This one seems both farfetched and lazy. They didn’t bother with graphics or try to disguise the sender’s email address or the destination of the hyperlink. And how many people would think they need an EIN (Federal employer ID) in the first place, much less a new one? I’d hope that accounting staff would see right through this, but I guess one should never underestimate people’s gullibility.
Sender: Kenneth Weber (email@example.com) (they didn’t even bother to fake an IRS email address)
Subject: Acquire new EIN
To the ATTENTION of: Accounting Department
we would like to inform you that you need to obtain a new EIN
as an anti-fraud measure. We are sorry for the inconveniences
that might be caused to you by this measure. Please use the following
link for instructions:
(the URL shows exactly as above — they didn’t even fake an IRS hyperlink).
Office of Professional Responsibility
Internal Revenue Service