Security Summit Partners highlight new password guidance, urge taxpayers and practitioners to protect all accounts

IR-2018-241, December 4, 2018

IR-2018-241, December 4, 2018

WASHINGTON — To help protect against cybercriminals stealing identities, the IRS, state tax agencies and the nation’s tax industry urged people to review new, stronger standards to protect the passwords of their online accounts. 

WASHINGTON — To help protect against cybercriminals stealing identities, the IRS, state tax agencies and the nation’s tax industry urged people to review new, stronger standards to protect the passwords of their online accounts. 

Every individual or tax practitioner who maintains any type of online accounts should use strong passwords to protect against savvy cybercriminals taking over their identities and accessing sensitive tax and financial data. 

Every individual or tax practitioner who maintains any type of online accounts should use strong passwords to protect against savvy cybercriminals taking over their identities and accessing sensitive tax and financial data. 

But there’s been some new thinking as to what a strong password is. The latest guidance suggests using a passphrase such as a favorite line from a movie or a series of associated words rather than using a password. The idea is to create a passphrase that can be remembered easily and protect the account. This means passwords like – “uE*s3P%8V)” – are out. Longer, personal phrases people can remember – for example, SunWalkRainDrive – are now preferred. 

But there’s been some new thinking as to what a strong password is. The latest guidance suggests using a passphrase such as a favorite line from a movie or a series of associated words rather than using a password. The idea is to create a passphrase that can be remembered easily and protect the account. This means passwords like – “uE*s3P%8V)” – are out. Longer, personal phrases people can remember – for example, SunWalkRainDrive – are now preferred. 

The Internal Revenue Service, state tax agencies and the tax community, partners in the Security Summit, are marking “National Tax Security Awareness Week,” Dec. 3-7, with a series of reminders to taxpayers and tax professionals. In part three, the topic is creating a strong password.

The Internal Revenue Service, state tax agencies and the tax community, partners in the Security Summit, are marking “National Tax Security Awareness Week,” Dec. 3-7, with a series of reminders to taxpayers and tax professionals. In part three, the topic is creating a strong password.

This is especially important for taxpayers and tax professionals who use online accounts involving financial data or even their online account with the IRS or a tax software provider.

This is especially important for taxpayers and tax professionals who use online accounts involving financial data or even their online account with the IRS or a tax software provider.

“The IRS and the Security Summit partners have strengthened our systems to help protect against tax-related identity theft,” said IRS Commissioner Chuck Rettig. “To make these defenses even stronger, we need taxpayers and tax professionals to take common-sense steps to protect their data and make it harder for identity thieves. By using better passwords, people can help themselves and the tax community against identity theft.”

“The IRS and the Security Summit partners have strengthened our systems to help protect against tax-related identity theft,” said IRS Commissioner Chuck Rettig. “To make these defenses even stronger, we need taxpayers and tax professionals to take common-sense steps to protect their data and make it harder for identity thieves. By using better passwords, people can help themselves and the tax community against identity theft.”

The IRS, like all federal agencies, follows the cybersecurity framework set by the National Institute of Standards and Technology or NIST, which is a branch of the Department of Commerce. NIST last year rethought its guidance on passwords. 

The IRS, like all federal agencies, follows the cybersecurity framework set by the National Institute of Standards and Technology or NIST, which is a branch of the Department of Commerce. NIST last year rethought its guidance on passwords. 

NIST suggested these three steps to build a better password:

NIST suggested these three steps to build a better password:

In addition to creating strong passwords, the Security Summit urges taxpayers and tax practitioners to take these additional steps:

In addition to creating strong passwords, the Security Summit urges taxpayers and tax practitioners to take these additional steps:

The IRS, state tax agencies and the tax industry are committed to working together to fight against tax-related identity theft and to protect taxpayers. But the Security Summit needs help. People can take steps to protect themselves online. 

The IRS, state tax agencies and the tax industry are committed to working together to fight against tax-related identity theft and to protect taxpayers. But the Security Summit needs help. People can take steps to protect themselves online. 

Taxpayers can visit the “Taxes. Security. Together.” awareness campaign or review  IRS Publication 4524, Security Awareness for Taxpayers, for additional steps to protect themselves and their data from identity theft. Tax professionals can get more information through the Protect Your Clients; Protect Yourself campaign as well as the Tax Security 101 series. 

Taxpayers can visit the “Taxes. Security. Together.” awareness campaign or review  IRS Publication 4524, Security Awareness for Taxpayers, for additional steps to protect themselves and their data from identity theft. Tax professionals can get more information through the Protect Your Clients; Protect Yourself campaign as well as the Tax Security 101 series. 

Research & References of Security Summit Partners highlight new password guidance, urge taxpayers and practitioners to protect all accounts|A&C Accounting And Tax Services
Source

Share on Facebook

Tweet

Follow us