Someone else registers Goverment Gateway account on my email
Discussion
Overnight I’ve had a bunch of emails sent from the Government Gateway system indicating someone is setting up an account using my personal email address. These are genuine system generate emails with unique codes, no phishing links and the headers check out. There is no way anyone has accidentally typed the address in question so I suspect identity theft of some kind.
“You have requested a code you can enter on the Government Gateway screen to confirm your email address.
Your confirmation code is: QDDVGG
This code will expire in 30 minutes.
If this email account is not shared, and you did not request this code, you need to contact HMRC.
This is an automated email - do not reply.
Government Gateway”
I’ll call them on Monday to report this, and will password reset my email account to rule out anyone having access to it. But….. my question is, what could they meaningfully do if this was successful? They could do my tax returns, but could they apply for government loans or anything else?
“You have requested a code you can enter on the Government Gateway screen to confirm your email address.
Your confirmation code is: QDDVGG
This code will expire in 30 minutes.
If this email account is not shared, and you did not request this code, you need to contact HMRC.
This is an automated email - do not reply.
Government Gateway”
I’ll call them on Monday to report this, and will password reset my email account to rule out anyone having access to it. But….. my question is, what could they meaningfully do if this was successful? They could do my tax returns, but could they apply for government loans or anything else?
It is not just you.
Loads of people on twitter reporting this https://twitter.com/HMRCcustomers/with_replies
HMRC:
"we are aware this is happening, and we are investigating. If you've not requested access to an account, you can ignore the messages. "
Loads of people on twitter reporting this https://twitter.com/HMRCcustomers/with_replies
HMRC:
"we are aware this is happening, and we are investigating. If you've not requested access to an account, you can ignore the messages. "
robscot said:
It is not just you.
Loads of people on twitter reporting this https://twitter.com/HMRCcustomers/with_replies
HMRC:
"we are aware this is happening, and we are investigating. If you've not requested access to an account, you can ignore the messages. "
Thanks. I can’t view the message as I binned by twitter account after mElon took over but that’s good to know. Loads of people on twitter reporting this https://twitter.com/HMRCcustomers/with_replies
HMRC:
"we are aware this is happening, and we are investigating. If you've not requested access to an account, you can ignore the messages. "
I had a load of these overnight and this afternoon.
In my case I am pretty sure that the email address used doesn’t give access to my personal information. It is one that seems to have gone out “into the wild” as part of an Adobe hack about a decade ago. Importantly, it’s also a forwarder rather than an actual mailbox and relates to a company that I closed down years ago.
To redirect the forward would need someone to know how I manage my emails, and get past two-factor authentication. Not sure how someone would go about identifying the mailbox it directs to given that routing to that destination is handled by my mail server.
Wouldn’t surprise me if the actual target is HMRC rather than individuals or companies.
In my case I am pretty sure that the email address used doesn’t give access to my personal information. It is one that seems to have gone out “into the wild” as part of an Adobe hack about a decade ago. Importantly, it’s also a forwarder rather than an actual mailbox and relates to a company that I closed down years ago.
To redirect the forward would need someone to know how I manage my emails, and get past two-factor authentication. Not sure how someone would go about identifying the mailbox it directs to given that routing to that destination is handled by my mail server.
Wouldn’t surprise me if the actual target is HMRC rather than individuals or companies.
Got an answer from them
“Thank you for contacting HM Revenue & Customs and referring an e-mail sent from our ‘Government Gateway’ service. Please be aware that any replies to this mailbox are not monitored.
If you did not try to register for an account, you can safely ignore the message.
HMRC is aware of several customers receiving multiple unexpected emails regarding this issue which is currently being investigated.
If you have clicked on any links, or opened any attachments, we recommend you run your antivirus software as a matter of urgency and update any relevant passwords.
If you have disclosed any personal details to this scam, please forward a report to us at security.custcon@hmrc.gov.uk.”
So there’s definitely something going on but not me specifically being targeted.
“Thank you for contacting HM Revenue & Customs and referring an e-mail sent from our ‘Government Gateway’ service. Please be aware that any replies to this mailbox are not monitored.
If you did not try to register for an account, you can safely ignore the message.
HMRC is aware of several customers receiving multiple unexpected emails regarding this issue which is currently being investigated.
If you have clicked on any links, or opened any attachments, we recommend you run your antivirus software as a matter of urgency and update any relevant passwords.
If you have disclosed any personal details to this scam, please forward a report to us at security.custcon@hmrc.gov.uk.”
So there’s definitely something going on but not me specifically being targeted.
Hmmm. I have had exactly the same happen to me this evening; six such eMails from HMRC within a few minutes, all giving a unique code and all of which look genuine.
Given that I don't fancy waiting in a telephone call queue for an hour tomorrow morning I am glad to have found this thread. It looks like it's a mistake on behalf of HMRC rather than someone with malicious intent, so I'll ignore it. Although I'll change the password on the account just in case.
Thanks Pistonheads!
Given that I don't fancy waiting in a telephone call queue for an hour tomorrow morning I am glad to have found this thread. It looks like it's a mistake on behalf of HMRC rather than someone with malicious intent, so I'll ignore it. Although I'll change the password on the account just in case.
Thanks Pistonheads!
I don't think it's a mistake, I think it's a phishing attempt.
I've been getting the same, two lots of half a dozen emails with codes. Then today... a spoofed email appearing to come from Gov Gateway, but it doesn't, and THIS email has a button link to follow. I haven't clicked. The language of the email was all wrong. Overly polite and grammatically correct, but wrong for something from Gov. It stated something along the lines of please login to finalise details for VAT registration. So you think they've got in and set something up in your name and click the link and, presumably enter all your details in panic.
I've been getting the same, two lots of half a dozen emails with codes. Then today... a spoofed email appearing to come from Gov Gateway, but it doesn't, and THIS email has a button link to follow. I haven't clicked. The language of the email was all wrong. Overly polite and grammatically correct, but wrong for something from Gov. It stated something along the lines of please login to finalise details for VAT registration. So you think they've got in and set something up in your name and click the link and, presumably enter all your details in panic.
r44flyer said:
I don't think it's a mistake, I think it's a phishing attempt.
I've been getting the same, two lots of half a dozen emails with codes. Then today... a spoofed email appearing to come from Gov Gateway, but it doesn't, and THIS email has a button link to follow. I haven't clicked. The language of the email was all wrong. Overly polite and grammatically correct, but wrong for something from Gov. It stated something along the lines of please login to finalise details for VAT registration. So you think they've got in and set something up in your name and click the link and, presumably enter all your details in panic.
Interesting. I've been getting the same, two lots of half a dozen emails with codes. Then today... a spoofed email appearing to come from Gov Gateway, but it doesn't, and THIS email has a button link to follow. I haven't clicked. The language of the email was all wrong. Overly polite and grammatically correct, but wrong for something from Gov. It stated something along the lines of please login to finalise details for VAT registration. So you think they've got in and set something up in your name and click the link and, presumably enter all your details in panic.
It does sound like you could have two different things going on there; the eMails with codes and then the possible phishing email. Thus far I've only seen the codes eMails (half a dozen, as you said) but nothing more. (And I checked the eMail address the codes eMails were sent to and it's not the eMail address I have registered with HMRC.)
2Btoo said:
r44flyer said:
I don't think it's a mistake, I think it's a phishing attempt.
I've been getting the same, two lots of half a dozen emails with codes. Then today... a spoofed email appearing to come from Gov Gateway, but it doesn't, and THIS email has a button link to follow. I haven't clicked. The language of the email was all wrong. Overly polite and grammatically correct, but wrong for something from Gov. It stated something along the lines of please login to finalise details for VAT registration. So you think they've got in and set something up in your name and click the link and, presumably enter all your details in panic.
Interesting. I've been getting the same, two lots of half a dozen emails with codes. Then today... a spoofed email appearing to come from Gov Gateway, but it doesn't, and THIS email has a button link to follow. I haven't clicked. The language of the email was all wrong. Overly polite and grammatically correct, but wrong for something from Gov. It stated something along the lines of please login to finalise details for VAT registration. So you think they've got in and set something up in your name and click the link and, presumably enter all your details in panic.
It does sound like you could have two different things going on there; the eMails with codes and then the possible phishing email. Thus far I've only seen the codes eMails (half a dozen, as you said) but nothing more. (And I checked the eMail address the codes eMails were sent to and it's not the eMail address I have registered with HMRC.)
Gassing Station | Finance | Top of Page | What's New | My Stuff