Tax Day’s coming up

If you did your taxes, a gold star for you. And if you have not done your taxes, April 15 is a week and a half away. Sorry for the jump scare.

That’s still plenty of time to file if you haven’t yet … and plenty of time to get ripped off if you have. I’ve got your back with a last-minute checklist to avoid getting screwed by the IRS — or post-file scammers.

If you’ve been a slacker … You still have options! Filing online is your best bet. 

  • File direct if you qualify: The IRS now offers Direct File in 12 states: AZ, CA, FL, MA, NV, NH, NY, SD, TN, TX, WA and WY. If you qualify, you can file your taxes online, for free, directly with the IRS. 
  • Otherwise, stick to an online filing service: TurboTax and H&R Block offer free plans, but — fair warning — if you want extras like audit and fraud protection, expect to pay over $100.

Need more time? File for an extension through the IRS’ Free File site. Anyone is eligible, regardless of income level or filing status. Request an extension through Form 4868 and you’ll buy yourself until Oct. 15 (an extra six months!).

💡 Pro tip: An extension to file is not an extension to pay taxes. You’ll still need to estimate your tax liability and pay before April 15. You can submit estimated taxes on your online portal here!

Can’t pay? If you owe Uncle Sam and can’t pay your entire balance by April 15, your best bet to avoid penalties is to set up a payment plan with the IRS. 

If you’ve already filed … Go you! But you’re not in the clear yet. Watch out for:

  • Bogus “unclaimed refund” mailings: These letters arrive in a cardboard envelope with a notice about “your unclaimed refund.” They look legit and even have an IRS logo, but the contact information and phone number listed are fake.
  • Phishing emails from the TAP: These emails look like they’re from the Taxpayer Advocacy Panel. They try to fool you into giving up personal and financial information to claim your refund. If you get one of these, don’t respond or click — forward it straight to phishing@irs.gov.
  • Phony “fixers”: aka anyone who claims they can settle your tax debt for “pennies-on-the-dollar.” These “OIC Mills” work through the IRS’ Offer in Compromise program, then charge you thousands of dollars for info you can find for free. Most of the people they target don’t even meet the program requirements. FYI: You can see if you meet the OIC requirements here.

Track your real refund on the IRS’ Where’s My Refund page. You’ll need your Social Security or individual taxpayer ID number, filing status and the exact refund amount on your return to check your status.

😏 My accountant just quit on me … Guess she lost interest.

3 LinkedIn security features to stay protected

Your parents or grandparents may have told stories about looking for work and how they knocked on doors until they were hired. Well, it hasn’t worked that way in quite a while. You’ll be stopped by security in most office building lobbies before you can get anywhere.

Continue reading

Watch out for scam calls: Hackers stole 33 million phone numbers from two-factor authentication app Authy. The company claims accounts are A-OK, but you’d better believe those numbers are now bait for phishing attacks. If you use Authy, update to the latest version (Android and iPhone) ASAP.

Trivia

In 2008, the U.S. Department of Defense experienced the worst breach of military computers ever. Was the source a … A.) Phishing email, B.) USB flash drive, C.) Compromised employee or D.) Stolen laptop?

Find the answer here

42% of web traffic

Is generated by bots. And 65% of those are for shady stuff like spying on competition, hoarding inventory and making lookalike phishing sites. There are no laws to protect businesses or consumers against the bot army.

Double-check those “urgent” emails — they could be a scam

Imagine doing your morning Wordle (yes, I still do) when you get an urgent email from Netflix. Subject: Your subscription just expired.

After a little digging, you realize that your account never lapsed. Now, you’re stuck with a fake charge and a crook running around with your personal info. 

Continue reading

Watch out for these 6 scammy email subject lines

Last week, my calendar went crazy with event invites. These weren’t real meetings or even something fun like brunch plans — they were sketchy “appointments” from strangers. It’s just one common phishing technique you need to look out for.

Continue reading

183% increase

In phony Ozempic scams over the past four months. Look out for social media posts offering weight loss drugs at a steep discount or without a prescription. These aren’t real doctors (paywall link); they’re a phishing scam.

🚨 Do it right now: The National Security Agency (NSA) has a hot security tip: Power off and restart your phone weekly. Sounds like a “duh,” but it works to combat zero-click exploits and spear phishing. More tips (that I’ve been giving you for years): Keep your OS updated, and disable Bluetooth and location services when you don’t need ‘em.

Strikeout: A gullible 70-year-old woman was fooled by an online scammer posing as Phillies shortstop Trea Turner. After weeks of messaging with “Trea,” the scammer got the woman to send him $50,000 under the guise of “marriage problems.” The lesson: Don’t just watch out for phishing emails and DMs; you’re also a target when you comment on social media posts.

A Dell, rolling in the deep: A new data breach affects up to 49 million Dell customers. Names, physical addresses, Dell hardware and order information all were swiped. Good news: Financial deets, emails and phone numbers are safe. Stay alert for phishing scams and suspicious mail now that scammers know where you live.

Newest scam making the rounds: If you have automatic deposits enabled with your banking or financial institutions, cybercriminals can put money into your account. Why is that bad, you ask? They’ll immediately follow up with a sob story email asking you to send it back via a phishing link, effectively stealing your login info in the process. Don’t click any random links, and turn on 2FA for your banking logins.

A new  phishing email making the rounds says you’ve violated FB’s terms of service or “Community Standards.” It’ll ask you to click a link to “appeal” within 24 hours or have your account deleted. Don’t fall for it; they’re after your login details. Two tips to spot the fakes: Look for typos and emails where the sender’s email address doesn’t end in facebookmail.com.

Gone phishing: An Army veteran turned romance scammer was sentenced to three years in prison — not for stealing hearts, but for stealing money from lonely folks. His total take was $350,000. One recent divorcée gave him $100,000. Jerkface.

Ruh-roh: Roku leaked info for 576,000 accounts in their second security breach in a month. They’ve reset passwords and will notify affected users, refund any sketchy charges and make you set up 2FA. Watch out for phishing scams, phony texts and calls claiming to be Roku.

Trivia

Did you know that 91% of phishing scams originate from just one source? Is it A.) Phishing emails, B.) Compromised websites, C.) Unsecured Wi-Fi or D.) Bot networks?

Find the answer here

🚨 Bad news for Facebook Marketplace: 200,000 users just had their personal deets leaked to a hacker forum — phone numbers, emails, Facebook IDs, the works. If you use it, change your password and be on the lookout for sketchy messages. Could be a phishing attempt.

Hey, big spender: A database for Winstar, aka “the world’s biggest casino app,” was left unsecured, exposing players’ names, phone numbers, and email and home addresses. I’ll wager you’re going to end up on a ton of phishing and text spam lists.

5 texts you must ignore this holiday season

Scammers draw from a bottomless bag of tricks to get you to hand over your money. They dramatically ramp up their actions when there’s a global event or an upcoming holiday. Not even Veterans Day is safe. Tap or click here for a story that proves criminals have no shame.

Continue reading

Confidently conned: 1 in 4 Americans still fall for scams

This number blew me away: Nearly 90% of American adults are confident they can detect and prevent a scam. And yet, 27% say they’ve been a victim at some point. The numbers don’t add up.

That’s why I’m here for you. Let’s dive into some of the most common things that trip up even the tech-savviest among us and kick scammers to the curb.

Continue reading