Amid new cyberattacks, IRS shuts down e-Filing PIN tool

The Internal Revenue Service has abandoned its e-File PIN number tool — used by online taxpayers to verify their identity when they file their annual tax return form 1040 — following new cyberattacks by online fraudsters.
IRS headquarters

The IRS has abandoned its e-File PIN number tool — used by online taxpayers to verify their identity when they file their annual tax return form 1040 — following new cyberattacks by online fraudsters.

The agency said in a statement it had been working with the tax preparation industry to get rid of the tool since February, when hackers using an automated bot attack program accessed more than 100,000 e-File PINs. The decision was moved up after a new round of automated attacks was discovered.

[Read More: Identity thieves attack IRS e-file system]

“We were able to identify this issue because of additional defenses put in place earlier this year, and backend protections remain in place. However, the IRS decided to remove the e-File PIN program as a safety measure,” the IRS announcement Thursday reads.


According to the IRS, the February breach did not result in stolen taxpayer information, but the following month the agency suspended the use of a different PIN tool, the identity protection PIN.

[Read more: IRS suspends online ID protection in wake of new fraud]

The e-File PIN tool remained operational until now because the program’s API is embedded in nearly all commercial return preparation software, the IRS announcement explains.

Most taxpayers do not need an e-file PIN to file their taxes electronically, IRS said, because data from prior year tax returns provide the same verification.

While the change is only expected to affect a small segment of taxpayers, those who have not filed their tax returns this year and need a replacement e-File PIN will require assistance from their respective tax software providers, according to the IRS.


To contact the reporter on this story: send an email via or follow him on Twitter at @Bing_Chris. Subscribe to the Daily Scoop to get all the federal IT news you need in your inbox every morning at

Chris Bing

Written by Chris Bing

Christopher J. Bing is a cybersecurity reporter for CyberScoop. He has written about security, technology and policy for the American City Business Journals, DC Inno, International Policy Digest and The Daily Caller. Chris became interested in journalism as a result of growing up in Venezuela and watching the country shift from a democracy to a dictatorship between 1991 and 2009. Chris is an alumnus of St. Marys College of Maryland, a small liberal arts school based in Southern Maryland. He's a fan of Premier League football, authentic Laotian food and his dog, Sam.

Latest Podcasts