Skip to content

Menu

Jackson Lewis P.C.  logo
HomeAboutServicesContactSubscribe
Search
Close

Workplace Privacy, Data Management & Security Report

IRS Issues Fraud Alert to Financial Institutions Complying with FATCA

By Joseph J. Lazzarotti on September 25, 2014
Posted in Data Security, Identity Theft, Information Management, Information Risk, International, Uncategorized, Written Information Security Program

The Internal Revenue Service issued a fraud alert for international financial institutions complying with the Foreign Account Tax Compliance Act (FATCA). According to the report, scam artists posing as the IRS – through attacks known as “phishing attacks” – have fraudulently solicited financial institutions seeking account holder identity and financial account information. Financial institutions regularly face these threats, but all organizations can be subjected to them and need to have safeguards in place.

Of course, phishing attacks can come in many different forms. For example, emails that impersonate a bank ask customers to click a link that directs them to a phony website made to look like the bank’s site, but which is operated by the attackers and prompts the customers to disclose confidential information. There are some steps an organization can take to address this risk:

  • Know your systems and your IT department. Management needs to work closely with IT and other departments to identify all of the company’s sites and systems at risk. Management also needs to assess whether its IT department has the appropriate resources to address these risks – resources could include more experienced individuals and more sophisticated software and other tools.
  • Help your employees learn how to recognize a phishing attack and respond. Some employees may still think “phishing” is something you do with a worm and a hook. Companies would be wise to inform employees about these dangers and help them to recognize attacks at work and at home. This is particularly the case as more employees telecommute or otherwise work remotely. Employees also should be instructed on how to report an incident that could be an attack.
  • Have a response plan. When these kinds of attacks occur, they will require prompt action by persons ready and able to act. In developing a plan, consider the following questions. Who in the company will be altered of the attack? Is your list complete and include appropriate persons from management, IT, legal, risk management, compliance, customer/employee relations, and other relevant departments? Does the list have up to date emergency contact information? What external vendors need to be altered? Do you have a communications strategy to inform employees, customers, clients, government agencies? How should you communicate the plan internally, and how often? Have you tested the plan?

In the case of the IRS alert, it reminds these institutions that the IRS does not require financial institutions to provide specific account holder identity information or financial account information over the phone or by fax or email. Further, the IRS does not solicit FATCA registration passwords or similar confidential account access information. The alert also provides financial institutions and their representatives with information on how they should report incidents.

Tags: FATCA, Foreign Account Tax Compliance Act, Internal Revenue Service, IRS, phishing
Print:
Email this postTweet this postLike this postShare this post on LinkedIn
Photo of Joseph J. Lazzarotti Joseph J. Lazzarotti

Joseph J. Lazzarotti is a principal in the Tampa, Florida, office of Jackson Lewis P.C. He founded and currently co-leads the firm’s Privacy, Data and Cybersecurity practice group, edits the firm’s Privacy Blog, and is a Certified Information Privacy Professional (CIPP) with the…

Joseph J. Lazzarotti is a principal in the Tampa, Florida, office of Jackson Lewis P.C. He founded and currently co-leads the firm’s Privacy, Data and Cybersecurity practice group, edits the firm’s Privacy Blog, and is a Certified Information Privacy Professional (CIPP) with the International Association of Privacy Professionals. Trained as an employee benefits lawyer, focused on compliance, Joe also is a member of the firm’s Employee Benefits practice group.

In short, his practice focuses on the matrix of laws governing the privacy, security, and management of data, as well as the impact and regulation of social media. He also counsels companies on compliance, fiduciary, taxation, and administrative matters with respect to employee benefit plans.

Read more about Joseph J. Lazzarotti
Show more Show less
Related Posts
A Brief Reminder About the Florida Information Protection Act
March 4, 2025
Firings at the US Privacy and Civil Liberties Oversight Board and Potential Impact on Transatlantic Data Transfers
February 3, 2025
Happy Privacy Day: Emerging Issues in Privacy, Cybersecurity, and AI in the Workplace
January 28, 2025
Jackson Lewis JacksonLewis.com

Stay Connected

Subscribe to this blog via RSS Follow Us on Twitter Add us on Facebook View Our LinkedIn Profile

Topics

Archives

Editors

  • Jason C. Gavejian
  • Joseph J. Lazzarotti

Contributors

  • Christopher E. Hoyme
  • Damon W. Silver
  • Michael R. Bertoncini
  • Marlo Johnson Roebuck
  • Nathan W. Austin
  • Nicky Jatana
  • Jeffrey M. Schlossberg

Blog Authors Show/Hide

  • Joseph J. Lazzarotti
  • Jason C. Gavejian
  • Maya Atrakchi
  • Jackson Lewis P.C.
  • Mary T. Costigan
  • Damon W. Silver
  • Jeffrey M. Schlossberg
  • Michael R. Bertoncini
  • Robert Yang
  • Christopher E. Hoyme
  • Rachel E. Ehlers
  • Sean Paisan
  • Jody Kahn Mason
  • Frank J. Fanshawe
  • Melissa Pascualini
  • Gregory C. Brown Jr.
  • Delonie A. Plummer
  • Richard I. Greenberg
  • Jerel Pacis Agatep
  • Eric J. Felsberg
  • Cecilie E. Read
  • Catherine R. Tucciarello
  • Todd R. Dobry
  • Susan M. Corcoran
  • Dorothy Parson McDermott
  • Ryan J. Soscia
  • Ronald V. Sgambati
  • Phillip A. Baggett
  • Nathan W. Austin
  • Michelle L. Duncan
  • Joshua D. Allen
  • Jason Selvey
  • Michelle T. Hackim
  • Daniel J. Moses
  • Amanda A. Simpson
  • Yvonne Arvanitis Fossati
  • Teri Wilford Wood
  • Shannon Bettis Nakabayashi
  • Paul A. Friedman
  • Nikolas S. Dean
  • Marlo Johnson Roebuck
  • Michael H. Neifach
  • Joseph J. Lynett
  • Kevin B. Hambly
  • Jennifer Shoaf Richardson
  • Jackson Biesecker
  • Francis P. Alvarez
  • Cheyna Galloway
  • Amy L. Peck
  • Zachary A. Ahonen
  • John A. Snyder
  • Sierra Vierra
  • Stephanie L. Adler-Paindiris
  • Richard F. Vitarelli
  • Kathryn J. Russo
  • Laura A. Mitchell
  • Michael D. Ridenour
  • Leo P. Norton
  • Kevin D. Holden
  • Joshua M. Henderson
  • Jonathan J. Spitz
  • Jamie L. Levitt
  • Valerie K. Jackson
  • Howard M. Bloom
  • Greg Alvarez
  • Erik J. Winton
  • Elizabeth S. Walsh
  • David R. Golder
  • Craig W. Wiley
  • Clifford R. Atlas
  • Cindy Y. Huang
  • Christopher T. Patrick
  • Chai Williams
  • Chad P. Richter
  • Ashley Solowan
  • Angelika Avagian
  • Alec Nealon
  • Theron Velazquez
  • Terri Bowman
  • Regan Harrison
  • Paige
  • Nicky Jatana
  • Nicole A. Trotta
  • Melissa Ostrower
  • Mei Fung So
  • Lara Hamm
  • Kourtney Goebel
  • Kendall Melidosian
  • Gayla Kirkland
  • Kelly Heber
  • Katharine C. Weber
  • Jessica Poot
  • Jenifer M. Bologna
  • Jen Starken
  • Jonathan L. Crook
  • Haley Nystrom
  • Camille​​​​ Garcia‑Mendoza
  • Brendan Ward
  • Ann Albertson
  • Alitia Faccone

Recent Upates

  • Exploring California’s Proposed AI Bill
  • Litigation Trend Alert: Breach of Contract and Warranty Claims Based on Privacy Policies
  • California Announces Investigative Sweep of Location Data Industry
  • Colorado Legislature Fails to Amend Recent Artificial Intelligence Act
  • District Court Upholds Browsewrap Agreements in Pennsylvania Wiretap Class Action

Jackson Lewis

Subscribe to this blog via RSS Follow Us on Twitter Add us on Facebook View Our LinkedIn Profile
Privacy PolicyDisclaimer

About Jackson Lewis

Focused on employment and labor law since 1958, Jackson Lewis P.C.’s 1,000+ attorneys located in major cities nationwide consistently identify and respond to new ways workplace law intersects business. We help employers develop proactive strategies, strong policies and business-oriented solutions to cultivate high-functioning workforces that are engaged and stable, and share our clients’ goals to emphasize belonging and respect for the contributions of every employee.

Read More...
Copyright © 2025, Jackson Lewis P.C. All Rights Reserved.
Law blog design & platform by LexBlog LexBlog Logo