HomeLatest ThreadsGreatest ThreadsForums & GroupsMy SubscriptionsMy Posts
DU Home » Latest Threads » Forums & Groups » Main » General Discussion (Forum) » "Scary stuff" U...

Thu Feb 5, 2015, 05:02 PM

 

"Scary stuff" UPDATE: the hack was TurboTax (NEWER UPDATE)

Last edited Thu Feb 5, 2015, 09:50 PM - Edit history (3)

First dribble of info is coming from Utah:

Utah Tax Commission flags thousands of potential fake returns
http://www.sltrib.com/home/2145693-155/utah-tax-comission-flags-thousands-of

Snip: Commission spokesman Charlie Roberts said it found that personal information has been stolen from previous returns filed through TurboTax. He said the commission is not yet sure if other programs and companies were affected, nor if the data was stolen from the cloud or some other means.

...but my source tells me as many as 15 other states could have been affected, and that whoever pulled this hack likely got the run of all of TurboTax's information. That might even mean Quickbooks, but I don't know.

Millions of people have been using TurboTax for years. I used it for years. It's a treasure trove of incredibly detailed tax and financial information...now in the wind.

It's a bad one, in my opinion.

Update: All the hackers have done so far is use 2013 return information to file bogus 2014 returns, and direct the money to prepaid debit cards. It seems as though they are targeting taxpayers who are getting big refunds, and ignoring the smaller returns. They do, theoretically, have access to a vast pile of identity information, but whether or not they will do anything with that remains to be seen.

NEW Update: The Salt Lake Tribune re-re-edited their article to extract the name "TurboTax" from the "TurboTax was hacked" article. Given the fact that little ol' me got love from an Intuit PR flack, I think some muscles are being flexed.

For the record, the paragraph in the Trib read: "Commission spokesman Charlie Roberts said it found that personal information has been stolen from previous returns filed through TurboTax. He said the commission is not yet sure if other programs and companies were affected, nor if the data was stolen from the cloud or some other means."

...and there's this:

Minnesota Stops Accepting TurboTax Filings Due to Possible Fraud
Updated: 02/05/2015 8:15 PM

http://kstp.com/article/stories/s3699235.shtml

Stay tuned.

212 replies, 58618 views

Reply to this thread

Back to top Alert abuse

Always highlight: 10 newest replies | Replies posted after I mark a forum
Replies to this discussion thread
Arrow 212 replies Author Time Post
Reply "Scary stuff" UPDATE: the hack was TurboTax (NEWER UPDATE) (Original post)
WilliamPitt Feb 2015 OP
nc4bo Feb 2015 #1
etherealtruth Feb 2015 #120
JaneyVee Feb 2015 #148
NightWatcher Feb 2015 #2
notadmblnd Feb 2015 #7
PatrickforO Feb 2015 #117
RKP5637 Feb 2015 #39
NightWatcher Feb 2015 #45
quakerboy Feb 2015 #90
android fan Feb 2015 #3
jeff47 Feb 2015 #13
NYC_SKP Feb 2015 #4
Hassin Bin Sober Feb 2015 #5
RKP5637 Feb 2015 #40
Rex Feb 2015 #6
Downwinder Feb 2015 #31
BeanMusical Feb 2015 #43
CanonRay Feb 2015 #8
El Supremo Feb 2015 #23
blackspade Feb 2015 #9
Warpy Feb 2015 #10
BumRushDaShow Feb 2015 #49
FailureToCommunicate Feb 2015 #144
BumRushDaShow Feb 2015 #187
FailureToCommunicate Feb 2015 #206
BumRushDaShow Feb 2015 #207
Fred Sanders Feb 2015 #11
Glassunion Feb 2015 #36
Fred Sanders Feb 2015 #37
Glassunion Feb 2015 #38
belcffub Feb 2015 #191
randome Feb 2015 #194
belcffub Feb 2015 #197
randome Feb 2015 #198
notadmblnd Feb 2015 #12
Kelvin Mace Feb 2015 #16
notadmblnd Feb 2015 #20
IDemo Feb 2015 #30
notadmblnd Feb 2015 #41
Egnever Feb 2015 #71
lumberjack_jeff Feb 2015 #14
F4lconF16 Feb 2015 #19
Kelvin Mace Feb 2015 #15
Xyzse Feb 2015 #17
mountain grammy Feb 2015 #22
Demeter Feb 2015 #47
quakerboy Feb 2015 #94
dreamnightwind Feb 2015 #113
bobwelch Feb 2015 #128
jberryhill Feb 2015 #135
brooklynite Feb 2015 #18
pugetres Feb 2015 #21
yodermon Feb 2015 #24
Android3.14 Feb 2015 #44
yodermon Feb 2015 #161
murielm99 Feb 2015 #25
Wellstone ruled Feb 2015 #26
WilliamPitt Feb 2015 #27
raven mad Feb 2015 #28
Mnemosyne Feb 2015 #29
TBF Feb 2015 #42
billh58 Feb 2015 #65
shanti Feb 2015 #32
abelenkpe Feb 2015 #33
PatrynXX Feb 2015 #34
TNNurse Feb 2015 #35
WilliamPitt Feb 2015 #46
C Moon Feb 2015 #48
ananda Feb 2015 #50
TurboTaxChristine Feb 2015 #51
WilliamPitt Feb 2015 #52
uppityperson Feb 2015 #55
berni_mccoy Feb 2015 #58
PeaceNikki Feb 2015 #63
DeSwiss Feb 2015 #86
PeaceNikki Feb 2015 #89
DeSwiss Feb 2015 #92
PeaceNikki Feb 2015 #93
WilliamPitt Feb 2015 #91
OilemFirchen Feb 2015 #95
WilliamPitt Feb 2015 #97
OilemFirchen Feb 2015 #99
Rex Feb 2015 #138
OilemFirchen Feb 2015 #175
Duval Feb 2015 #204
onecaliberal Feb 2015 #108
AtheistCrusader Feb 2015 #112
AllyCat Feb 2015 #142
billh58 Feb 2015 #54
PeaceNikki Feb 2015 #62
WilliamPitt Feb 2015 #79
Rex Feb 2015 #139
Orsino Feb 2015 #153
Rex Feb 2015 #155
Orsino Feb 2015 #157
Rex Feb 2015 #160
Orsino Feb 2015 #162
Rex Feb 2015 #164
jberryhill Feb 2015 #174
randome Feb 2015 #181
jberryhill Feb 2015 #182
randome Feb 2015 #188
woo me with science Feb 2015 #121
Pacifist Patriot Feb 2015 #123
cwydro Feb 2015 #192
Rex Feb 2015 #140
Rex Feb 2015 #141
snooper2 Feb 2015 #180
myrna minx Feb 2015 #145
jberryhill Feb 2015 #176
City Lights Feb 2015 #196
randome Feb 2015 #205
SmittynMo Feb 2015 #53
berni_mccoy Feb 2015 #56
TheProgressive Feb 2015 #57
berni_mccoy Feb 2015 #59
TheProgressive Feb 2015 #61
Agschmid Feb 2015 #103
TheProgressive Feb 2015 #106
Agschmid Feb 2015 #107
Fla Dem Feb 2015 #147
mwooldri Feb 2015 #189
uppityperson Feb 2015 #60
berni_mccoy Feb 2015 #64
Dr Hobbitstein Feb 2015 #66
PeaceNikki Feb 2015 #67
WilliamPitt Feb 2015 #68
Dr Hobbitstein Feb 2015 #70
MannyGoldstein Feb 2015 #69
Dr Hobbitstein Feb 2015 #73
TheProgressive Feb 2015 #80
Dr Hobbitstein Feb 2015 #85
TheProgressive Feb 2015 #88
Dr Hobbitstein Feb 2015 #127
WilliamPitt Feb 2015 #72
suffragette Feb 2015 #74
PeaceNikki Feb 2015 #75
cwydro Feb 2015 #81
PeaceNikki Feb 2015 #82
cwydro Feb 2015 #83
suffragette Feb 2015 #84
PeaceNikki Feb 2015 #87
suffragette Feb 2015 #109
PeaceNikki Feb 2015 #118
WilliamPitt Feb 2015 #76
suffragette Feb 2015 #78
Iliyah Feb 2015 #111
WilliamPitt Feb 2015 #77
uppityperson Feb 2015 #96
Trajan Feb 2015 #100
uppityperson Feb 2015 #110
PeaceNikki Feb 2015 #122
myrna minx Feb 2015 #125
suffragette Feb 2015 #146
myrna minx Feb 2015 #149
suffragette Feb 2015 #154
marym625 Feb 2015 #98
Trajan Feb 2015 #101
Silent3 Feb 2015 #102
Agschmid Feb 2015 #104
Silent3 Feb 2015 #105
HeiressofBickworth Feb 2015 #114
marym625 Feb 2015 #115
Dr Hobbitstein Feb 2015 #131
marym625 Feb 2015 #137
billh58 Feb 2015 #200
Kablooie Feb 2015 #116
mnhtnbb Feb 2015 #119
brooklynite Feb 2015 #124
Skidmore Feb 2015 #126
Dr Hobbitstein Feb 2015 #129
PeaceNikki Feb 2015 #130
Dr Hobbitstein Feb 2015 #133
Skidmore Feb 2015 #132
berni_mccoy Feb 2015 #136
WilliamPitt Feb 2015 #156
Skidmore Feb 2015 #169
Dr Hobbitstein Feb 2015 #171
billh58 Feb 2015 #202
Skidmore Feb 2015 #203
Sunlei Feb 2015 #134
MineralMan Feb 2015 #143
randome Feb 2015 #166
MineralMan Feb 2015 #178
Fuddnik Feb 2015 #150
suffragette Feb 2015 #151
WilliamPitt Feb 2015 #152
snooper2 Feb 2015 #177
nc4bo Feb 2015 #158
suffragette Feb 2015 #163
Orsino Feb 2015 #159
Dr Hobbitstein Feb 2015 #172
mak3cats Feb 2015 #173
suffragette Feb 2015 #179
mak3cats Feb 2015 #183
suffragette Feb 2015 #193
yodermon Feb 2015 #186
suffragette Feb 2015 #190
PasadenaTrudy Feb 2015 #165
mnhtnbb Feb 2015 #167
WilliamPitt Feb 2015 #168
mnhtnbb Feb 2015 #170
berni_mccoy Feb 2015 #184
berni_mccoy Feb 2015 #185
Mira Feb 2015 #195
suffragette Feb 2015 #199
jwirr Feb 2015 #201
Dr Hobbitstein Feb 2015 #208
deaniac21 Feb 2015 #209
mollaeilaw May 2018 #210
TexasTowelie May 2018 #211
backtoblue May 2018 #212

Response to WilliamPitt (Original post)

Thu Feb 5, 2015, 05:04 PM

1. Oh shit! nt

Reply to this post

Back to top Alert abuse Link here Permalink


Response to nc4bo (Reply #1)

Fri Feb 6, 2015, 07:16 AM

120. I second that!!!

Reply to this post

Back to top Alert abuse Link here Permalink


Response to nc4bo (Reply #1)

Fri Feb 6, 2015, 10:29 AM

148. My mother received a fake IRS call yesterday...

 

Saying she's being sued by the IRS and she can pay over the phone by debit card. She knew it was fake and reported it buy it sounded professional, automated message.

ETA: And yes, she uses turbo tax software.

Reply to this post

Back to top Alert abuse Link here Permalink


Response to WilliamPitt (Original post)

Thu Feb 5, 2015, 05:05 PM

2. I'd be willing to bet that there's info out there from all of us

Between Target, Home Despot, Turbo Tax, and the hundreds of other hacks and such, I'd be willing to be that all of our data is out there. What is to ultimately done with it is still up in the air. I'm expecting one BIG hack one day, where everyone's info just vanishes.

Reply to this post

Back to top Alert abuse Link here Permalink


Response to NightWatcher (Reply #2)

Thu Feb 5, 2015, 05:10 PM

7. that might not be a bad thing

Everyone having their slates wiped clean.

Reply to this post

Back to top Alert abuse Link here Permalink


Response to notadmblnd (Reply #7)

Fri Feb 6, 2015, 03:59 AM

117. A sort of modern jubilee!

Reply to this post

Back to top Alert abuse Link here Permalink


Response to NightWatcher (Reply #2)

Thu Feb 5, 2015, 06:35 PM

39. Yeah, it's like they are building a dossier on everyone as they gather bits and pieces of

information from all of these various hacks for the big hack one day.

Reply to this post

Back to top Alert abuse Link here Permalink


Response to RKP5637 (Reply #39)

Thu Feb 5, 2015, 07:01 PM

45. All of our utilities have been sporadically hit as well

I think one day some group or country is just going to turn us off and erase all of our records and identities.

Reply to this post

Back to top Alert abuse Link here Permalink


Response to NightWatcher (Reply #2)

Thu Feb 5, 2015, 10:20 PM

90. That info is tooo many places

Given the number of different organizations keeping data on us, and then combine that with the fact that most of them, i am sure have duplication of storage, I really cant think of any realistic way to make it all disappear short of something that kills ALL of the hard drives, all at once. Including the ones that got filled, detached from any computer, and are tucked away in a storage vault somewhere.

More likely we continue to see greater and greater incursions into the financial interests of individuals, then the government uses the fear of that to make policy that is supposed to keep our identity safe but mostly just inconveniences us and makes it harder for local businesses like family farms or small independant restaurants, etc to continue on doing business.

Reply to this post

Back to top Alert abuse Link here Permalink


Response to WilliamPitt (Original post)

Thu Feb 5, 2015, 05:06 PM

3. Faithful TurboTax user..

 

wonder if my information has been leaked?

My credit was already terrible before the hack, and I don't know how much they can make it worse....

Reply to this post

Back to top Alert abuse Link here Permalink


Response to android fan (Reply #3)

Thu Feb 5, 2015, 05:14 PM

13. I used the same identity theft protection plan for a while.

Got my credit score down so low that it was useless to thieves.

"Unfortunately" I'm in a better financial position now.

Reply to this post

Back to top Alert abuse Link here Permalink


Response to WilliamPitt (Original post)

Thu Feb 5, 2015, 05:07 PM

4. Noted. TurboTax in on the List.

 

Reply to this post

Back to top Alert abuse Link here Permalink


Response to WilliamPitt (Original post)

Thu Feb 5, 2015, 05:08 PM

5. Any chance they will file my taxes AND pay them?

Reply to this post

Back to top Alert abuse Link here Permalink


Response to Hassin Bin Sober (Reply #5)

Thu Feb 5, 2015, 06:36 PM

40. I want to sign up too!

Reply to this post

Back to top Alert abuse Link here Permalink


Response to WilliamPitt (Original post)

Thu Feb 5, 2015, 05:10 PM

6. Wow. I guess all that outsourcing really helped keep America secure!

 

Reply to this post

Back to top Alert abuse Link here Permalink


Response to Rex (Reply #6)

Thu Feb 5, 2015, 06:02 PM

31. We have a National Security Agency for that.

Reply to this post

Back to top Alert abuse Link here Permalink


Response to Downwinder (Reply #31)

Thu Feb 5, 2015, 06:44 PM

43. Lol!

Reply to this post

Back to top Alert abuse Link here Permalink


Response to WilliamPitt (Original post)

Thu Feb 5, 2015, 05:10 PM

8. I use Turbo Tax every year

but I have NEVER electronically filed, and now I'm glad I didn't.

Reply to this post

Back to top Alert abuse Link here Permalink


Response to CanonRay (Reply #8)

Thu Feb 5, 2015, 05:31 PM

23. Same here.

I relieve my frustration by shoving the envelopes in a mail box.

Reply to this post

Back to top Alert abuse Link here Permalink


Response to WilliamPitt (Original post)

Thu Feb 5, 2015, 05:11 PM

9. I'm glad I have never used them.....

I've stuck with paper returns for this very reason.

Reply to this post

Back to top Alert abuse Link here Permalink


Response to WilliamPitt (Original post)

Thu Feb 5, 2015, 05:11 PM

10. This is why I am a Luddite.

Reply to this post

Back to top Alert abuse Link here Permalink


Response to Warpy (Reply #10)

Thu Feb 5, 2015, 07:36 PM

49. Another Luddite here

Downloaded the fillable PDF forms, filled them out electronically, printed them, signed them, attached docs to them, folded them up, put them in an appropriately-addressed business-sized envelope with 2 stamps, and stuck the wad in the mail this morning. It may take a couple months but eventually I should (hopefully) get my paper check.

Reply to this post

Back to top Alert abuse Link here Permalink


Response to BumRushDaShow (Reply #49)

Fri Feb 6, 2015, 09:57 AM

144. "That's the way to do it. That's old school."


"No school like the old school."

Reply to this post

Back to top Alert abuse Link here Permalink


Response to FailureToCommunicate (Reply #144)

Fri Feb 6, 2015, 12:26 PM

187. Or really "old school"



Reply to this post

Back to top Alert abuse Link here Permalink


Response to BumRushDaShow (Reply #187)

Fri Feb 6, 2015, 09:20 PM

206. LOVED them in Muppets Treasure Island!!

Reply to this post

Back to top Alert abuse Link here Permalink


Response to FailureToCommunicate (Reply #206)

Fri Feb 6, 2015, 09:34 PM

207. I loved them in anything.

They were just hilarious.

Reply to this post

Back to top Alert abuse Link here Permalink


Response to WilliamPitt (Original post)

Thu Feb 5, 2015, 05:12 PM

11. Meanwhile the ACA websites are all properly secured, it is private corporations that refuse to pay for

proper security. That should be clear enough by now.

Remember Sony and their cheapskate security?

For taxes, use the snail mail, secure as it gets.

Reply to this post

Back to top Alert abuse Link here Permalink


Response to Fred Sanders (Reply #11)

Thu Feb 5, 2015, 06:19 PM

36. What is proper security in your mind?

How much does it cost?

What does it entail?

Reply to this post

Back to top Alert abuse Link here Permalink


Response to Glassunion (Reply #36)

Thu Feb 5, 2015, 06:26 PM

37. More than now.

Reply to this post

Back to top Alert abuse Link here Permalink


Response to Fred Sanders (Reply #37)

Thu Feb 5, 2015, 06:27 PM

38. I appriciate your non-answer.

Reply to this post

Back to top Alert abuse Link here Permalink


Response to Fred Sanders (Reply #11)

Fri Feb 6, 2015, 12:57 PM

191. yeah because public universities have not been hacked

I work in IT security for a Government agency... trust me all data stored in a computer that is online can be hacked... its not if but when...

Reply to this post

Back to top Alert abuse Link here Permalink


Response to belcffub (Reply #191)

Fri Feb 6, 2015, 01:05 PM

194. Absolutely.

 

You can't be open to the world and 100% secure at the same time. And even if you think you are 100% secure, an insider can easily get at the data.
[hr][font color="blue"][center]You should never stop having childhood dreams.[/center][/font][hr]

Reply to this post

Back to top Alert abuse Link here Permalink


Response to randome (Reply #194)

Fri Feb 6, 2015, 01:19 PM

197. There are so many vectors of attack

it is just a mater of time... we continually pay companies to try and hack us... We pay them to try and get us to slip up... they send people in to the office who say they are from the phone company... or repair company... with fake id's and forged paper work...

and in one of those tests... someone let the person into the data center... I can't remember what the cover story was but it doesn't really mater...

Corporations are spending a fortune on info security... they do not want to be the next Sony, target or HD...

Do you remember the target hack... it came from a outside vender having access to targets systems... I remember everyone saying how stupid of them for allowing an outside company that access... but I know today the Government entity I work for has many outside venders who can access our network remotely... it is only a mater of time...

Reply to this post

Back to top Alert abuse Link here Permalink


Response to belcffub (Reply #197)

Fri Feb 6, 2015, 01:38 PM

198. The company I work for is going through a reorganization but this time it's a GOOD reorg.

 

They are talking about holding periodic hack-a-thons to make our apps more secure. A long overdue idea.
[hr][font color="blue"][center]Don't ever underestimate the long-term effects of a good night's sleep.[/center][/font][hr]

Reply to this post

Back to top Alert abuse Link here Permalink


Response to WilliamPitt (Original post)

Thu Feb 5, 2015, 05:13 PM

12. article doesn't say whether it the free version or the purchased program.

Anyone know?

Reply to this post

Back to top Alert abuse Link here Permalink


Response to notadmblnd (Reply #12)

Thu Feb 5, 2015, 05:23 PM

16. I don't think it would matter

 

your data would be in there database if you filed electronically. If you didn't, you are probably safe either way.

Reply to this post

Back to top Alert abuse Link here Permalink


Response to Kelvin Mace (Reply #16)

Thu Feb 5, 2015, 05:29 PM

20. the tax program I purchase does not keep copies of my returns on their servers.

I download and install it every year. I do submit (supposedly secure connection) via the link in the purchased program though. I do know that with some of the free versions, you have to log into their site and your info is saved on their servers and not the preparer's hard disk.

it might make a difference?

Reply to this post

Back to top Alert abuse Link here Permalink


Response to notadmblnd (Reply #20)

Thu Feb 5, 2015, 06:00 PM

30. This may be of interest

TurboTax's database knows your secrets

TurboTax customers are already outraged with a stealth 50% price hike in the software this year. But more secrets are coming out that might be equally surprising to some.

Intuit (INTU), the company that makes TurboTax, maintains a database containing users’ Social Security numbers, names and other personal data — even for customers using the desktop version of the software who save their files on their own hard drives.

The existence of the database was revealed to users when Intuit set up a website for customers to ask for their $25 refunds from the software price increase. The site at turbotax.intuit.com/25back requires users to enter their Social Security numbers to get their $25 refunds. That indicates that personal tax data is, indeed, being stored by Intuit.

http://americasmarkets.usatoday.com/2015/01/27/turbotaxs-database-knows-your-secrets/

Reply to this post

Back to top Alert abuse Link here Permalink


Response to IDemo (Reply #30)

Thu Feb 5, 2015, 06:39 PM

41. Thanks!

Reply to this post

Back to top Alert abuse Link here Permalink


Response to notadmblnd (Reply #12)

Thu Feb 5, 2015, 09:29 PM

71. My bet is

 

The pirated version.

Reply to this post

Back to top Alert abuse Link here Permalink


Response to WilliamPitt (Original post)

Thu Feb 5, 2015, 05:16 PM

14. Okay, I thought you were being hyperbolic earlier.

 

Sorry about that. Oh shit indeed.

Reply to this post

Back to top Alert abuse Link here Permalink


Response to lumberjack_jeff (Reply #14)

Thu Feb 5, 2015, 05:29 PM

19. Thanks for your sig line, I've been looking for that. nt

Reply to this post

Back to top Alert abuse Link here Permalink


Response to WilliamPitt (Original post)

Thu Feb 5, 2015, 05:22 PM

15. Dems have tried for years

 

to set up the tax system so that the IRS does your taxes and just sends you a form to sign (for the VAST majority of tax payers who have relatively simple returns). TurboTax has lobbied to prevent this for over a decade. Would save the IRS and the consumers billions and certainly would have been more secure than a this system where people trust third parties with very sensitive data.

Reply to this post

Back to top Alert abuse Link here Permalink


Response to Kelvin Mace (Reply #15)

Thu Feb 5, 2015, 05:26 PM

17. That would be so awesome.

I mean, they already did that for me once when I overpaid.

Reply to this post

Back to top Alert abuse Link here Permalink


Response to Kelvin Mace (Reply #15)

Thu Feb 5, 2015, 05:31 PM

22. Yes, too many corporations take a piece of the action in tax filings

to ever make it streamlined and simple...

Reply to this post

Back to top Alert abuse Link here Permalink


Response to Kelvin Mace (Reply #15)

Thu Feb 5, 2015, 07:17 PM

47. NO, it wouldn't be any more secure

 

Why on earth would you think that? Don't you get the message? NOTHING is secure. NOTHING.

First of all, it is not secure from the NSA, FBI, CIA and probably that new baby, Homeland Security. This government doesn't know the meaning of privacy, 4th Amendment, or security.

Secondly, it is not secure from anyone who can hack a computer, if it is on a computer. Doesn't even matter if the computer is never connected to the Internet.

And forget about the sanctity of the mail. They've got that covered, too.

This is what Edward Snowden has been trying to tell us for over a year.

Reply to this post

Back to top Alert abuse Link here Permalink


Response to Demeter (Reply #47)

Thu Feb 5, 2015, 10:36 PM

94. Yes, It would be more secure. Not perfectly secure, *more* secure.

Your data it wouldn't be more secure from the various government spy agencies. But its not secure from those ****'s anyway. I guarantee that when you submit your return, even if you use the snail mail and pieces of paper you filled out with a pen, out of sight of any webcam or smartphone, the IRS then enters that info into computers. To which NSA, CIA, et al have already backdoored their access. So having the IRS do the return to start with would not make your Tax return any more or less secure in that regard. Same point applies to your comment re mail.

As for computer hacking... I challenge you to show that the TurboTax held info is more secure than the IRS info, from "anyone who can hack a computer". I would be willing to bet that the IRS databases are more secure than the Turbotax Corporate databases. So having the IRS do it instead of turbo tax would increase the data security.

Would having the IRS do what it does anyway make your data perfectly secure? No. But it would, pretty much by definition, increase the security of the data to cut a third party (with a corporate bottom line) out of the process.

Reply to this post

Back to top Alert abuse Link here Permalink


Response to quakerboy (Reply #94)

Fri Feb 6, 2015, 12:54 AM

113. I agree, and well said

Reply to this post

Back to top Alert abuse Link here Permalink


Response to Demeter (Reply #47)

Fri Feb 6, 2015, 08:34 AM

128. It would be as secure s the computer room physical access

If the computer was not hooked to the internet then it could not be hacked - any unauthorized access would have to be done hands on with stolen credentials etc.

Reply to this post

Back to top Alert abuse Link here Permalink


Response to Demeter (Reply #47)

Fri Feb 6, 2015, 08:47 AM

135. I've heard the Social Security Administration has been tracking people's income for YEARS!

Reply to this post

Back to top Alert abuse Link here Permalink


Response to WilliamPitt (Original post)

Thu Feb 5, 2015, 05:29 PM

18. We use TT but we file by mail...

Reply to this post

Back to top Alert abuse Link here Permalink


Response to WilliamPitt (Original post)

Thu Feb 5, 2015, 05:30 PM

21. The hacks are on the state level rather than federal?

 

It would be good to know if the people affected had any issues with their federal returns too.

Reply to this post

Back to top Alert abuse Link here Permalink


Response to WilliamPitt (Original post)

Thu Feb 5, 2015, 05:34 PM

24. just changed my password just in case

i hadn't been hacked fwiw

Reply to this post

Back to top Alert abuse Link here Permalink


Response to yodermon (Reply #24)

Thu Feb 5, 2015, 06:45 PM

44. And you know this...how?

 

Perhaps you have the ability to see electrons?

Reply to this post

Back to top Alert abuse Link here Permalink


Response to Android3.14 (Reply #44)

Fri Feb 6, 2015, 11:16 AM

161. true dat. However the cases I read indicated that the user logged on, and saw that their taxes had

already been filed for 2014.
from the link:
It also said it was contacted by some taxpayers who tried to file returns through TurboTax who received a message that their return had already been filed

Wasn't the case for me, which of course doesn't mean I haven't been hacked.

Reply to this post

Back to top Alert abuse Link here Permalink


Response to WilliamPitt (Original post)

Thu Feb 5, 2015, 05:38 PM

25. I am glad we don't do our own taxes.

We have farm property, and it can get complicated. I convinced my husband years ago to get the taxes done early, so we could send the information in for our kids' student loans. Even a small business like ours can be complex, when it comes to filing.

We are going in soon. I am going to ask the guy what he knows about all this. I don't want bland reassurances, either, but facts. This is dangerous ground!

Reply to this post

Back to top Alert abuse Link here Permalink


Response to WilliamPitt (Original post)

Thu Feb 5, 2015, 05:50 PM

26. This one is going to be a Biggee.

Intuit is the parent of Trubo Tax,and in saying that,it is their propriety software which is marketed as a accounting package for small and medium business's. Have used Trubo for many years,and have had to file in Utah,this should concern anyone who has done business in the eighteen or so states affected. This could be the hack of all hacks. When we seen this come across the screen a couple hours ago,we notified our Credit Union of this do to the fact we use the direct deposit on refunds.

Reply to this post

Back to top Alert abuse Link here Permalink



Response to WilliamPitt (Original post)

Thu Feb 5, 2015, 05:57 PM

28. Well, crap.

Of course, our income was so low, and the return so penurious, I don't think anyone would bother with it.

Reply to this post

Back to top Alert abuse Link here Permalink


Response to WilliamPitt (Original post)

Thu Feb 5, 2015, 05:57 PM

29. They've gotten all of us since at least 2005 - 1,012,730,026 RECORDS BREACHED:

1,012,730,026 RECORDS BREACHED
(Please see explanation about this total.)
from 4,487 DATA BREACHES made public since 2005

Quite a list -

http://www.privacyrights.org/data-breach

Reply to this post

Back to top Alert abuse Link here Permalink


Response to Mnemosyne (Reply #29)

Thu Feb 5, 2015, 06:40 PM

42. That covers us -

we used Turbo tax up until last year. Of course if anyone wants to pay off our student loans for us they are welcome to them ...

Reply to this post

Back to top Alert abuse Link here Permalink


Response to Mnemosyne (Reply #29)

Thu Feb 5, 2015, 08:57 PM

65. A search for TurboTax

on this site produces "no results."

Reply to this post

Back to top Alert abuse Link here Permalink


Response to WilliamPitt (Original post)

Thu Feb 5, 2015, 06:09 PM

32. phew!

i used tax act, but they could be hacked too...

Reply to this post

Back to top Alert abuse Link here Permalink


Response to WilliamPitt (Original post)

Thu Feb 5, 2015, 06:11 PM

33. Was part of the sony hack

Glad I don't use turbo tax.

Reply to this post

Back to top Alert abuse Link here Permalink


Response to WilliamPitt (Original post)

Thu Feb 5, 2015, 06:13 PM

34. dad used to use it

until brother and I trusted H&R Block. that and it was both easier to understand and cheaper

Reply to this post

Back to top Alert abuse Link here Permalink


Response to WilliamPitt (Original post)

Thu Feb 5, 2015, 06:15 PM

35. And people do not understand

Why I do not bank or pay bills online.

Reply to this post

Back to top Alert abuse Link here Permalink


Response to WilliamPitt (Original post)

Thu Feb 5, 2015, 07:14 PM

46. UPDATE

 

All the hackers have done so far is use 2013 return information to file bogus 2014 returns, and direct the money to prepaid debit cards. It seems as though they are targeting taxpayers who are getting big refunds, and ignoring the smaller returns. They do, theoretically, have access to a vast pile of identity information, but whether or not they will do anything with that remains to be seen.

Reply to this post

Back to top Alert abuse Link here Permalink


Response to WilliamPitt (Original post)

Thu Feb 5, 2015, 07:21 PM

48. edited comment. I meant the orig reply for an ACA post...but I am a Turbo Tax user...

scary stuff, indeed.

Reply to this post

Back to top Alert abuse Link here Permalink



Response to WilliamPitt (Original post)

Thu Feb 5, 2015, 07:51 PM

51. TurboTax has not been hacked

Hi Folks,
Christine from TurboTax here. I want to assure you that TurboTax has not been hacked. We continuously monitor our systems in search of suspicious activity. And through that process, we have found no evidence of a data breach. In addition, we asked a third-party security firm – FireEye/Mandiant – to do an independent assessment. All evidence indicates that those initiating these attacks obtained information outside the tax filing process.

During this tax season, we have seen a significant increase in attempts by criminals to use stolen identity information such as names and social security numbers obtained from other sources outside the tax preparation process to file fraudulent state tax returns. This illegal activity originates outside the tax preparation process and uses TurboTax as the vehicle to commit this crime.

We will have more information coming on this issue, but I wanted to assure you that our customer's data is safe.

If you've been a victim of identity theft, we've established a dedicated 800 number where customers impacted by tax fraud can obtain further information with serially trained identity protection agents.

-Christine Morrison
TurboTax Communications

Reply to this post

Back to top Alert abuse Link here Permalink


Response to TurboTaxChristine (Reply #51)

Thu Feb 5, 2015, 07:53 PM

52. So

 

...the Salt Lake Trib had it wrong? My guy in the biz whose whole management team is cloistered with Intuit reps is wrong?

Explain, please. 8,000 fraudulent returns in one state alone.

Reply to this post

Back to top Alert abuse Link here Permalink



Response to uppityperson (Reply #55)

Thu Feb 5, 2015, 08:20 PM

58. Looks like the original article was edited

The quote that will pasted has been changed to the following:
Commission spokesman Charlie Roberts said it found that personal information has been stolen from previous returns filed through third-party software.
.
It previously said turbo tax.

Reply to this post

Back to top Alert abuse Link here Permalink


Response to WilliamPitt (Reply #52)

Thu Feb 5, 2015, 08:44 PM

63. 28 fraudulent, 8,000 flagged as potentially.

That's what it says.

Reply to this post

Back to top Alert abuse Link here Permalink


Response to WilliamPitt (Reply #52)

Thu Feb 5, 2015, 10:05 PM

86. My question is......

 

...how is it that less than 3 hours after your OP on this matter, TuboTax is dead-on-the-case and knows about YOUR post here at DU and begins damage-control operations.

- Hmmmm......

Reply to this post

Back to top Alert abuse Link here Permalink


Response to DeSwiss (Reply #86)

Thu Feb 5, 2015, 10:09 PM

89. Because they have Google?



Ffs, it's 2015. Much smaller, even mid size companies monitor the internet constantly for discussion of their brand. The reply here isn't that shocking.

Welcome to the internet.

Reply to this post

Back to top Alert abuse Link here Permalink


Response to PeaceNikki (Reply #89)

Thu Feb 5, 2015, 10:24 PM

92. Then we'd be better off maybe......

 

...if they'd monitor their system's security better and put their resources there, instead of wasting personnel to work exclusively on covering their asses due to their fuckups.

- Then maybe these kinds of things wouldn't happen, FFS

Reply to this post

Back to top Alert abuse Link here Permalink


Response to DeSwiss (Reply #92)

Thu Feb 5, 2015, 10:28 PM

93. Marketing people protect the brand. There are security breach notification laws

if they were breached, we'll know.

It doesn't sound like they were breached though. It sounds like identity thieves use their product to file fraudulent returns. There is a difference.

Reply to this post

Back to top Alert abuse Link here Permalink


Response to DeSwiss (Reply #86)

Thu Feb 5, 2015, 10:22 PM

91. I'm a likeable guy

 

People seek me out.

Reply to this post

Back to top Alert abuse Link here Permalink


Response to WilliamPitt (Reply #91)

Thu Feb 5, 2015, 10:45 PM

95. ... who doesn't grasp the simple concept of Secondary Sources.

You might want to bone up on "retraction" as well.

Reply to this post

Back to top Alert abuse Link here Permalink


Response to OilemFirchen (Reply #95)

Thu Feb 5, 2015, 10:51 PM

97. The Salt Lake Trib and ABC News out of Minneapolis

 

...for starters.

That's two sources, plus my source.

?

Reply to this post

Back to top Alert abuse Link here Permalink


Response to WilliamPitt (Reply #97)

Thu Feb 5, 2015, 11:06 PM

99. Not for your initial "scoop", apparently.

I'm guessing your other "sources" relied on your "guy" as well. Maybe you were their source. Whatevs. That's not second-sourcing, that's clusterfucking.

BTW, per your update at least the Trib has edited their story. You're doubling down.

Weird, this new "journalism".

Reply to this post

Back to top Alert abuse Link here Permalink


Response to OilemFirchen (Reply #99)

Fri Feb 6, 2015, 09:27 AM

138. Fans can be so fickle!

 

You love him, you hate him. You love to hate him. Fans are such fickle people.

Reply to this post

Back to top Alert abuse Link here Permalink


Response to Rex (Reply #138)

Fri Feb 6, 2015, 12:00 PM

175. What can I say?

I paid for J-School by selling used cars.

Still verklempt that there's no evidence of an Intuit data breach. Holding out hope for my idol, though!

Reply to this post

Back to top Alert abuse Link here Permalink


Response to WilliamPitt (Reply #91)

Fri Feb 6, 2015, 04:56 PM

204. So, please let us know when you're coming back to NC! :) nt

 

Reply to this post

Back to top Alert abuse Link here Permalink


Response to DeSwiss (Reply #86)

Thu Feb 5, 2015, 11:46 PM

108. It got tweeted. And she replied

Reply to this post

Back to top Alert abuse Link here Permalink


Response to DeSwiss (Reply #86)

Fri Feb 6, 2015, 12:47 AM

112. Damage control is a real thing.

People pay good money to employ it.

Reply to this post

Back to top Alert abuse Link here Permalink


Response to DeSwiss (Reply #86)

Fri Feb 6, 2015, 09:49 AM

142. She posted the same comment at dKos

Reply to this post

Back to top Alert abuse Link here Permalink


Response to TurboTaxChristine (Reply #51)

Thu Feb 5, 2015, 08:01 PM

54. Thank you for this information.

After just a cursory web search I found that this is not a new problem, and that TurboTax has been warning people about identity theft for several years.

As a longtime Intuit customer, I feel very confident that your products are indeed safe and secure.

Reply to this post

Back to top Alert abuse Link here Permalink


Response to TurboTaxChristine (Reply #51)

Thu Feb 5, 2015, 08:40 PM

62. Thank you for clarifying this misinformation.

Reply to this post

Back to top Alert abuse Link here Permalink


Response to TurboTaxChristine (Reply #51)

Thu Feb 5, 2015, 09:50 PM

79. *ahem*

 

Minnesota Stops Accepting TurboTax Filings Due to Possible Fraud
Updated: 02/05/2015 8:15 PM

http://kstp.com/article/stories/s3699235.shtml

Reply to this post

Back to top Alert abuse Link here Permalink


Response to WilliamPitt (Reply #79)

Fri Feb 6, 2015, 09:28 AM

139. What is even funnier are the people believing a 1 post nobody

 

over their favorite author! Some of your biggest fans are so fickle!

Reply to this post

Back to top Alert abuse Link here Permalink


Response to Rex (Reply #139)

Fri Feb 6, 2015, 10:47 AM

153. Still waiting on my Rove indictment here.

It's not a sin to be wrong, or for a source to have been wrong, nor for the real story to become more complicated as time goes on. It's early yet.

Reply to this post

Back to top Alert abuse Link here Permalink


Response to Orsino (Reply #153)

Fri Feb 6, 2015, 10:53 AM

155. Well you big time fans are just going to have to wait.

 

Since you won't believe links to news sites. Then again none of you really care about what Pitt writes...you all just like being huge fans and nothing more.

Reply to this post

Back to top Alert abuse Link here Permalink


Response to Rex (Reply #155)

Fri Feb 6, 2015, 11:01 AM

157. I'm not sure which vague, initial report to "believe."

Belief will probably come later, after more detailed evidence. I don't use Turbo Tax, but I know people who do, and would like to know if it really was hacked.

Reply to this post

Back to top Alert abuse Link here Permalink


Response to Orsino (Reply #157)

Fri Feb 6, 2015, 11:14 AM

160. Well forbes believes it now.

 

Reply to this post

Back to top Alert abuse Link here Permalink


Response to Rex (Reply #160)

Fri Feb 6, 2015, 11:18 AM

162. I'm beginning to believe it, too.

Temporarily halting e-filing is trivially easy to do, and a fine panic button to hit.

I'm more persuaded by the lack of competing explanations this morning.

Reply to this post

Back to top Alert abuse Link here Permalink


Response to Orsino (Reply #162)

Fri Feb 6, 2015, 11:20 AM

164. When an entire state halts filling, I tend to think something is up too.

 

If the only sources on this issue were from CT sites, I would dismiss this as CT talk.

Reply to this post

Back to top Alert abuse Link here Permalink


Response to WilliamPitt (Reply #79)

Fri Feb 6, 2015, 12:00 PM

174. What do you suppose that means?


Does it mean an internal breach of TurboTax, or an external breach of the computers of TurboTax users?

Reply to this post

Back to top Alert abuse Link here Permalink


Response to jberryhill (Reply #174)

Fri Feb 6, 2015, 12:10 PM

181. Or, if the data is stored in the cloud, a breach of that company's servers.

 

Or, if stored with a third-party vendor, a breach of that company's servers. It's still jumping the gun to say that TurboTax is to blame. Maybe they are but...maybe they aren't.

"Scary stuff" is premature, IMO, especially when automatically applied to TT without some evidence to support it.
[hr][font color="blue"][center]"Everybody is just on their feet screaming 'Kill Kill Kill'! This is [strike]hockey[/strike] Conservative values!"[/center][/font][hr]

Reply to this post

Back to top Alert abuse Link here Permalink


Response to randome (Reply #181)

Fri Feb 6, 2015, 12:14 PM

182. Will Pitt apparently has information we do not

Reply to this post

Back to top Alert abuse Link here Permalink


Response to jberryhill (Reply #182)

Fri Feb 6, 2015, 12:32 PM

188. Well, that's just assumed, of course.

 


[hr][font color="blue"][center]Stop looking for heroes. BE one.[/center][/font][hr]

Reply to this post

Back to top Alert abuse Link here Permalink


Response to TurboTaxChristine (Reply #51)

Fri Feb 6, 2015, 07:20 AM

121. "...our customer's data is safe."

"...our customer's data is safe."


Which one?



Reply to this post

Back to top Alert abuse Link here Permalink


Response to woo me with science (Reply #121)

Fri Feb 6, 2015, 07:55 AM

123. LOL! And some people think grammar is unimportant.

Reply to this post

Back to top Alert abuse Link here Permalink


Response to Pacifist Patriot (Reply #123)

Fri Feb 6, 2015, 01:00 PM

192. I saw that too.

Pathetic.

Reply to this post

Back to top Alert abuse Link here Permalink


Response to woo me with science (Reply #121)

Fri Feb 6, 2015, 09:30 AM

140. Those two guys in accounting.

 

Everyone else is fuuuuuuuuuuuuuuucked. But you know...a one count poster is believed over Pitt...his fans are such fickle people!

Reply to this post

Back to top Alert abuse Link here Permalink


Response to TurboTaxChristine (Reply #51)

Fri Feb 6, 2015, 09:32 AM

141. What a load of horseshit, thank you for signing up just so you could lie to us.

 

Whoever you really are.

Reply to this post

Back to top Alert abuse Link here Permalink



Response to TurboTaxChristine (Reply #51)

Fri Feb 6, 2015, 09:59 AM

145. I've been on hold for nearly an hour on the "help" line - 1.800.944.8596.

Those that are tittering and tongue clicking about this - trying to make it about Will Pitt - clearly aren't affected. Those of us who *may be* are taking this seriously - considering there isn't any information forthcoming and the "help" line is of no "help" at all.

Reply to this post

Back to top Alert abuse Link here Permalink


Response to TurboTaxChristine (Reply #51)

Fri Feb 6, 2015, 12:01 PM

176. So what?


That doesn't mean that TT software and data, installed on your customers' machines, is safe.

Reply to this post

Back to top Alert abuse Link here Permalink


Response to TurboTaxChristine (Reply #51)

Fri Feb 6, 2015, 01:15 PM

196. LOL! Welcome TTC!



Nice try!

Reply to this post

Back to top Alert abuse Link here Permalink


Response to City Lights (Reply #196)

Fri Feb 6, 2015, 05:25 PM

205. And it turns out she was correct. Still feeling smug?

 


[hr][font color="blue"][center]I'm always right. When I'm wrong I admit it.
So then I'm right about being wrong.
[/center][/font][hr]

Reply to this post

Back to top Alert abuse Link here Permalink


Response to WilliamPitt (Original post)

Thu Feb 5, 2015, 07:54 PM

53. Snowden is right

I have been in IT for many years. ANYTIME you use your computer, you take the risk of someone spying on you and your data. Unfortunately, I saw this happening 2 decades ago. I saw everything going digital, which in itself, is risky. Encryption of data is fairly safe, but not 100%. There is always someone out there trying to find ways to get to your data. Nothing is really 100% safe. They can hack your camera and mic, see your data on your hard drive, and with "cloud" technology, your data can be hacked at anytime without your knowledge. What makes this scarier, a lot of companies are using cloud technology. Word of advice for laptop users. Be sure to cover your cam with tape.

If you ask me, at this stage in the game, the only defense we have is to beef up encryption and firewall security. You can also reduce your online ordering.

To date, I have not been hacked, or encountered a breach of data. But beware, it can happen at anytime without your knowledge, or permission. Limit ordering online, setup alarms on all your accounts, and check your accounts daily. Getting a service like life lock can be beneficial.

Remember, with the right hacked data, ANYONE can be YOU online!!

Reply to this post

Back to top Alert abuse Link here Permalink


Response to WilliamPitt (Original post)

Thu Feb 5, 2015, 08:13 PM

56. Nice scoop Will.

Reply to this post

Back to top Alert abuse Link here Permalink


Response to WilliamPitt (Original post)

Thu Feb 5, 2015, 08:18 PM

57. Ok... Why is *anybody* storing their tax returns on a Turbotax server?

 

Or using a computer connected to the Internet to do their taxes....

I use Turbotax. I load it to my 'non-internet' machine and do my taxes. I do
not use e-file. I mail it in.

Don't you wonder what the Turbotax people do with everyone's personal
tax information? Income, investments, house(s), expenses... They know everything about you.

Know this - everything you do on the internet is known. Backing up your files to the 'cloud'...? hmmmm
Think they go thru your files? Of course they do...

Reply to this post

Back to top Alert abuse Link here Permalink


Response to TheProgressive (Reply #57)

Thu Feb 5, 2015, 08:27 PM

59. I don't think you have a choice

If you file your return with TT the data is kept by them. This is the default behavior. I suspect you could ask them not to. But I also suspect they would keep it for potential audit (they have an audit protection service) and also for their own data mining.

Reply to this post

Back to top Alert abuse Link here Permalink


Response to berni_mccoy (Reply #59)

Thu Feb 5, 2015, 08:36 PM

61. Well, like I wrote, I just use the Turbotax program.

 

Here is what I do...

I go to Costco and buy Turbotax. I load it to my personal computer that is
*never* connected to the Internet. For updates, I use Turbotax 'manual update'. With
manual update, I load the update to my internet machine and copy it to a thumb drive.
Then I load it on my personal computer.

I do my taxes and then print it out and mail it to the IRS.

Been doing this for 14-20 years...

Reply to this post

Back to top Alert abuse Link here Permalink


Response to TheProgressive (Reply #61)

Thu Feb 5, 2015, 11:29 PM

103. Not all of us have an air gapped system.

Hell I did my taxes on my phone this year.

Reply to this post

Back to top Alert abuse Link here Permalink


Response to Agschmid (Reply #103)

Thu Feb 5, 2015, 11:38 PM

106. I guess we are even....

 

I do not have a cell phone....!

Reply to this post

Back to top Alert abuse Link here Permalink


Response to TheProgressive (Reply #106)

Thu Feb 5, 2015, 11:39 PM

107. Haha yes sounds like we are!

Reply to this post

Back to top Alert abuse Link here Permalink


Response to berni_mccoy (Reply #59)

Fri Feb 6, 2015, 10:24 AM

147. So the easy fix is DON"T LET TT file your return. Print it out and file it yourself. nt

Reply to this post

Back to top Alert abuse Link here Permalink


Response to Fla Dem (Reply #147)

Fri Feb 6, 2015, 12:45 PM

189. More specifically: don't do it online.

Getting the Turbotax program and using a non-connected PC to complete your taxes doing it can give people a sense of security. Going to Turbotax.com or using the Internet portion of the program opens the door a smidgen for your data to be stolen.

I must say that no system of data storage is 100% safe. There's only relative safety. Mail can still be stolen, homes and offices can be broken into, etc.

Reply to this post

Back to top Alert abuse Link here Permalink


Response to WilliamPitt (Original post)

Thu Feb 5, 2015, 08:33 PM

60. Recommendation to you Will, since the article has now been edited and a person from TT has posted

though of course anyone could say they were that, it might behoove you to edit your OP since it appears you may be spreading false rumor of TT being hacked.

I doubt you will but wanted to throw this out anyway.

Reply to this post

Back to top Alert abuse Link here Permalink



Response to WilliamPitt (Original post)

Thu Feb 5, 2015, 09:03 PM

66. Your link has no mention of TurboTax.

Can't find anything to corroborate that, either. However, this is from 3 days ago in MN.

http://www.kare11.com/story/news/investigations/2015/02/02/identity-thieves-targeting-tax-refunds/22769445/

I think you may have jumped the gun here, Will. Being first to isn't always best.

Reply to this post

Back to top Alert abuse Link here Permalink


Response to Dr Hobbitstein (Reply #66)

Thu Feb 5, 2015, 09:09 PM

67. It did but was updated. But it didn't say TT was hacked.

It definitely seems like am irresponsible jump that has a response in thread.

Reply to this post

Back to top Alert abuse Link here Permalink


Response to Dr Hobbitstein (Reply #66)

Thu Feb 5, 2015, 09:23 PM

68. It was there three hours ago.

 

Quote:

"Commission spokesman Charlie Roberts said it found that personal information has been stolen from previous returns filed through TurboTax. He said the commission is not yet sure if other programs and companies were affected, nor if the data was stolen from the cloud or some other means."

Develop your own conclusions as to how that happened.

Reply to this post

Back to top Alert abuse Link here Permalink


Response to WilliamPitt (Reply #68)

Thu Feb 5, 2015, 09:26 PM

70. I'm going out on a limb and say that things have developed

and they have new information, or that Charlie Roberts was using the word TurboTax as a catch-all or was misquoted. No news sources anywhere of a TurboTax hack. I'm thinking that would be HUGE news.

Reply to this post

Back to top Alert abuse Link here Permalink


Response to WilliamPitt (Original post)

Thu Feb 5, 2015, 09:25 PM

69. This is why I print and mail my Turbotaxed return

 

Computer security ain't.

Reply to this post

Back to top Alert abuse Link here Permalink


Response to MannyGoldstein (Reply #69)

Thu Feb 5, 2015, 09:34 PM

73. The mail is less secure than the internet.

The vast majority of identity theft happens through things like stealing wallet/purse, mail-theft, and picking through garbage. When it is on the internet, it's usually scammers sending fake bank emails and things of that nature. Very little of it involves being hacked.

Reply to this post

Back to top Alert abuse Link here Permalink


Response to Dr Hobbitstein (Reply #73)

Thu Feb 5, 2015, 09:55 PM

80. Really Doc, the USPS is less secure than the internet?

 

Bad try...

Reply to this post

Back to top Alert abuse Link here Permalink


Response to TheProgressive (Reply #80)

Thu Feb 5, 2015, 10:02 PM

85. Actually, yes.

All someone has to do is walk by your mailbox and steal it's contents to get your info. And the fact that every person who touches your mail in between it's sender and recipient is a security risk.

Hacking is a bit more specialized and sophisticated. Something your average identity thief is not.

http://www.identitytheftjournal.com/common-causes-identity-theft/
http://blog.equifax.com/credit/top-causes-of-identity-theft-not-the-internet-yet/
http://www.libertypowercorp.com/leading-cause-id-theft/

Reply to this post

Back to top Alert abuse Link here Permalink


Response to Dr Hobbitstein (Reply #85)

Thu Feb 5, 2015, 10:07 PM

88. Funny that you don't hear of massive security breaches from the USPS...

 

But you do hear about all the security breaches from the internet....

Have you hear of the Anthem internet hack that just happened?

Reply to this post

Back to top Alert abuse Link here Permalink


Response to TheProgressive (Reply #88)

Fri Feb 6, 2015, 08:32 AM

127. You hear about mass indentity theft.

There was an identity theft ring broken up last year where a bunch of college kids raided mailboxes and stole wallets and purses, then used the info to file fake tax returns. They ended up with over $400,000 without ever using the internet. I'm not saying that it doesn't happen on the internet, but the internet is NOT the major cause of it. The majority of people who commit identity theft are not part of some sophisticated hacker ring, they're common criminals who steal physical things and get new documentation made.

A box at the side of the street is not exactly what we call secure (ie, mailbox). And yes, I heard about the Anthem hack, and also heard that they didn't get anything of real value from it.

Reply to this post

Back to top Alert abuse Link here Permalink


Response to WilliamPitt (Original post)

Thu Feb 5, 2015, 09:31 PM

72. NEW UPDATE

 

The Salt Lake Tribune re-re-edited their article to extract the name "TurboTax" from the "TurboTax was hacked" article. Given the fact that little ol' me got love from an Intuit PR flack right here on DU, I think it's safe to say some muscles are being flexed.

For the record, the paragraph in the Trib read: "Commission spokesman Charlie Roberts said it found that personal information has been stolen from previous returns filed through TurboTax. He said the commission is not yet sure if other programs and companies were affected, nor if the data was stolen from the cloud or some other means."

Stay tuned.

Reply to this post

Back to top Alert abuse Link here Permalink


Response to WilliamPitt (Original post)

Thu Feb 5, 2015, 09:34 PM

74. Minnesota Stops Accepting TurboTax Filings Due to Possible Fraud

Minnesota Stops Accepting TurboTax Filings Due to Possible Fraud
Updated: 02/05/2015 8:15 PM

http://kstp.com/article/stories/s3699235.shtml

The Minnesota Department of Revenue is no longer accepting tax returns submitted using TurboTax because of potential fraudulent activity.
According to the department, some Minnesota taxpayers recently found when they logged in to file their tax return, they saw their return had already been filed.



Looking for more info and just saw this report. So, problem in more than one state?

Reply to this post

Back to top Alert abuse Link here Permalink


Response to suffragette (Reply #74)

Thu Feb 5, 2015, 09:37 PM

75. Weird... the article states there were 2 known cases in MN.

Reply to this post

Back to top Alert abuse Link here Permalink


Response to PeaceNikki (Reply #75)

Thu Feb 5, 2015, 09:58 PM

81. MSM loves this kind of news.

So if it's true, we'll be hearing about it soon.

Reply to this post

Back to top Alert abuse Link here Permalink


Response to cwydro (Reply #81)

Thu Feb 5, 2015, 10:00 PM

82. There are also security breach notification laws in 47 states that would require we would.

Reply to this post

Back to top Alert abuse Link here Permalink


Response to PeaceNikki (Reply #82)

Thu Feb 5, 2015, 10:01 PM

83. There ya go. nt

Reply to this post

Back to top Alert abuse Link here Permalink


Response to PeaceNikki (Reply #75)

Thu Feb 5, 2015, 10:02 PM

84. Yeah, it says two noticed by people when they went to file

Another article has a little more info:

http://www.twincities.com/localnews/ci_27470400/minnesota-revenue-officials-halt-filings-by-turbotax-citing

Of the 267,000 Minnesota tax returns already filed, the department flagged "a couple thousand" returns that had used TurboTax, in order to review them. Deputy commissioner Terri Steenblock said the returns were flagged solely because they had used TurboTax.

Department officials said they had no additional information Thursday evening relating to the potential fraud and added that the problem wasn't limited to Minnesota. They added that their own systems and data have not been breached.

"We are aware of other states that are aware of potentially fraudulent activity," noted Steenblock.



Interesting that she said "states" and not 'another state.' I wonder if the states affected are sharing info?


Reply to this post

Back to top Alert abuse Link here Permalink


Response to suffragette (Reply #84)

Thu Feb 5, 2015, 10:05 PM

87. It sounds like identity thieves are using TT to file fraudulent returns,

but nobody has said TT was "hacked" except Pitt. There's a difference. If they were, there are security breach notification laws that compel them to disclose.

Reply to this post

Back to top Alert abuse Link here Permalink


Response to PeaceNikki (Reply #87)

Thu Feb 5, 2015, 11:47 PM

109. Well, Minnesota isn't accepting only TT and it looks like TT will have hotline up tomorrow

Seems like a pretty specific response by Minnesota.

Reply to this post

Back to top Alert abuse Link here Permalink


Response to suffragette (Reply #109)

Fri Feb 6, 2015, 06:50 AM

118. That does not mean there was a security breach at TT.

In fact, they are specifically saying there was not. They are compelled by law to disclose if there was.

Reply to this post

Back to top Alert abuse Link here Permalink


Response to suffragette (Reply #74)

Thu Feb 5, 2015, 09:38 PM

76. As many as 18 states

 

if my source is on the money.

Reply to this post

Back to top Alert abuse Link here Permalink


Response to WilliamPitt (Reply #76)

Thu Feb 5, 2015, 09:45 PM

78. Yikes! I hope they do more than put out another "do this to protect yourself" PSA

since it seems to me it's the maga-corporations who keep having major breaches, regardless of how much longer and more complex we all are make our passwords.

Reply to this post

Back to top Alert abuse Link here Permalink


Response to WilliamPitt (Reply #76)

Thu Feb 5, 2015, 11:58 PM

111. 19 or more

Reply to this post

Back to top Alert abuse Link here Permalink


Response to suffragette (Reply #74)

Thu Feb 5, 2015, 09:40 PM

77. Well ain't that some shit.

 

Reply to this post

Back to top Alert abuse Link here Permalink


Response to WilliamPitt (Reply #77)

Thu Feb 5, 2015, 10:49 PM

96. Yet none of the articles except for the original updated/corrected ones say "TT hacked".

Reply to this post

Back to top Alert abuse Link here Permalink


Response to uppityperson (Reply #96)

Thu Feb 5, 2015, 11:17 PM

100. You are going to be around here again, right ?

 

Let's see how this story progresses ... I am curious what will be true, and what will not be true ... Aren't you ?

Reply to this post

Back to top Alert abuse Link here Permalink


Response to Trajan (Reply #100)

Thu Feb 5, 2015, 11:51 PM

110. Yes, I am very interested, just think that posting someplace was hacked without evidence

is irresponsible journalism. I know there is the desire to scoop others on a story, but not by posting what appears to be libelous statements. Being first to break a story vs defamation and potential liability to this website.

Reply to this post

Back to top Alert abuse Link here Permalink


Response to uppityperson (Reply #110)

Fri Feb 6, 2015, 07:24 AM

122. Yeah, and let's all fondly remember the "scoop" the OP pitched us in '06

He was quite confident of his sources then, too. Couple the OP's history of that irresponsible "reporting" event (and the nasty way he treated the doubters then) with the fact that there are laws which compel companies to disclose security breaches and a statement in this thread from said company denying such, and we have a lot of reason to dismiss this as well.

Reply to this post

Back to top Alert abuse Link here Permalink


Response to suffragette (Reply #74)

Fri Feb 6, 2015, 08:09 AM

125. Per WCCO in Minneapolis, you can call 1.800-944.8596

with questions about your Minnesota return.

What's weird is Turbo Tax offered to prepare Minnesota state tax for free this year. Normally it's $30 or so.

I e-filed federal, but still opted to paper file Minnesota, so I have no idea if I'm affected and I have no way of checking by logging on either. *Sigh* I guess I have to wait until 8 AM so I can be put on hold.

http://minnesota.cbslocal.com/2015/02/05/minnesota-stops-accepting-turbotax-returns-due-to-fraud/

Reply to this post

Back to top Alert abuse Link here Permalink


Response to myrna minx (Reply #125)

Fri Feb 6, 2015, 10:18 AM

146. I hope all is ok

I'm not in Minnesota and my state doesn't have state income tax.
But any of us could be hit by a similar breach and it bothers me how much of our info is floating away in 'the cloud' and accessible to thieves.

Reply to this post

Back to top Alert abuse Link here Permalink


Response to suffragette (Reply #146)

Fri Feb 6, 2015, 10:29 AM

149. Thanks. You're so thoughful. Sigh - I've been on hold for 90 minutes. I just hung up.

If this isn't a big deal, why the delay? Why aren't they forthcoming? This is atrocious customer service. I've used Turbo Tax for years - never again. Snail mail for me. It's the not knowing that's tough. Do I change passwords? What do I do?

I guess if you're a customer of Turbo Tax, you are expected to wait on hold all day.

Reply to this post

Back to top Alert abuse Link here Permalink


Response to myrna minx (Reply #149)

Fri Feb 6, 2015, 10:52 AM

154. Now it looks like the 800 number is for ALL states affected

I found and posted an update i found at Forbes below.
Didn't include the paragraph noting the phone number is now for all states.
You can see that info at the link.
I'd keep trying now since the phone wait will probably increase once people from other states start calling, too.

I hope you weren't affected by any of this. So far Intuit is saying the breach isn't from their system, but it looks like they are now offering monitoring for anyone affected.

Reply to this post

Back to top Alert abuse Link here Permalink


Response to WilliamPitt (Original post)

Thu Feb 5, 2015, 11:03 PM

98. I actually was expecting the IRS

Only thing I could think would cause such a thing as faces flying off and around the room like bats.

I wonder if the letter I received the other day about my 2011 return being amended, which I didn't do, has something to do with this. Guess I will have to stay on hold the hour to find out.

Quick books too, huh? Now that could be bad.

Reply to this post

Back to top Alert abuse Link here Permalink


Response to WilliamPitt (Original post)

Thu Feb 5, 2015, 11:23 PM

101. Thanks Will ....

 

It's pretty clear somebody got this valuable personal information, and it had to come from somewhere ... Intuit seems a reasonable source for that kind of information ...





Reply to this post

Back to top Alert abuse Link here Permalink


Response to WilliamPitt (Original post)

Thu Feb 5, 2015, 11:27 PM

102. I suppose I should be glad I've already filed and gotten my refund this year

Having had my real, valid return submitted and approved should mean any attempt to submit a return in my name for 2014 again should be rejected, unless someone goes as far as filing an amended return, and that I'd think would be a harder stunt to pull off.

Reply to this post

Back to top Alert abuse Link here Permalink


Response to Silent3 (Reply #102)

Thu Feb 5, 2015, 11:30 PM

104. Same.

One of the reasons I do it immediately.

Reply to this post

Back to top Alert abuse Link here Permalink


Response to Agschmid (Reply #104)

Thu Feb 5, 2015, 11:36 PM

105. I'm not always so fast, but I knew this year I'd get a nice big refund...

...so I was very motivated to act quickly.

I'm thinking the IRS processing might be faster too for people who get their returns in early. My refund appeared, by direct deposit, just one week after I filed.

Reply to this post

Back to top Alert abuse Link here Permalink


Response to WilliamPitt (Original post)

Fri Feb 6, 2015, 01:08 AM

114. That reminds me

I need to go to the library tomorrow and pick up my tax forms. I always do my tax forms on paper and mail it in. My income is so low now I haven't paid taxes since I retired six years ago.

It seems that no matter what you do, there is someone out there spending huge amounts of time and effort to rip you off.

Reply to this post

Back to top Alert abuse Link here Permalink


Response to WilliamPitt (Original post)

Fri Feb 6, 2015, 01:27 AM

115. I think the quickbooks hack is actually worse

There's so much personal, business and financial information, passwords to tax entities, employee information in social security, etc etc etc.

This could be devastating to people

Reply to this post

Back to top Alert abuse Link here Permalink


Response to marym625 (Reply #115)

Fri Feb 6, 2015, 08:40 AM

131. Quickbooks wasn't hacked...

Neither was Turbo Tax. This OP is pure speculation on a couple cases of tax fraud in a few states. Those committing the fraud used TurboTax to SUBMIT the tax data, but they had the identity info before hand. A simple google search of "turbo tax hack" nets you this OP, a similar blog at Crooks and Liars (using the same original source before it was updated to omit TurboTax), and a bunch of tax fraud articles from years past. Someone jumped the gun on this one.

Reply to this post

Back to top Alert abuse Link here Permalink


Response to Dr Hobbitstein (Reply #131)

Fri Feb 6, 2015, 09:05 AM

137. I hope you are right

Thank you for the information

Reply to this post

Back to top Alert abuse Link here Permalink


Response to Dr Hobbitstein (Reply #131)

Fri Feb 6, 2015, 02:47 PM

200. Thanks for the objective and correct

information, even though it is not as sensational as the "hack" angle as "reported" by the OP.

Reply to this post

Back to top Alert abuse Link here Permalink


Response to WilliamPitt (Original post)

Fri Feb 6, 2015, 01:40 AM

116. The animated movie "Turbo" was very taxing to watch also.

Sorry.
That's just how my brain works.

If it works at all.

Reply to this post

Back to top Alert abuse Link here Permalink


Response to WilliamPitt (Original post)

Fri Feb 6, 2015, 07:14 AM

119. Well, ain't that wonderful. I use TT to file our federal returns electronically

but always mailed in the state returns because--up until this year--they charged
for filing a state return and I'm so cheap I'd rather print/stamp/mail than pay
$14.99 or whatever it's been.

Also, I hardly ever get our returns filed until March because I also have to file
for two trusts--and I have to have the K-1's from them to do our personal taxes.

Has anyone seen a list of the 18 states? Is NC included? I've only
seen Utah and Minnesota mentioned so far.

Reply to this post

Back to top Alert abuse Link here Permalink


Response to WilliamPitt (Original post)

Fri Feb 6, 2015, 08:04 AM

124. I won't be filing until October, so hopefully this will be cleaned up by then.

Reply to this post

Back to top Alert abuse Link here Permalink


Response to WilliamPitt (Original post)

Fri Feb 6, 2015, 08:28 AM

126. A search pulls up articles in AZ, MN, & UT on Turbotax hacking cases.

ABC on GMA just referred to 19 states affected. Nowhere can I find a listing of which states. I just installed this year's Turbotax program on my computer but have not yet started to enter data. Does anyone know where else to check for information regarding states affected? Turbotax site doesn't mention any problems at all.

Can you or somebody clarify "the cloud" being referred to. Is that a cloud used by Turbotax or by individual users? I never use clouds for storage of information of any kind. I also refuse to do online banking.

Does anyone know where else to check for information regarding states affected?

Reply to this post

Back to top Alert abuse Link here Permalink


Response to Skidmore (Reply #126)

Fri Feb 6, 2015, 08:38 AM

129. According to actual vetted news,

TurboTax wasn't hacked. A simple google search nets a blog from Crooks and Liars, and Will's OP, plus some articles on tax fraud in years past.

Reply to this post

Back to top Alert abuse Link here Permalink


Response to Dr Hobbitstein (Reply #129)

Fri Feb 6, 2015, 08:40 AM

130. They would be required by law to disclose if they were.

Pitt irresponsibly is insisting they were with zero proof.

And, oh, hey, Karl Rove was totally indicted!!!

Reply to this post

Back to top Alert abuse Link here Permalink


Response to PeaceNikki (Reply #130)

Fri Feb 6, 2015, 08:41 AM

133. But TurboTax is flexing their big mean muscles...

Not allowing this info to come out. It's a CONSPIRACY!!

Reply to this post

Back to top Alert abuse Link here Permalink


Response to Dr Hobbitstein (Reply #129)

Fri Feb 6, 2015, 08:41 AM

132. Which is what I am finding.

Plus there's something about a refund or an upgrade to some unhappy users because TT did not include some forms to allow filings by farmers, those with capital gains, small businesses, and one other category. Beyond that and the story I just heard on GMA a few minutes ago, I can find nothing.

Reply to this post

Back to top Alert abuse Link here Permalink


Response to Dr Hobbitstein (Reply #129)

Fri Feb 6, 2015, 08:55 AM

136. When States Stop Accepting Returns from a Single Vendor...

When states stop accepting returns from a single vendor, there is something wrong with that vendor's security.

In this case, it doesn't surprised me that TurboTax might have a flaw. And it could also be true that Intuit's (the company behind TurboTax) systems were not hacked. It could be simply that a hacker has found a way to bypass the authentication mechanism on user accounts, which would still be a problem for Intuit TurboTax. They must provide security for a user's account and they are responsible for breaches.

Note that TurboTax only requires a user-name and password. They do not have two-factor authentication which is now widely used as a minimum by most financial institutions. They can not even tell you which devices you have logged in from (something most social media applications like Facebook, Google and Twitter now have). For protecting your most sensitive financial information, they do less than the minimum to protect it.

Reply to this post

Back to top Alert abuse Link here Permalink



Response to WilliamPitt (Reply #156)

Fri Feb 6, 2015, 11:35 AM

169. Thanks for the link.

That article was not available earlier and it is helpful.

Reply to this post

Back to top Alert abuse Link here Permalink


Response to WilliamPitt (Reply #156)

Fri Feb 6, 2015, 11:50 AM

171. Yeah, but it doesn't say what you're saying.

Fraud =/= hacking. TurboTax is being proactive and trying to work with states to get it under control. Big bad TurboTax, doing the right thing.

When a journalist gets something wrong, they usually issue a retraction. They don't keep doubling down and moving goalposts. Once again, a google search for "turbo tax hack" nets this OP, and a couple of years old articles about TT security.

Reply to this post

Back to top Alert abuse Link here Permalink


Response to Skidmore (Reply #126)

Fri Feb 6, 2015, 02:54 PM

202. If you have not been

a victim of identity theft, you most likely have nothing to worry about. Neither TurboTax, nor their parent company Intuit have been "hacked."

Thieves that have committed identity theft from other sources are using TurboTax to file false State tax returns using the TurboTax program and information already stolen from other sources.

As a precaution, TurboTax has temporarily halted the electronic filing of State tax returns (but not Federal) using their product.

Reply to this post

Back to top Alert abuse Link here Permalink


Response to billh58 (Reply #202)

Fri Feb 6, 2015, 03:06 PM

203. We haven't but I'm still waiting a few days before

I enter data and until TT give the go ahead.

Reply to this post

Back to top Alert abuse Link here Permalink


Response to WilliamPitt (Original post)

Fri Feb 6, 2015, 08:47 AM

134. I file my own IRS forms & never use turbotax or online file. 'Someone' filed my tax return a couple

years ago. The IRS didn't share much information except they sent a letter and asked why I filed 'twice' that year. I had to send a copy of my file and state this was my only filing for that year.

The ONLY time I've typed my ss number online was for 2 online bank accounts, started about 6 years ago.

Reply to this post

Back to top Alert abuse Link here Permalink


Response to WilliamPitt (Original post)

Fri Feb 6, 2015, 09:51 AM

143. Well, it's an interesting story, but one that is still developing.

Sometimes, it's better to wait a bit before posting, I think. I know that it's nice to get a beat on the news media, but if that beat is incorrect, that's not a good thing. Right now, it's quite unclear whether or not Turbo Tax and Intuit have been hacked at all. If they have, it will be a story of monstrous proportions. But if not, then something else occurred. In any case, we don't know at this point exactly what happened.

I'd not have posted this, even if I had some information from reliable sources. It's too explosive a story and incorrect postings could do some real harm. That's just my opinion, but based on my own sources regarding things having to do with Intuit, more information will be forthcoming shortly. We'll get the story, once there is an actual story that can be understood.

Reply to this post

Back to top Alert abuse Link here Permalink


Response to MineralMan (Reply #143)

Fri Feb 6, 2015, 11:21 AM

166. Good advice. "...filed through TurboTax." doesn't necessarily mean TurboTax is at fault.

 

A return filed using TurboTax could have been stored on an unsecure server and was stolen that way. It seems premature to assume TurboTax is negligent in some manner. Maybe they are but...
[hr][font color="blue"][center]Where do uncaptured mouse clicks go?[/center][/font][hr]

Reply to this post

Back to top Alert abuse Link here Permalink


Response to randome (Reply #166)

Fri Feb 6, 2015, 12:02 PM

178. Latest word from Intuit is that their data was not compromised.

That's what they're saying, anyhow. Clearly, there are some problems with identity theft connected to tax filings. It's interesting that it appears to be only state returns that are being fraudulently filed.

Intuit has a great deal to lose with this, since both their tax and accounting data is stored in the cloud. I doubt that they would deliberately lie, since the truth would eventually emerge and cause them even more trouble in the long term. I think they're being very careful not to make statements that would come back and bite them on the butt.

I have an email from Intuit that clearly says that their customer data was not compromised. It's not for public consumption, though, so I won't post it. There will, no doubt, be a public statement soon from them.

It looks like there was some jumping of the gun here, not based on good information.

Reply to this post

Back to top Alert abuse Link here Permalink


Response to WilliamPitt (Original post)

Fri Feb 6, 2015, 10:36 AM

150. I'm doomed.

I've filed online with TurboTax for years.

So far, not this year, after they pulled that shit with selling you only half the program, and wanting an additional $25 afterward for the rest of it.

I think I'll find something else this year.

Reply to this post

Back to top Alert abuse Link here Permalink


Response to WilliamPitt (Original post)

Fri Feb 6, 2015, 10:37 AM

151. TurboTax Temporarily Halts E-Filing In All States Amid Fraud Concerns

http://www.forbes.com/sites/kellyphillipserb/2015/02/06/turbotax-temporarily-halts-e-filing-in-all-states-amid-fraud-concerns/

Individual State Departments of Revenue are loathe to name names but have been quick to point the finger away from their own systems.

The State of Alabama Department of Revenue released a statement yesterday about fraud concerns, saying only, “The fraudulent filings originate from data compromised through a third-party commercial tax preparation software process and were detected through ADOR’s fraud detection systems.” They were quick to assure taxpayers, however, that “[o]ur systems have not been compromised.” Just two weeks into tax season, however, the number of suspicious returns in the state has already hit 16,000, all of which were “filed suspected of fraud from the third-party commercial tax preparation software.”

~~~

Following up on taxpayer concerns, Intuit announced that it is working with state agencies to address the problem. Intuit reached out to Palantir, a third party security expert, to make a preliminary investigation of the most recent fraud activities. The initial findings have led Intuit to believe that these instances of fraud did not result from a security breach of its systems. Instead, the company believes that the information used to file fraudulent returns was obtained from other sources outside the tax preparation process.

~~~

In addition, Intuit will provide identity protection services and free credit monitoring, as well as provide access to all versions of its software or to the assistance of one of Intuit’s credentialed tax experts who will prepare taxes for affected customers at no expense.



Looks like the states that aren't naming the software are all using a singular article to refer to the issue, which indicates one software program at the center of the issue rather than multiple ones.

Intuit is so far saying they have not found a breach in TT, but they are offering to provide the usual (post barn door) monitoring to people affected.

Palantir? Where have I heard that name before?

Reply to this post

Back to top Alert abuse Link here Permalink


Response to suffragette (Reply #151)

Fri Feb 6, 2015, 10:43 AM

152. Wellnow...

 

Reply to this post

Back to top Alert abuse Link here Permalink


Response to WilliamPitt (Reply #152)

Fri Feb 6, 2015, 12:01 PM

177. Yeah, well now, are you going to change the title of your OP telling lies?

 

Have you learned that fraud does not equal hacking yet?


Reply to this post

Back to top Alert abuse Link here Permalink


Response to suffragette (Reply #151)

Fri Feb 6, 2015, 11:01 AM

158. Oh my.


I don't understand, if it's NOT a hack but someone has gotten enough information from "somewhere" that they can actually pass IRS sniff test to the point the return was accepted, how did those "someones" procure the information in the first place. On TT, I call bullshit. It sounds like someone gained access to someone's database of taxpayer information. It's either on the IRS or on the tax preparation software company. What am I misunderstanding here?


What exactly the hell going in here??

C&P from FB.

Reply to this post

Back to top Alert abuse Link here Permalink


Response to nc4bo (Reply #158)

Fri Feb 6, 2015, 11:19 AM

163. It does sound like some database with tax info has been breached.

And however this happened, it's a big problem.

At this point, it seems to be state tax info.

I wonder if TT has two databases, one with federal tax info and one with combined state tax info. It makes me wonder how the information is stored and transmitted by these companies.

I have the same questions you do.

Reply to this post

Back to top Alert abuse Link here Permalink


Response to suffragette (Reply #151)

Fri Feb 6, 2015, 11:07 AM

159. Well, well, well.

Good info. Thanks much.

Reply to this post

Back to top Alert abuse Link here Permalink


Response to suffragette (Reply #151)

Fri Feb 6, 2015, 11:53 AM

172. All you need is someone's personal info, and you can file a fake return.

If you get enough info, it's easy to get into someone's account, whether that be Facebook, GMail, or TT. There was a huge fraud case last year involving university football players. None of them hacked anything, they stole physical information (wallets, purses, mail, etc) and used that to net about $400,000 before they were caught.

Reply to this post

Back to top Alert abuse Link here Permalink


Response to suffragette (Reply #151)

Fri Feb 6, 2015, 11:58 AM

173. Off topic, but to answer your last question...

A "palantir" is a seeing stone in the Lord of the Rings novels.

Reply to this post

Back to top Alert abuse Link here Permalink


Response to mak3cats (Reply #173)

Fri Feb 6, 2015, 12:05 PM

179. Yes, familiar from LOTR :) But the company name sounds familiar too.

Reply to this post

Back to top Alert abuse Link here Permalink



Response to mak3cats (Reply #183)

Fri Feb 6, 2015, 01:03 PM

193. Yodermon had the answer. There were many posts about that on DU back then.

Thanks for the new links though.
Looks like they have kept raking in the security budget money and all from their start in data mining.

Yeah, I see why you prefer fantasy

Reply to this post

Back to top Alert abuse Link here Permalink


Response to suffragette (Reply #179)

Fri Feb 6, 2015, 12:24 PM

186. Palantir had to apologize after Anonymous revealed they were involved

with targeting Glen Greenwald , wikileaks and others with cyberattacks & smear campaigns. This is from back in '11.

http://www.forbes.com/sites/andygreenberg/2011/02/11/palantir-apologizes-for-wikileaks-attack-proposal-cuts-ties-with-hbgary/

... Now, just a few days later, one of those firms, Palo Alto-based Palantir, has publicly cut ties with HBGary and apologized for its role in the WikiLeaks response plan, essentially verifying the reality of that plan and isolating HBGary further.

In a statement to the press, Palantir chief executive Alex Carp writes, “I have directed the company to sever any and all contacts with HBGary.” Karp adds that “Palantir Technologies does not build software that is designed to allow private sector entities to obtain non-public information, engage in so-called ‘cyber attacks’ or take other offensive measures. I have made clear in no uncertain terms that Palantir Technologies will not be involved in such activities.”...


I'm sure it's allll cool now, though.

Reply to this post

Back to top Alert abuse Link here Permalink


Response to yodermon (Reply #186)

Fri Feb 6, 2015, 12:54 PM

190. That's it. They were part of the HBGary, Chamber of Commerce attack on progressive journalists

And organizations.

And now their investigation of the security of TT is supposed to be reassuring?

Well, damn.

Reply to this post

Back to top Alert abuse Link here Permalink


Response to WilliamPitt (Original post)

Fri Feb 6, 2015, 11:20 AM

165. I went to my CPA

Wednesday and he e-filed for me. Oh well.....

Reply to this post

Back to top Alert abuse Link here Permalink


Response to WilliamPitt (Original post)

Fri Feb 6, 2015, 11:29 AM

167. To clarify, this is related to STATE e-filing, not Federal returns

From the Forbes article:



Intuit stressed that this action does not affect the filing of federal income tax returns. It also clearly does not affect taxpayers who are not e-filing state tax returns.

So far, there has been no indication that federal returns have been affected.


http://www.forbes.com/sites/kellyphillipserb/2015/02/06/turbotax-temporarily-halts-e-filing-in-all-states-amid-fraud-concerns/


Reply to this post

Back to top Alert abuse Link here Permalink


Response to mnhtnbb (Reply #167)

Fri Feb 6, 2015, 11:33 AM

168. It's the information that matters

 

The data they need to do state filings is the same info they need to do federal filings. The only difference is the amount of the return. The money is one thing; all that info being in the wind is another.

Reply to this post

Back to top Alert abuse Link here Permalink


Response to WilliamPitt (Reply #168)

Fri Feb 6, 2015, 11:44 AM

170. BUT, if the access by the hackers came through previously e-filed STATE returns,

then if you never e-filed (I haven't because they charged for NC, but not the Federal return) a State return, presumably
your info is not in the wind.

Reply to this post

Back to top Alert abuse Link here Permalink


Response to mnhtnbb (Reply #170)

Fri Feb 6, 2015, 12:15 PM

184. If that were true, then other services than TT would be involved.

That doesn't appear to be the case here. It appears isolated to TT.

Reply to this post

Back to top Alert abuse Link here Permalink




Response to WilliamPitt (Original post)

Fri Feb 6, 2015, 02:31 PM

199. Vermont suspended sending refunds on Feb 4



http://www.state.vt.us/tax/pdf.word.excel/misc/Press%20Release%20Vermont%20Department%20of%20Taxes%20Warns%20of%20Refund%20Fraud.pdf


Vermont Department of Taxes Warns Refund Fraud Connected to Identity Theft Continues to Rise
Montpelier, Vt., Feb. 6, 2015— As the tax season heats up, the Vermont Department of Taxes continues its vigilance to protect taxpayers and taxpayer money against any possible tax refund fraud, but the early signs are that states are seeing another increase in fraudulent filings this year. In fact, there are reports in other states of particularly troublesome fraud trends. Given the nature and level of fraudulent activity, concerns are being raised that a tax preparation software vendor experienced a data breach of previous year returns, however no such breach has been confirmed. Vermont is participating in conversations with other states and with software vendors, and in an abundance of caution, immediately suspended the issuance of all personal income tax refunds temporarily as of February 4. We are reviewing the situation, and will issue an update on when we will resume refunding as soon as possible. The potential identity theft and refund fraud is not related to any breach of Vermont government systems, but rather the use of identities stolen elsewhere.



More at link.

Reply to this post

Back to top Alert abuse Link here Permalink


Response to WilliamPitt (Original post)

Fri Feb 6, 2015, 02:48 PM

201. I don't quite understand this. Turbo Tax includes all form of taxes both state and federal. Why are

we talking about 15 states. Is it just state taxes we are talking about here? Or federal taxes as well?

Reply to this post

Back to top Alert abuse Link here Permalink


Response to WilliamPitt (Original post)

Sat Feb 7, 2015, 12:23 PM

208. Still standing by this story, Will?

Any reputable journalist would've edited. A google search for "turbo tax hack" still doesn't net any results for your story. Just that fraudsters utilized turbo tax to SUBMIT fraudulent returns. No hacking. Although, this came up as the number 2 search:

http://newsbusters.org/blogs/pj-gladnick/2015/02/06/du-fraudster-will-pitt-publicly-corrected-turbotax-posting-false

Yes, I know it's a RW news site, but it still gave me a chuckle.

Reply to this post

Back to top Alert abuse Link here Permalink


Response to WilliamPitt (Original post)

Fri Feb 13, 2015, 11:13 AM

209. The OP will be proven right

in 24 business hours.

Reply to this post

Back to top Alert abuse Link here Permalink


Response to WilliamPitt (Original post)

Sat May 19, 2018, 01:10 AM

210. How I can get rid if my info hack?

is there any way or solution to get rid, if my tax info get hack?

Reply to this post

Back to top Alert abuse Link here Permalink


Response to mollaeilaw (Reply #210)

Sat May 19, 2018, 01:15 AM

211. You will not be getting a response from the author of this thread.

He is flagged for review which means that his posting privileges are suspended. His last post was in 2016.

Reply to this post

Back to top Alert abuse Link here Permalink


Response to mollaeilaw (Reply #210)

Sun May 20, 2018, 10:43 AM

212. A good lawyer might help.

Also, to echo TexasTowlie, you won't get a response from the original poster due to their account status.

Good luck.

Reply to this post

Back to top Alert abuse Link here Permalink

Reply to this thread