The IRS has joined with representatives of the software industry, tax preparation firms, payroll and tax financial product processors and state tax administrators to combat identity theft refund fraud to protect the nation's taxpayers.

The Security Summit (PDF) consists of IRS, state tax agencies and the tax community, including tax preparation firms, software developers, payroll and tax financial product processors, tax professional organizations and financial institutions. Total membership includes 42 state agencies and 20 industry offices in addition to the IRS. 

The Security Summit members are organized into six work groups, each tasked with addressing an area of need and each with a co-lead from the IRS, states and industry.

In 2016, Security Summit partners agreed there was a need for a formal public-private partnership where sharing could take place in a collaborative environment based on partner-agreed rules.

In 2017, the IRS, state tax agencies and the tax industry created a public/private partnership, to facilitate information sharing consistent with applicable law, and analytics necessary to detect, prevent, and deter activities related to stolen identity refund fraud.

The ISAC purpose is to:

  • Facilitate information exchange for tax administration purposes related to identity theft tax refund fraud.
  • Provide a forum for participants to discuss real-time responses to such fraud schemes.
  • Promote the advancement of data analysis, capabilities, methodologies and strategies to detect, reduce, and prevent this type of fraud.

The ISAC issued its first Annual Report (PDF) in April 2018. It highlights key accomplishments across three measures:

  1. Levels of industry and state participation in the ISAC.
  2. Volume and quality of alert and data contributions that identify ecosystem threats.
  3. Volume and quality of ISAC data analysis to identify suspected fraud.

This report also outlines the ISAC strategic plans going forward, to ensure a tax ecosystem where taxpayers can confidently file their taxes safely and securely.

For an overview of what the Identity Theft Tax Refund Fraud (ISAC) is doing to prevent identity theft see Using a PublicPrivate Partnership to Address a Common Problem (PDF) and How the ISAC Compliments the Security Summit (PDF).

2019 National Tax Security Awareness Week

The IRS, state tax agencies and the tax industry will hold a National Tax Security Awareness Week on December 2 - December 6, 2019, to urge individual taxpayers, businesses and tax professionals to enhance their online security as identity thieves step up their efforts to steal personal and financial data ahead of the 2020 tax filing season.

  • IR-2019-200, National Tax Security Awareness Week, Day 5: Tax professionals need data protection plans; must guard against identity theft
  • IR-2019-198, National Tax Security Awareness Week, Day 4: IRS, Security Summit warns business owners about being targets for identity thieves
  • IR-2019-196, National Tax Security Awareness Week, Day 3: Creating strong passwords can protect taxpayers from identity theft
  • IR-2019-195, National Tax Security Awareness Week, Day 2: Don’t take the bait: Recognize, avoid phishing scams from identity thieves
  • IR-2019-192, National Tax Security Awareness Week begins; IRS and Security Summit partner offer Cyber Monday shopping tips to protect computers, mobile phones
  • IR-2019-185, Security Summit marks 4th National Tax Security Awareness Week; IRS announces new dates and partner toolkit to highlight identity theft precautions

Follow @IRSnews on Twitter and look for the hashtag #TaxSecurity.

  • Tax Security 2.0 - The "Taxes-Security-Together" Checklist is a Security Summit awareness campaign to call on tax professionals nationwide to take time to review their current security practices, enhance safeguards where necessary and take steps to protect their businesses from global cybercriminal syndicates prowling the Internet.
     
  • Protect Your Clients; Protect Yourself: Security 101 - Protect Your Clients; Protect Yourself: Tax Security 101 is a Security Summit awareness campaign intended to provide tax professionals with the basic information they need to better protect taxpayer data and to help prevent the filing of fraudulent tax returns.
     
  • Don't Take the Bait - The Don't Take the Bait awareness series is focused on the need for tax professionals to increase their computer security and be cautious of spear phishing scams. Tax professionals must remember that they have a legal requirement under federal law to protect taxpayer information. See also: Continuing Education Credit for Qualified Data Security Courses.
     
  • Protect Your Clients; Protect Yourself - Every tax professional in the United States -- whether a member of a major accounting firm or an owner of a one-person storefront -- is a potential target for highly sophisticated, well-funded and technologically adept cybercriminals around the world.
     
  • Taxes-Security-Together - We are asking you - taxpayers, tax professionals and businesses - to join with us to create an even stronger partnership. Our "Taxes-Security-Together" awareness campaign is an effort to better inform you about the actions you can take to protect your sensitive data.

Organizations involved in the preparation and processing of tax returns and refunds (such as software firms, tax preparation firms, payroll processors or financial institutions and/or processors of tax time financial products) and governmental tax agencies are welcome to apply for membership in the Security Summit, a collaborative effort to fight identity theft tax refund fraud. If your agency or organization meets the required Membership Criteria (PDF), please complete the Security Summit Membership Application (PDF) and submit a statement of interest describing your role, mission and functional responsibilities within the tax ecosystem. Also see the Required Criteria and Qualifications Statement of Interest Example (PDF).

If you have any questions or need additional information, please email publicliaison@irs.gov.