What makes this a Phishing message?
This is not a very convincing phish, but the attached document (not included) contained malware that would infect a computer if opened - even if clicked on accidentally. The only recourse in that situation is to rebuild the system. Avoid opening attachments from unknown sources at all costs.
Here are some of the red flags that indicate this is a phish:
- The message is purportedly from the IRS, but the sender address contains a generic "services.com" domain name
- The sender assumes the recipient will receive a tax refund, but how would they know if taxes are owed or a refund is due? This is an obvious ploy to entice the user to click, so they make sure they get their "refund"
As we prepare to start the 2016 Tax filling season, we have undergone slight changes in the filling process to make filling for your refund easier and to prevent unnecessary delays.