Security challenges

Hear from our experts on the latest threats and & to prevent them

Egress Blue Yellow 1920X253

HMRC and payroll phishing emails increase by 317% ahead of tax deadline

March 30th 2022

With the end of the UK tax year approaching, Egress researchers have detected a sharp rise in phishing scams impersonating UK tax authority HMRC and payroll software providers. Cybercriminals are taking advantage of the deadline to manipulate their victims into downloading malicious attachments. Egress VP of Threat Intelligence Jack Chapman shares his advice on how to avoid falling for a phishing attack.

Jack Chapman, VP of Threat Intelligence at Egress, explains, "We’ve seen a 317% increase in phishing scams impersonating HMRC and payroll software companies, like Xero, as cybercriminals take advantage of the end of the UK tax year. The hackers are sending out mass emails, using spoofed display names so that the email appears to be from HMRC. Individuals should take extreme caution when reading notification emails that request them to click on a hyperlink or download any attachments, as these can contain dangerous malware. HMRC do not email anyone regarding tax returns, refunds or rebates. You can find further advice regarding HMRC phishing impersonations on their website.”

You might also be interested in ...

Who are the top phishing targets in an organization?

Discover what our survey data shows about who cybercriminals are targeting with attacks.

What is a zero-day phishing attack?

Is your traditional email security solution protecting your company's communications? Zero-day attacks exploit these solutions, but protection is available.

How are legal IT leaders responding to phishing threats?

Learn why legal organizations are widely targeted by cybercriminals, the percentage of businesses paying out, and how legal IT leaders can effectively respond to phishing threats.