Network News

X My Profile
View More Activity

Report: IRS Created Dumpster-Diver Swimming Holes

The Internal Revenue Service has long advised consumers to shred old tax returns and other documents that contain sensitive data, as a way to thwart identity thieves who sometimes root through trash bins in search of identity information. But it seems the IRS doesn't take its own advice: a recent investigation of more than a dozen IRS document disposal facilities found that -- at each location -- old taxpayer records were being tossed out in regular waste containers and dumpsters.

The audit by the Treasury Inspector General for Tax Administration also found that IRS officials failed to consistently verify whether contract employees who have access to taxpayer documents had passed background checks.

In addition, investigators also had trouble finding anyone responsible for overseeing most of the facilities that the IRS contracted with to burn or shred sensitive taxpayer documents.

"We found evidence of only 2 instances where IRS personnel conducted visitations to shred/burn facilities in the past 2 fiscal years," the report notes. "Not all Territory Managers were even able to identify the contractor who provided their shred/burn services or where they were located. None of the four contractor sites we visited had ever received a request from the IRS to inspect their facility or onsite records."

In a written response to the report, the IRS said it had improved oversight of the document disposal contractors, and increased the level of verification to ensure contractors have passed background checks.

A copy of the inspector general's report, including the IRS's official response, is available here (PDF).

By Brian Krebs  |  May 21, 2009; 4:00 PM ET
Categories:  From the Bunker , U.S. Government  | Tags: dumpster diving, irs, tigta  
Save & Share:  Send E-mail   Facebook   Twitter   Digg   Yahoo Buzz   Del.icio.us   StumbleUpon   Technorati   Google Buzz   Previous: Investment Firms Report Increased Credit & Debit Card Fraud
Next: Apple Slow To Fix Java Flaws

Comments

THIS is what kills me. This huge industry has sprung up around people being proactive in protecting their identity.

And then the banks and vendors and now the IRS could give a cr@p.

Posted by: Chasmosaur1 | May 21, 2009 5:25 PM | Report abuse

ATTENTION

CLASS ACTION LAWYERS !!!!!!

Posted by: brucerealtor@gmail.com | May 24, 2009 5:39 AM | Report abuse

Don't forget that the IRS is considering outsourcing the collection of taxes that are due. Just another fine way for ALL your personal information to be broadcast to the world.

Posted by: blasher | May 26, 2009 11:35 AM | Report abuse

From a corporate perspective, while banking and finance sectors have been more proactive and forward thinking as well as far more advanced than most sectors, cyber security is still perceived too often simply as an IT cost center rather than as an enterprise wide risk management issue with serious financial implications. The silo specific view of cyber issues, fueled by antiquated corporate structures and attitudes results in an insufficient analysis of the true needs and values associated with cyber security.

http://information-security-resources.com/2009/05/25/financial-sector-cybersecurity-issues/

Posted by: anthonymfreed | May 27, 2009 10:39 AM | Report abuse

The comments to this entry are closed.

 
 
RSS Feed
Subscribe to The Post

© 2010 The Washington Post Company