IRS Warns Taxpayers to Be Aware of Threats 

Tax season scammers are on the prowl, relentlessly targeting taxpayers and tax professionals with sophisticated phishing scams. The IRS continues to see a surge of email and text scams designed to steal personal and financial information. As part of its annual Dirty Dozen list of tax scams for 2025, the IRS highlights tactics ranging from phishing emails to misleading tax credits. 

“Scammers are relentless, and they use the guise of tax season to try tricking taxpayers into falling into a variety of traps,” said Terry Lemons, IRS communications senior adviser. “These red flags can lead to everything from identity theft to being misled into claiming tax credits for which they’re not entitled.” 

Why Phishing is a Top Threat in 2025 

Phishing scams remain a significant concern because of their widespread use and increasing sophistication. Taxpayers and tax professionals alike are at risk. Cybercriminals often pose as trusted organizations like the IRS, state tax agencies, or tax software companies. Their goal is to trick victims into divulging sensitive information. 

Two Main Types of Phishing Tactics: 

• Phishing (via Email): Fraudsters send emails that appear to be from the IRS, often promising phony tax refunds or threatening legal action for alleged tax fraud. 

• Smishing (via Text Message): Scammers send alarming texts such as “Your account has been put on hold” or “Unusual Activity Report.” The messages often include a fake “Solutions” link, aiming to trick recipients into clicking and compromising their data. 

Never click on unsolicited messages claiming to be from the IRS. These links may install malware or ransomware, locking you out of your files and systems.  

New Client Scams and Spear Phishing:  

In 2025, the IRS continues to see new client scams involving spear phishing attempts targeting tax pros.  

• Impersonation of Potential Clients: Scammers pose as prospective clients to lure tax professionals into engaging with them. 
• Malicious Links and Attachments: After initial contact, the scammer sends a harmful URL or attachment designed to compromise systems and steal sensitive information. 
• Gaining Access to Data: A successful spear phishing attack can lead to stolen client data and even the tax pro’s identity, allowing the scammer to file fraudulent returns. 

Scammers typically use poorly constructed sentences, unusual word choices, or requests that seem overly urgent. If in doubt, verify the sender’s identity before engaging. 

10 Other Warnings on the Dirty Dozen List 

Beyond phishing, the IRS warns against several other common scams. 

• Bad social media advice – Misleading or false tax guidance spread through social platforms. 
• Fake IRS Individual Online Account help – Fraudsters offering to “assist” with setting up IRS accounts. 
• Fake charities – Scammers posing as legitimate organizations to solicit donations. 
• False Fuel Tax Credit claims – Inflated or fraudulent fuel tax credit requests. 
• Credits for Sick Leave and Family Leave – Claiming credits one is not eligible for. 
• Bogus self-employment tax credit – Exploiting tax credits meant for genuine self-employed workers. 
• Improper household employment taxes – Misleading claims about tax benefits related to household employees. 
• Overstated withholding scam – Manipulating tax withholding information to obtain larger refunds. 
• Misleading offers in compromise – False promises to settle tax debt for “pennies on the dollar.” 
• Ghost tax return preparers – Preparers who don’t sign returns or provide a Preparer Tax Identification Number  

Additionally, other abusive schemes involving trusts, offshore accounts, and individual retirement arrangements remain a concern.  

How to Protect Yourself from Tax Season Phishing Scams 

1. Don’t Click Unsolicited Links: The IRS will never initiate contact via email or text. 
2. Report Suspicious Messages: Report phishing emails, texts, and calls to the IRS. 
3. Educate Your Team: Ensure your workforce knows how to recognize and report scams. 

For more tips, see our article How to Recognize Phishing Scams.