Fast, effortless and 100% online.
Today, we’re talking about scams. In 2020, HMRC have reported a record number of scams forwarded to them, responding to almost 850,000 referrals of suspicious messages.
At TaxScouts, the only thing that we care about more than dishing out hassle-free tax returns is your security when it comes to paying your tax bill.
Perhaps the financial strain of 2020 has taken its toll, because the sophistication (and therefore intent) of the most prevalent scams is pretty noteworthy. In fact, some of our team who have side hustles have received the texts and calls themselves!
This isn’t by any means an exhaustive list, but these are some of the more recently reported scams to look out for.
1. The COVID-19 scam
A SMS message claiming to have tracked your movement outside the house during lockdown. It suggests that you’re being fined at least £250 for your misgiving and – pièce de résistance – gives you two links to follow.
2. The faux refund
An email from “Team Gov.uk” with a hotmail email attached. As always, there’s a link to follow from the email, claiming to be a refund.
3. The suspicious rebate
Like the last email, what makes the below suspicious is the GOV UK Notify from name versus the email address attached. This is a common way to identify scams, although it is by no means fool-proof. The most tell-tale sign here is the links included.
4. The SMS
Another text, another link, another refund. Even though the sender may appear to be HMRCUK, this is not enough to believe its legitimacy.
As you can see in the above examples, some scams are easier to identify than others. But some are pretty iron-tight which is why so many people get stung. To give yourself the best chance of security against them, we’ve put together a top 7 hacks that scammers often use when they send you comms.
This can make it easier to work out what’s legitimate and what’s not.
Look out for typos when you get a suspicious-looking email or text. Often, scammers will include them deliberately to determine whether or not you’re concentrating. Anyone that misses them suggests to the scammer that they might be gullible to the scheme.
Be mindful of the ways that HMRC communicates. They will never Whatsapp you, Tweet you or contact you via any other social media unless you have messaged them via the platform first.
When it comes to SMS messages, they have confirmed that they will never use this method to notify you of a rebate, refund or fine. Basically, if it’s not a letter, stay woke. If it is online or by phone, question what’s being asked of you.
A classic technique that scammers will use is to make you think that whatever action they’re asking for is urgent. This is to make you panic and act without thinking – and in this state of mind, you’ll be more likely to fall for a scam. A recent example of this was a voicemail from “HMRC” that warned of a warrant for your arrest because of tax fraud. If you do receive this, ignore it. It’s a scam.
The numbers associated with it are those from a Malaysian dial-code and the following:
Like in the above examples, you should look out for the sender address and the sender name being different. The easiest ones to spot are where the sender is listed as someone official (e.g. HMRC or gov.uk) but the email address is clearly a personal address (e.g. [email protected]…).
This is the same with businesses contacting you by SMS. Their contact name will appear as HMRC but the number will be a personal mobile number.
When you receive an email asking you to login to your account via a link, especially if it’s to the end of claiming a refund, paying a fine or claiming a rebate, do not click it. If it’s legitimate, you should be able to go onto the HMRC website, login directly and find something related to the issue on your account.
This is the same, even more so for texts. It’s very rare for a company to text you with a direct link to something – so avoid clicking it at all costs! Like the email, if you can’t find what’s referred to in the text by going to the website directly, it doesn’t exist.
Phishing is very prevalent in the online financial world.
Phishing is the method of sending emails pretending to be from a company in order to extract sensitive information from you, such as credit/debit card details, personal information etc.
Something to be mindful of is what information you’re being asked to provide in replying to an email. It may not be a blatant question but just think before you reply, what information am I giving away when I respond? If it’s your login details, card details, address, account details and more, then think again.
A tactic that often gets people to act out of character is by being erratically aggressive. The more uncomfortable you’re made to feel, the more likely you are to do as you’re being instructed to make the aggression stop. It’s very common when you’re approached over the phone.
This tactic is used in the HMRC voicemail scam we mentioned earlier.
If you weren’t expecting the correspondence, it may not be legitimate. It’s unlikely that HMRC will contact you out of the blue with random information. Think about it. Outside of your tax code changing or being told that you’ve paid too much or too little tax (which is by letter), why do they ever contact you asking for you to take an action? HMRC characteristically does not run a speedy service, so it’s unlikely that they’ll ever ask you to do something “right now”.
If you are contacted, you can refer the scam to HMRC who will look into it for you.
Sign up for important updates, deadline reminders and basic tax hacks sent straight to your inbox.