ID Theft at IRS: Could Your Firm Be Next?

There's a security risk for virtually every business using technology. Not even the IRS is immune. On March 18, the nation's tax-collection agency revealed a serious security breach. According to various published reports, an IRS worker used a thumb drive to take home personal information on approximately 20,000 IRS employees, former employees, and contractors. The data includes names, Social Security numbers, and addresses. If it happened to the IRS, it can happen to you.

IRS officials say they're looking further into the matter but haven't acknowledged any major repercussions as of yet. "At this point, we have no direct evidence to indicate this personal information has been used for identity theft or other inappropriate uses," said IRS Commissioner John Koskinen in a prepared statement, as reported by the Associated Press.

Koskinen was also quick to point out that the theft didn't involve any taxpayer information. The IRS is calling the event an "isolated incident," as reported by Bloomberg, but is still treating it as a top priority. Its investigation will be conducted with assistance from the Treasury Inspector General. In an e-mail sent to employees, the IRS's head honcho wrote, "This incident is a powerful reminder to all of us that we must do everything we can to protect sensitive data – whether it involves our fellow employees or taxpayers."

Most of the staffers whose information was exposed worked at IRS offices in Pennsylvania, New Jersey, and Delaware and are no longer employed by the agency. Koskinen said that each one would be personally contacted and offered free ID theft monitoring.

The news about the theft quickly spread through Washington and resulted in more scolding of the national tax-collection agency. The IRS has already been reprimanded this past year for several missteps, including the "Tea Party scandal" involving tax-exempt applications by conservative groups and misuse of taxpayer funds for frivolous purposes.

"In the past, the IRS has released personal taxpayer information to the public, and has not been able to effectively prevent and detect identity theft," said Representative Dave Camp (R-MI), chairman of the House tax-writing committee. "This latest report is concerning. The IRS has repeatedly broken the American people's trust, and the Ways and Means Committee will take a thorough look into this incident."

Lesson to be learned: Don't think this sort of thing can't happen to you. How many workers and others in your office have easy access to sensitive information about clients? What would happen to your livelihood if someone stole this information and used it for illegal means or sold it to other criminals? Take the time to review your IT security to ensure that adequate safeguards are in place.

Related articles:

IRS Told More Needs To Be Done to Fight Identity Theft "Epidemic"
ID theft: Do I really need to worry?



You may like these other stories...

Remember the old joke about the devil showing a guy around Hell? There were great parties, swimming pools, and sumptuous food. The guy liked what he saw, lived a bad life and went to Hell when he died. Upon arrival the devil...
Due to fierce competition in the accounting industry, some CPAs may feel pressure to compete for business using pricing alone. However, this is a losing battle in the long run: Competing on price will lead to the need for...
If the thought of blogging makes you as nervous as an executive facing an IRS audit, stop worrying. You can overcome your challenges with these tips.1. Blogging is good for business. You'll benefit as your blog displays...

Already a member? log in here.

Upcoming CPE Webinars

Aug 26
This webcast will include discussions of recently issued, commonly-applicable Accounting Standards Updates for non-public, non-governmental entities.
Aug 28
Excel spreadsheets are often akin to the American Wild West, where users can input anything they want into any worksheet cell. Excel's Data Validation feature allows you to restrict user inputs to selected choices, but there are many nuances to the feature that often trip users up.
Sep 9
In this session we'll discuss the types of technologies and their uses in a small accounting firm office.
Sep 11
This webcast will include discussions of commonly-applicable Clarified Auditing Standards for audits of non-public, non-governmental entities.