How did this happen?
On March 17th, multiple eFile.com users suspected that the website had been “hijacked.” BleepingComputer analyzed a sample of the PHP script seen by MalwareHunterTeam and found that it was backdoor malware that allowed the attacker to remotely access an infected device.
While some antivirus programs detected the issue, the file remained on the website as early as March 17th. Despite being alerted by multiple parties, BleepingComputer reported that eFile.com has yet to make a statement on the matter.
It’s still unclear whether the attack was successful in infecting any eFile.com visitors and customers. The incident highlights the need for individuals and businesses to take precautions and protect themselves from cyber threats, especially during tax season.
Though the full scope of the incident remains unclear, it serves as a reminder to be vigilant and stay up to date on the latest security measures. It also raises questions about the security and oversight of IRS-authorized third-party tax software providers.
View Article Sources
- IRS-authorized eFile.com tax return software caught serving JS malware — BleepingComputer
- IRS-certified free tax filing service caught spreading malware — PCWorld
- E-file Provider Services — IRS
- Electronic Filing Options for Individuals — IRS