Good Morning
Good Morning

State Tax Department: Be proactive about cyber security

Cyber crooks and identity thieves constantly evolve along

Cyber crooks and identity thieves constantly evolve along with the defenses to stop them, expersts say. Credit: Getty Images/iStockphoto / Balefire9

The state Department of Taxation and Finance is sharing tips to help New Yorkers detect scams, protect sensitive information, and report suspicious activity, in recognition of National Cyber Security Awareness Month.

“The tactics and schemes used by cyber crooks and identity thieves evolve along with the defenses to stop them, which is why even outside of the personal income tax filing season, it’s critical to remain vigilant,” acting Commissioner Nonie Manion said. “By taking proactive security measures now, taxpayers can reduce the likelihood that they’ll become victims of identity theft.”

Here are some tips from the department for taking a proactive approach to cyber security:

  • Be wary of calls demanding payment. Only divulge personal information — including Social Security numbers — to those you trust. The state Tax Department and the IRS will contact you by mail first and will never threaten you over the phone or demand that payment be made through MoneyGram, Western Union or other wire transfer services, or through cash or gift cards.
  • Avoid phishing scams. Taxpayers may receive emails with authentic-looking government logos or with links to websites designed to look legitimate. These may offer assistance in settling fake tax issues, but they are really designed to steal sensitive information. The state and IRS will never request personal or financial information by email.
  • Protect your computer. Ensure that your computer is secure when accessing your financial accounts online by looking for “https” — with an “s” after the “http” — in the website address. Also, if you’re disposing of an old computer, tablet, or cellphone, you should “wipe” the drives of any electronic product you trash or sell, to ensure you remove all personal data.
  • Use strong passwords, and a different password for each of your accounts. Use a combination of upper- and lowercase letters as well as numbers and symbols when creating a new password. Don’t use your name, birth date or common words.
  • Use secure wireless networks. Always encrypt your wireless network with a strong password. Never access your personal accounts on a public Wi-Fi network.
  • Review accounts and statements. Check your credit card and banking statements regularly for suspicious transactions.
  • Review credit reports annually to spot any new lines of credit that you didn’t apply for or authorize. This can be a sign that a thief has stolen your identity and, for example, opened up a credit card in your name.
  • Think before you post. The information and photos you share via social media, including current and past addresses or names of relatives, can provide scammers possible answers to your security questions or otherwise help them access your accounts.
  • Secure tax documents. Store hard copies of your federal and state tax returns in a safe place. Digital copies also should be safeguarded with strong passwords or on external hard drives in a secure location. Shred documents that contain personal information before discarding.
  • Review and respond to all state Tax Department communication. Any unexpected correspondence from the Tax Department can be a potential sign that your identity has been stolen.
  • Report it. If you believe you’ve been contacted by a con artist posing as someone from the state Tax Department, visit the Tax Department’s report fraud, scams, and identity theft webpage ( to learn how to report the incident.

State & Region