance, staying informed becomes vital to recognizing deception. Approach unsolicited contacts with healthy skepticism and check official sources like for authentication.

Examples from 2024

To illustrate ongoing threats, we've observed two examples from the first months of 2024 tax season:

  • Bogus Email as TurboTax - In January, an AI-generated email masqueraded as TurboTax with grammar errors and an incorrect website. Like chatbots, tells revealed a non-human created it by stringing details together without full understanding.
  • Fake IRS Website - A February scheme redirected to a replica IRS page soliciting tax IDs. Though layout resembled genuine sites, contact method and grammatical error exposed the deception with scrutiny.

Legitimate companies won't impersonate others to conduct official business. When in doubt, always verify unsolicited outreach with the source organization directly.

Top Scams to Watch Out for in 2024

  1. Malicious Email Attachments - Especially .PDF files containing viruses, ransomware, or directing to phishing pages
  2. Phishing Scams - Messages purporting to be from IRS, tax software, or related entities typically asking for money or private information
  3. Fake Charity Schemes - Scammers appeal to generosity around tax deductions but steal identities and funds instead of helping causes
  4. Robocall Imposters - AI lets scammers leave voice messages pretending to be from IRS, law enforcement or others to demand immediate payments
  5. Social Media - Profile impersonators contact targets claiming urgent tax issues that demand responses involving money, links, or details

Staying Ahead of Scammers

While evolving techniques make scamming easier, basic vigilance remains your best defense:

  • Use reputable security software to check for malware in emails and on websites.
  • Never share private information or money without verifying an unsolicited request with the company directly.
  • Know that the IRS will never demand payment through unusual methods like gift cards. Contact them to resolve issues.
  • Research charities through tools like Charity Navigator before donating.
  • Be wary of urgent messages. Scammers create a false sense of crisis to bypass caution.

By prioritizing new-school security awareness training for your users and taking time to authenticate unexpected requests, you can outwit scammers aiming to exploit taxpayers this season. 

KnowBe4 empowers your workforce to make smarter security decisions every day. Over 65,000 organizations worldwide trust the KnowBe4 platform to strengthen their security culture and reduce human risk.

McAfee has the full story

Free Phishing Security Test

Would your users fall for convincing phishing attacks? Take the first step now and find out before bad actors do. Plus, see how you stack up against your peers with phishing Industry Benchmarks. The Phish-prone percentage is usually higher than you expect and is great ammo to get budget.

PST ResultsHere's how it works:

  • Immediately start your test for up to 100 users (no need to talk to anyone)
  • Select from 20+ languages and customize the phishing test template based on your environment
  • Choose the landing page your users see after they click
  • Show users which red flags they missed, or a 404 page
  • Get a PDF emailed to you in 24 hours with your Phish-prone % and charts to share with management
  • See how your organization compares to others in your industry

Go Phishing Now!

PS: Don't like to click on redirected buttons? Cut & Paste this link in your browser:

Subscribe to Our Blog

Comprehensive Anti-Phishing Guide

Get the latest about social engineering

Subscribe to CyberheistNews