IRS Offers Up Stupid Redirect Links To Help Phishers Steal Money

from the our-tax-money-at-work dept

Too many sites that are trying to track what people click on when leaving a site offer up "open redirect links" which basically let's a site append an outside URL to the end of one of its own URLs and have traffic flow right through to that second site. This may be useful in easily tracking what links people click on to leave a site, but they're also perfect for phishing scammers, who use them to trick people into believing that they're going to a legitimate site. And, what better site to scam people than the IRS's site? Turns out that the IRS's special govbenefits.gov site uses open redirects that phishers are already using to steal money. They convince people they're going to the IRS site, when they're simply passing right through to the scammer's site. Our tax money at work. Update: Good point made in the comments. The site itself is not actually the IRS's but another government agency's. The scam, however, is about a tax refund.
Hide this

Thank you for reading this Techdirt post. With so many things competing for everyone’s attention these days, we really appreciate you giving us your time. We work hard every day to put quality content out there for our community.

Techdirt is one of the few remaining truly independent media outlets. We do not have a giant corporation behind us, and we rely heavily on our community to support us, in an age when advertisers are increasingly uninterested in sponsoring small, independent sites — especially a site like ours that is unwilling to pull punches in its reporting and analysis.

While other websites have resorted to paywalls, registration requirements, and increasingly annoying/intrusive advertising, we have always kept Techdirt open and available to anyone. But in order to continue doing so, we need your support. We offer a variety of ways for our readers to support us, from direct donations to special subscriptions and cool merchandise — and every little bit helps. Thank you.

–The Techdirt Team


Reader Comments

Subscribe: RSS

View by: Time | Thread


  1. identicon
    Jared Anderson, 30 Nov 2005 @ 8:19pm

    Finally!

    Finally our tax moneys doing some good!

    link to this | view in thread ]

  2. identicon
    Testudo, 30 Nov 2005 @ 8:20pm

    Heh

    *scarcasm* At least its helping someone...

    link to this | view in thread ]

  3. identicon
    rizzel, 30 Nov 2005 @ 9:41pm

    No Subject Given

    The IRS steals money anyway. Seams like they are just trying to expand their horizons.

    link to this | view in thread ]

  4. identicon
    Anonymous Coward, 30 Nov 2005 @ 9:55pm

    It doesn't look like this is the IRS' fault

    The site with the open redirect is www.govbenefits.gov, not the IRS site (www.irs.gov). The article says the site is managed by the Department of Labor (of which the IRS is not part). I see nothing on the govbenefits site to contradict that. The "MEET THE MANAGEMENT TEAM" link introduces us to the "Assistant Secretary for Administration and Managemen1t at the Department of Labor".
    (I love the job titles. The head of an Administration (FAA, NASA, etc.) has the title of "Administrator". Somewhere in the federal government there's got to be an Administrative Assistant to the Assistant Administrator for Administration. . .)

    link to this | view in thread ]

  5. identicon
    discojohnson, 30 Nov 2005 @ 11:02pm

    No Subject Given

    i know that sometimes we attack the wrong end of these things, but it's my turn. i don't think it's the technology's fault, but the random dumbass that clicks a link that says they have a tax refund they need to pick up. how dumb do you have to be? considering how mainstream the phishing idea is and how much plublicity it attains, do people really still click? i'd like to think that number is right next to zero.
    the flip side to that is trying to blame the IRS. maybe we should be more concerned with webmaster and not the content owner; after all, the webmaster decided to not use keywords or make the page smart enough not to accept external requests for the page

    link to this | view in thread ]

  6. icon
    Mike (profile), 1 Dec 2005 @ 2:27am

    Re: It doesn't look like this is the IRS' fault

    The site with the open redirect is www.govbenefits.gov, not the IRS site (www.irs.gov).

    Good point. I updated the post with that info.

    link to this | view in thread ]

  7. identicon
    SB, 1 Dec 2005 @ 5:57am

    Something about a pot and a kettle

    Isn't this a bit hypocritical?

    link to this | view in thread ]

  8. identicon
    Nicholas, 1 Dec 2005 @ 8:49am

    Re: Something about a pot and a kettle

    OMG that's amazing! You rule SB!

    ------
    And I will never ever ever ever ever write a song about Sibbie.

    link to this | view in thread ]

  9. identicon
    dave, 1 Dec 2005 @ 10:21am

    Re: Something about a pot and a kettle

    You reallllllly need to include the link to that email. Now I HAVE to listen to that song again.

    link to this | view in thread ]

  10. identicon
    mojo, 12 Jul 2006 @ 10:31am

    ummm. this was a flaw on the govebenefits site not the irs.

    could you not see that in the link? by your definition, I could change the target and say "tech dirt offers up stupid redirect to help phishers steal money"

    link to this | view in thread ]


Follow Techdirt
Essential Reading
Techdirt Deals
Report this ad  |  Hide Techdirt ads
Techdirt Insider Discord

The latest chatter on the Techdirt Insider Discord channel...

Loading...
Recent Stories

This site, like most other sites on the web, uses cookies. For more information, see our privacy policy. Got it
Close

Email This

This feature is only available to registered users. Register or sign in to use it.