The deadline for self-assessment tax returns and to pay the tax you owe is the 31st January, so a lot of people are busy filling out tax return forms and sending them online to HM Revenue and Customs (HMRC). HMRC is the UK’s authority for tax, payments and customs with the purpose of collecting the money that pays for the UK’s public services.
With it being a busy time of the year for them, it also makes it one of the busiest times of the year for HMRC tax rebate scams, next to the end of the tax year in April.
This is where fraudsters contact victims, claiming to be from HMRC, and claim that they have paid too much tax and are due for a refund.
This isn’t a new scam, it is used by fraudsters year after year, but it is important that you are aware of them and you know how to identify them.
The two most common methods of contact that fraudsters use are emails and text messages, known as phishing scams.
It states on the Gov.uk website “HMRC never send notifications of a tax rebate or ask you to disclose personal or payment information by email or text message.” This is an important thing to remember.
Email phishing scams are one of the most common online scams as they are easy to create and fraudsters can send out thousands at a time.
Fraudsters usually get hold of people’s email addresses when data is stolen or bought from various companies with customer data, or, commonly from social media sites.
Fraudsters can use a private email account and spoof the sender email address and display name to make it appear like the email has come from HMRC.
According to HMRC, this is a small selection of email addresses that fraudsters have been using to distribute the phishing emails so it’s important to keep an eye out for these;
As you can see, they all look very realistic. HMRC do use the domain ‘@hmrc.gov.uk’. So, number one, people could easily be fooled into thinking it’s a real email and, number two, the email can easily bypass any spam filters.
Phishing emails are being continuously developed by fraudsters and they are now looking even more slick and sophisticated. Despite this, there are still certain things for you to look out for that will tell you that it is a scam.
If you receive a phishing email related to HMRC, you should forward it (without clicking on any of the links) to phishing@hmrc.gsi.gov.uk and delete the email. This will help to assist with HMRC’s investigations into fraud.
Alternatively, you can report the email to Action Fraud UK.
HMRC only very occasionally issue text messages to their customers. This is often for debt management purposes where they will text customers explaining what they need to do if they are behind with payments.
HMRC have stated that “these messages will neve request personal or financial information”.
Just like scam emails, the fraudsters are able to spoof the display name to show ‘HMRC’ instead of a phone number. According the Gov.uk, people are 9 times more likely to fall for SMS scams than any others as they can appear more legitimate.
These scams are fairly straightforward and can easily fool people as there isn’t a lot there to make it look like a scam. But just remember the most important thing that HMRC will never contact you in this way to offer you a tax refund.
If you receive a scam text message relating to HMRC, then you can forward the details of the text to 60599.
Alternatively, you can email phishing@hmrc.gsi.gov.uk or report it to Action Fraud UK.
There have also been cases reported of fraudsters cold calling their victims instead of texting or emailing. The fraudster will call from an untraceable phone number and they will request that you give them your personal information and bank card over the phone so they can process the tax refund.
There have also been cases where fraudsters have claimed to their victim that HMRC is filing a law suit against them for failing to make payments. They urge that you must make an immediate payment to rectify the situation.
If you can’t verify the identity of the caller, then you should hang up the phone immediately.
Another HMRC scam to be aware of is via social media direct messaging, they have been identified on both Facebook and Twitter.
Fraudsters are messaging people directly making the same tax refund claim.
These messages will never be from a genuine HMRC account as they would never contact their customers with this method.
If you receive one of these messages, don’t engage with them and report it to HMRC.
If you think you have given any of your personal or banking information to a fraudster in response to a scam email or text message, then you can contact the HMRC security team.
You should include very brief details of the information you have given, such as your name, email address and bank card number (but don’t disclose your details in the email).
Contact them via: security.custcon@hmrc.gsi.gov.uk
Find it useful? Please share!
Find it useful? Please share!
Last updated: 23 January 2020 | © KIS Bridging Loans 2024 | Terms & Conditions