1 week Ago
Scammers are using AI to impersonate the IRS—learn how to spot the fakes and protect your identity ...
More before it’s too late. Tax scams are nothing new, but in 2025, they’re no longer the domain of clumsy phishing emails or suspicious phone calls with thick accents. Today’s tax fraud campaigns are fueled by generative AI, deepfake audio, and smart social engineering that make scams nearly indistinguishable from legitimate IRS communications.
The game has changed—and the stakes are higher than ever. As the April 15 filing deadline approaches, cybersecurity experts are seeing a spike in sophisticated tax-themed phishing campaigns designed to exploit anxiety and urgency. According to Abhishek Karnik , head of threat research at McAfee , “Generative AI gives scammers the tools to create more realistic emails, texts, and even voice-based messages.
” A recent McAfee survey found that nearly half of Americans (48%) have received fake IRS messages, and over half (55%) believe these scams are more convincing than ever before. Generative AI is now doing the heavy lifting for cybercriminals. As Truman Kain , a security researcher at Huntress , explained, “Attackers can now clone the look and feel of an official IRS message with almost perfect accuracy.
” Gone are the days of spelling errors and awkward phrasing. Today, an attacker can feed a prompt to an AI model and generate a convincing phishing email or even a voicemail in seconds—complete with personalized details. AI-generated voice messages are especially dangerous.
Using deepfake audio, scammers can now sound like IRS agents or tax preparers, delivering threats or refund offers with chilling realism. Kain warns, “Just because it looks like the IRS is calling doesn’t mean that it is.” Phone numbers can be spoofed, and attackers are banking on the fact that victims won’t pause to verify.
Beyond email and voice, scammers are using increasingly deceptive methods to deliver malware and steal credentials. Chris Simpson , director of the National University Center for Cybersecurity, notes that malicious actors are now leveraging QR codes, URL shorteners, and infected PDFs to distribute malware strains like GuLoader, Latrodectus, and AHKBot. QR codes, in particular, are on the rise.
“They’re harder to vet than regular links,” says Kain. “You can’t hover over them to see where they lead, and they move the interaction to your phone, where people are less cautious.” Similarly, PDFs may appear harmless, but are often loaded with phishing links that redirect to fake IRS portals or credential-harvesting pages.
What makes these attacks so effective isn’t just the tech—it’s the manipulation. Scammers exploit fear, urgency, and authority to push victims into fast decisions. According to Karnik, one of the biggest red flags is urgency: “If a message asks for personal information or payment right away, it’s a red flag.
” Simpson agrees, adding that the IRS will never request payment via gift cards, wire transfers, or cryptocurrency. Legitimate IRS communication almost always comes by physical mail, not email or social media. So what can individuals do to protect themselves? Start by layering defenses: Enable Multi-Factor Authentication on all financial and tax-related accounts.
Freeze your credit with all three bureaus (Equifax, TransUnion, Experian) to prevent new accounts from being opened in your name. Apply for an IRS Identity Protection PIN to block unauthorized tax filings. “Even if someone has your Social Security number, this stops them from filing a return in your name,” says Kain.
Use identity monitoring tools to receive alerts when suspicious activity occurs. And above all, never click on links or scan QR codes in unsolicited emails or texts. “Go directly to the source,” advises Karnik.
“If you’re unsure, type in the official URL yourself. Don’t trust the message.” While tax season is peak time for these scams, the risks don’t end when April passes.
Stolen personal information is resold on dark web markets and reused for unemployment fraud, synthetic identity creation and other financial crimes throughout the year. “Staying safe online all year long doesn’t have to be complicated,” Karnik notes. Regularly checking financial accounts, setting up account alerts, and reviewing credit reports are simple steps that go a long way.
AI has transformed the cybercrime landscape, arming scammers with tools that were once the domain of Hollywood. As these threats evolve, so too must our defenses. Cybersecurity is no longer optional—it’s personal self-defense.
With layered protections, skepticism and a commitment to verifying before trusting, individuals can stay one step ahead of the scam artists who want to turn their tax season into a payday..
