Rankiteo Logo
Rankiteo
Leader in Cyber Underwriting
Loading...
NEWRankiteo Cyber Underwriting Desktop - Score, price, and bind from your desktop
WindowsmacOSLinux
Download
Internal Revenue Service

Internal Revenue Service Vendor Cyber Rating & Cyber Score

irs.gov

Welcome to the Internal Revenue Service’s official LinkedIn account. Here, you will find the latest and greatest news and updates for taxpayers to help them understand and meet their tax responsibilities. Also, this is a place to learn about a meaningful career with the IRS. Check out the tabs above to learn more about us and view job openings. The U.S. government does not promote or endorse any non-government or commercial content appearing on this page. This service is operated by a third party and not an official government website. The IRS strongly discourages you from providing personally identifiable information. Read our privacy policy at www.irs.gov/privacy


IRS A.I CyberSecurity Scoring

IRS
Company Information
Website:http://www.irs.gov
Employees number:48,949
Number of followers:365,225
NAICS:92
Industry Type:Government Administration
Homepage:irs.gov
IRS Risk Score (AI oriented)
Between 600 and 649
logo
IRSGovernment Administration
Updated:
28/04/2026
619/1000
Poor
Caa
AaaAaABaaBaBCaaCaC
Powered by our proprietary A.I cyber incident model
Insurance prefers TPRM score to calculate premium
IRS Global Score (TPRM)
xxxx
logo
IRSGovernment Administration
•••
Score locked
Instant access to detailed risk factors
Vulnerabilities
Benchmark vs. industry & size peers
Findings

IRS
IRSPoor
Current Score
619Caa (POOR)
01000
6 incidents
-17 avg impact
Incident timeline with MITRE ATT&CK tactics, techniques, and mitigations.
JULY 2026
627Before Incident
JUNE 2026
626Before Incident
MAY 2026
622Before Incident
APRIL 2026
616Before Incident
MARCH 2026
614Before Incident
FEBRUARY 2026
611Before Incident
JANUARY 2026
609Before Incident
DECEMBER 2025
605Before Incident
NOVEMBER 2025
601Before Incident
OCTOBER 2025
614Before Incident
Cyber Attack
27 Oct 2025IRS
Internal Revenue Service (IRS)

Tax Refund Fraud and Monetization of Stolen Personal Information

597After Incident
HIGH-17
IRS2822328102725
A cybercriminal exploited stolen taxpayer data to file fraudulent tax returns, targeting refunds under the victim’s identity. While the IRS has robust safeguards to detect such fraud, the breach exposed sensitive personal and financial information—including Social Security numbers, bank details, and tax records. The attackers primarily aimed to monetize the stolen data by opening unauthorized credit cards, selling the information on dark web marketplaces, or directly draining bank accounts via fraudulent transfers. Though the tax refund fraud itself had limited success due to IRS protections, the broader misuse of the compromised data led to financial losses for affected individuals, including unauthorized transactions, credit damage, and potential identity theft. The incident underscored vulnerabilities in third-party systems handling tax-related data, where cybercriminals leveraged phishing or database exploits to harvest credentials. While no large-scale systemic outage occurred, the reputational harm to the IRS and affected taxpayers was significant, eroding trust in digital tax filing security.
INCIDENT DETAILS -
TYPE
identity theftfinancial frauddata monetization
MOTIVATION
financial gain
IMPACT
potential unauthorized bank transfersfraudulent tax refundsunauthorized credit card chargespersonal identifiable information (PII)tax-related databank account detailspotential increase due to identity theft or fraudulent activitiespotential reputational damage to affected individuals or institutionspotential liability for financial institutions or tax agencies if negligence is provenIdentity Theft Risk: highPayment Information Risk: high
DATA BREACH
Social Security numbers (SSN)taxpayer identification numbersbank account detailspersonal identifiable information (PII)Sensitivity Of Data: highlikely, if data was stolen from third-party breachesfull nameaddressdate of birthSSNfinancial records
SEPTEMBER 2025
611Before Incident
AUGUST 2025
607Before Incident
APRIL 2025
655Before Incident
Breach
01 Apr 2025IRS
Internal Revenue Service: A privacy breach at the IRS: Taxpayer data wrongly shared with DHS, court filing says

IRS Erroneously Shared Taxpayer Data with DHS in Immigration Enforcement Dispute

588After Incident
CRITICAL-67
IRS1770978857
IRS Erroneously Shared Taxpayer Data with DHS in Immigration Enforcement Dispute A controversial data-sharing agreement between the IRS and the Department of Homeland Security (DHS) has led to the unauthorized disclosure of thousands of taxpayers’ confidential records, according to a recent court filing. The agreement, signed in April 2023 by Treasury Secretary Scott Bessent and DHS Secretary Kristi Noem, authorized U.S. Immigration and Customs Enforcement (ICE) to submit names and addresses of undocumented immigrants to the IRS for cross-verification against tax records ostensibly to aid deportation efforts. However, IRS Chief Risk and Control Officer Dottie Romo revealed in a declaration filed this week that the agency erroneously shared additional taxpayer information with ICE, including residential addresses, for roughly 47,000 of the 1.28 million names requested. The IRS later acknowledged the error in January, notifying DHS and requesting the improperly shared data be disposed of in accordance with federal law. Advocacy groups, including Public Citizen and the Center for Democracy & Technology, argue the breach violates long-standing privacy protections and could endanger individuals if misused by enforcement agencies. The incident has intensified legal challenges to the IRS-DHS agreement. In November 2023, a federal court blocked the IRS from sharing tax data with DHS, ruling that the agency had unlawfully disseminated migrants’ records the previous summer. A Massachusetts federal court later ordered the IRS to halt the sharing of residential addresses with ICE. The dispute stems from a lawsuit filed by immigrant rights groups shortly after the agreement was signed, which alleged the policy undermined taxpayer privacy and legal safeguards. Critics warn the breach could have broader implications, including the potential for malicious targeting of Americans or further erosion of trust in tax confidentiality. The IRS has not publicly commented on the matter, and the extent of ICE’s use of the shared data remains unclear. The case underscores ongoing tensions between immigration enforcement and data privacy protections within federal agencies.
INCIDENT DETAILS -
TYPE
Data Breach
MOTIVATION
Immigration Enforcement
IMPACT
Data Compromised: Taxpayer records, residential addressesSystems Affected: IRS data-sharing systemsOperational Impact: Legal challenges, policy suspensionBrand Reputation Impact: Erosion of trust in tax confidentialityLegal Liabilities: Ongoing lawsuits, regulatory violationsIdentity Theft Risk: High (residential addresses exposed)
DATA BREACH
Type Of Data Compromised: Taxpayer records, residential addressesNumber Of Records Exposed: 47,000Sensitivity Of Data: High (PII, residential addresses)Data Exfiltration: Shared with ICEPersonally Identifiable Information: Names, residential addresses
JANUARY 2025
701Before Incident
Breach
01 Jan 2025IRS
Experian, Equifax, U.S. Government and Internal Revenue Service: Social Security data breach raises identity theft risk for millions

Unauthorized Social Security Data Access Raises Identity Theft Risks for Millions

646After Incident
CRITICAL-55
EXPEQUUNIIRS1769265453
Unauthorized Social Security Data Access Raises Identity Theft Risks for Millions The Trump administration recently acknowledged in a court filing that U.S. agents accessed and shared sensitive Social Security data without authorization, following whistleblower allegations and a lawsuit claiming the information was misused for political purposes. While the full scope of the exposure remains unclear, cybersecurity and privacy experts warn that the breach underscores a persistent threat: Social Security numbers (SSNs) are among the most valuable tools for identity thieves, enabling fraud that often goes undetected until financial or tax-related damage occurs. Experts emphasize that even limited exposure of SSNs can lead to severe consequences, including fraudulent credit applications, tax refund theft, medical identity theft, and unauthorized account takeovers. Criminals may use stolen data to file bogus insurance claims, manipulate medical records, or open new financial accounts activity that may not appear on traditional credit reports. Former federal prosecutor and privacy advocate Loewry noted that financial crimes rarely originate from credit reports, making proactive monitoring of bank, investment, and retirement accounts critical. To mitigate risks, experts recommend several immediate steps: - Freezing credit at all three major bureaus (Equifax, Experian, TransUnion) and the National Consumer Telecom & Utilities Exchange (NCTUE), which is used for telecom and utility approvals. - Establishing an online Social Security account to prevent criminals from redirecting benefit payments. - Obtaining an IRS Identity Protection PIN to block fraudulent tax filings. - Enabling two-factor authentication on financial and online accounts. - Monitoring the dark web for signs of exposed personal data, such as SSNs or email addresses. The breach highlights broader vulnerabilities in how SSNs are stored and accessed, with experts advising consumers not to wait for confirmation of exposure before taking protective measures. Given the long-term risks including fraud that may surface years after initial exposure vigilance across all financial and medical accounts is essential.
INCIDENT DETAILS -
TYPE
Data Breach
MOTIVATION
Political misuse (alleged)
IMPACT
Data Compromised: Social Security numbers (SSNs)Brand Reputation Impact: Potential reputational damage to U.S. government agenciesLegal Liabilities: Lawsuit and regulatory scrutinyIdentity Theft Risk: High (fraudulent credit applications, tax refund theft, medical identity theft, account takeovers)
DATA BREACH
Type Of Data Compromised: Social Security numbers (SSNs)Sensitivity Of Data: High (PII)Personally Identifiable Information: SSNs, potential financial and medical data
MAY 2024
739Before Incident
Breach
01 May 2024IRS
Internal Revenue Service: IRS’s Trump Data Leak Suit Resolution Must Reinforce Neutrality

IRS Faces Perception Risks in Trump Tax Data Leak Settlement Talks

685After Incident
CRITICAL-54
IRS1777365434
IRS Faces Perception Risks in Trump Tax Data Leak Settlement Talks The IRS is navigating a high-stakes settlement negotiation with former President Donald Trump over the unauthorized leak of his tax records, raising concerns about public perception and institutional trust. While the agency and Trump’s legal team have agreed to a 90-day pause in litigation to explore a resolution, the case carries broader implications for the IRS’s credibility and the principle of equal treatment under tax law. At the heart of the dispute is the 2020 leak of Trump’s tax information by an IRS contractor, which also affected other taxpayers under the same legal framework Section 7431 of the Internal Revenue Code. The case is complicated by Trump’s unique position as both a litigant and the former head of the executive branch overseeing the IRS, creating potential conflicts of interest. The Department of Justice (DOJ), representing the IRS, may face skepticism over whether the administration is effectively negotiating with itself, undermining public confidence in the process. The IRS’s handling of similar cases sets a precedent. In a prior settlement involving a billionaire’s leaked tax records, the agency issued a public apology, acknowledged policy failures, and committed to improved data security prioritizing trust over financial compensation. If Trump’s case results in a significantly different outcome, such as a multibillion-dollar payout, it could fuel perceptions of a two-tiered system where political influence dictates enforcement. Historical scandals, like the 1920s Teapot Dome affair, demonstrate how the mere appearance of favoritism can erode public trust in institutions. The IRS relies on voluntary compliance, which depends on the belief that tax laws apply uniformly. If the settlement process lacks transparency or independent oversight, it risks reinforcing doubts about fairness particularly given allegations that the original leak may have been politically motivated. To mitigate these risks, legal experts suggest structural safeguards, such as DOJ recusal or the appointment of an independent arbiter, to ensure the process appears neutral. The IRS could also formalize its commitment to treating materially identical claims consistently, with judicial oversight to reinforce accountability. The outcome of this case will not only resolve a legal dispute but could also shape public confidence in the tax system’s integrity. A poorly managed resolution may have long-term consequences, potentially reducing compliance and undermining the IRS’s core function.
INCIDENT DETAILS -
TYPE
Data Leak
MOTIVATION
Potentially politically motivated
IMPACT
Data Compromised: Tax recordsOperational Impact: Erosion of public trust in IRSBrand Reputation Impact: High (perception of favoritism and institutional bias)Legal Liabilities: Potential settlement costs, regulatory scrutinyIdentity Theft Risk: High (tax records contain sensitive PII)
DATA BREACH
Type Of Data Compromised: Tax records, personally identifiable information (PII)Sensitivity Of Data: HighData Exfiltration: Yes (leaked to media)Personally Identifiable Information: Yes
JANUARY 2021
742Before Incident
Breach
01 Jan 2021IRS
Internal Revenue Service

IRS Data Breach

674After Incident
CRITICAL-68
INT93916422
The hackers targeted the networks of Internal Revenue Services and breached the personal information of about 104,000 taxpayers. The stolen information included personal information like Social Security number, date of birth, address, and tax filing status of several years. IRS warned the taxpayers to be alerted of any suspicious activities.
INCIDENT DETAILS -
TYPE
Data Breach
IMPACT
Social Security numberdate of birthaddresstax filing status
DATA BREACH
Personal InformationSocial Security numberdate of birthaddresstax filing status
JANUARY 2018
801Before Incident
Breach
01 Jan 2018IRS
Booz Allen Hamilton, Internal Revenue Service and U.S. Department of the Treasury: Feds yank contracts with Booz Allen Hamilton after Trump tax leak

Treasury Cancels Booz Allen Hamilton Contracts After Massive Tax Data Leak

689After Incident
CRITICAL-112
BOOIRSUS-1769454012
Treasury Cancels Booz Allen Hamilton Contracts After Massive Tax Data Leak The U.S. Department of the Treasury announced on Monday the termination of all contracts with consulting firm Booz Allen Hamilton following a major breach involving the leak of sensitive tax information. The decision comes after former IRS contractor Charles Edward Littlejohn, who worked for Booz Allen, was sentenced in 2024 to five years in prison for disclosing confidential tax records including those of former President Donald Trump to media outlets. Between 2018 and 2020, Littlejohn provided stolen tax data to The New York Times and ProPublica, an act prosecutors described as "unparalleled in the IRS's history." The breach exposed records belonging to approximately 406,000 individuals, though the Treasury’s statement did not explicitly mention Trump’s leaked returns. Treasury Secretary Scott Bessent stated that the cancellation was necessary to "increase Americans' trust in government," citing Booz Allen’s failure to implement adequate safeguards for sensitive taxpayer data. The department had 31 active contracts with the firm, totaling $4.8 million in annual spending and $21 million in total obligations. Court documents revealed that Littlejohn intentionally sought the contractor role to access Trump’s tax returns, using his technical skills to extract data without detection. At his sentencing in January 2024, he acknowledged his actions, stating, "I used my skills to systematically violate the privacy of thousands of people." Booz Allen Hamilton has not yet commented on the termination.
INCIDENT DETAILS -
TYPE
Data Breach
MOTIVATION
Intentional disclosure to media outlets
IMPACT
Financial Loss: $21 million (total contract obligations)Data Compromised: Sensitive tax recordsSystems Affected: IRS tax record systemsOperational Impact: Termination of contracts with Booz Allen HamiltonBrand Reputation Impact: Loss of trust in government and contractorIdentity Theft Risk: High
DATA BREACH
Type Of Data Compromised: Tax recordsNumber Of Records Exposed: 406,000Sensitivity Of Data: High (confidential taxpayer information)Data Exfiltration: YesPersonally Identifiable Information: Yes

Frequently Asked Questions

?
What is the current A.I Rankiteo Cyber Score for IRS ?
?
What was IRS's A.I Rankiteo Cyber Score in June 2026 ?
?
What was IRS's A.I Rankiteo Cyber Score in May 2026 ?
?
What was IRS's A.I Rankiteo Cyber Score in April 2026 ?
?
What was IRS's A.I Rankiteo Cyber Score in March 2026 ?
?
What was IRS's A.I Rankiteo Cyber Score in February 2026 ?
?
What was IRS's A.I Rankiteo Cyber Score in January 2026 ?
?
What was IRS's A.I Rankiteo Cyber Score in December 2025 ?
?
What was IRS's A.I Rankiteo Cyber Score in November 2025 ?
?
What was IRS's A.I Rankiteo Cyber Score in October 2025 ?
?
What was IRS's A.I Rankiteo Cyber Score in September 2025 ?
?
What was IRS's A.I Rankiteo Cyber Score in August 2025 ?
?
What is the average per-incident point impact on IRS's A.I Rankiteo Cyber Score over the past 12 months ?
?
Where can I access detailed records of all cyber incidents associated with IRS ?
?
Where can I find a summary of the A.I Rankiteo Risk Scoring methodology ?
?
Where can I view IRS's profile page on Rankiteo ?
?
How accurate is the A.I Rankiteo Risk Scoring methodology ?