Get Transcript data breach more than three times as big, IRS announces

By Sally P. Schreiber, J.D.

The breach of the IRS’s Get Transcript system in May was much larger than first reported, the IRS admitted on Monday. An additional 220,000 taxpayers had their tax return data stolen from the site, approximately tripling the number of victims to 334,000. According to the IRS, the criminals obtained enough taxpayer-specific information from outside sources that they were able to get through the Get Transcript authentication process.

In the statement, the IRS said it was “moving aggressively to protect taxpayers whose” accounts may have been compromised. It is notifying affected taxpayers and will also offer free credit monitoring services and give those taxpayers an opportunity to enroll in the special identity theft filing program, where taxpayers get confidential identity protection personal identification numbers (IP PINs) to use to file their returns. (In related news, last week the IRS announced that it will not assert that free identify protection services provided to victims of a data breach such as this one are taxable income to the recipients.)

The IRS shut down the online Get Transcript service when the breach was discovered and the service is still unavailable. Transcripts are available using the Get Transcript by Mail service.

Sally P. Schreiber (sschreiber@aicpa.org) is a JofA senior editor.

SPONSORED REPORT

Why cybercriminals are targeting CPAs

This free report expands on the most commonly found scams, why education and specialized IT knowledge help to lessen security vulnerabilities, and why every firm should plan carefully for how it would respond to a breach.

PODCAST

How tax reform — and Excel — are changing the CPA Exam

Mike Decker, the vice president of examinations at the AICPA, discusses changes being made to the exam as a result of tax reform — and about how Excel will now be available for use on the test.