Multiple tax preparation firms in Massachusetts hit by data theft breach
Incident
Summary
Hide ▲
Show ▼
Multiple tax preparation firms in Massachusetts were compromised when phishing emails delivered Warzone RAT and gave an attacker access to firm systems. The intrusion enabled theft of client Social Security numbers and prior-year tax data, turning the breach into a fraud pipeline. The stolen information was used to file over 1,000 fraudulent tax returns and support more than $1.3 million in refunds. The incident shows how access to tax preparer systems can quickly cascade into large-scale identity and refund fraud.
Related Happenings
Oleksandr Didenko sentencing in North Korean IT worker identity-theft case
Law Enforcement
First: 20.02.2026 11:00
Last: 20.02.2026 11:00
Sources 1
About this happening:
A federal court **sentenced** **Oleksandr Didenko** to **60 months in prison** for helping a **North Korean IT worker** identity-theft scheme infiltrate **U.S. companies**. The co...
Oleksandr Didenko sentencing in North Korean IT worker identity-theft case
Law EnforcementAbout this happening: A federal court **sentenced** **Oleksandr Didenko** to **60 months in prison** for helping a **North Korean IT worker** identity-theft scheme infiltrate **U.S. companies**. The co...
North Korean stolen-identity IT job campaign against U.S. companies
Campaign
First: 20.02.2026 11:00
Last: 20.02.2026 11:00
Sources 1
About this happening:
A **North Korea-linked** IT-worker campaign used **stolen identities** and **proxy accounts** to fraudulently place remote workers at **40 U.S. companies**, creating unauthorized...
North Korean stolen-identity IT job campaign against U.S. companies
CampaignAbout this happening: A **North Korea-linked** IT-worker campaign used **stolen identities** and **proxy accounts** to fraudulently place remote workers at **40 U.S. companies**, creating unauthorized...
Matthew Abiodun Akande sentencing in tax-firm hacking case
Law Enforcement
First: 19.02.2026 15:51
Last: 19.02.2026 15:51
Sources 1
How related:
A Nigerian national was sentenced to eight years in prison for hacking multiple tax preparation firms in Massachusetts and filing fraudulent tax returns seeking over $8.1 million in refunds.
About this happening:
**Matthew Abiodun Akande** was **sentenced to eight years in prison** for a **tax-firm hacking** and **refund fraud** case that targeted firms in **Massachusetts**. Prosecutors sa...
Matthew Abiodun Akande sentencing in tax-firm hacking case
Law EnforcementHow related: A Nigerian national was sentenced to eight years in prison for hacking multiple tax preparation firms in Massachusetts and filing fraudulent tax returns seeking over $8.1 million in refunds.
About this happening: **Matthew Abiodun Akande** was **sentenced to eight years in prison** for a **tax-firm hacking** and **refund fraud** case that targeted firms in **Massachusetts**. Prosecutors sa...
ShinyHunters vishing campaign targeting SSO accounts
Campaign
First: 02.02.2026 15:46
Last: 02.02.2026 15:46
Sources 1
About this happening:
The **ShinyHunters** group ran a **voice phishing** campaign against **single sign-on (SSO) accounts** at **Okta, Microsoft, and Google**, widening risk across **more than 100 hig...
ShinyHunters vishing campaign targeting SSO accounts
CampaignAbout this happening: The **ShinyHunters** group ran a **voice phishing** campaign against **single sign-on (SSO) accounts** at **Okta, Microsoft, and Google**, widening risk across **more than 100 hig...
Latest development: 26.05.2026 22:46
ShinyHunters claims it breached Charter Communications on April 1 by vishing an employee's Microsoft Entra account, then used that access to export millions of consumer and business customer records from the company's Salesforce instance; Charter says no sensitive personal information or CPNI was exfiltrated.
ShinyHunters voice-phishing campaign targeting SSO accounts for extortion
Campaign
First: 24.01.2026 01:35
Last: 24.01.2026 01:35
Sources 1
About this happening:
A **ShinyHunters**-linked extortion campaign is using **voice phishing** to target **Salesforce customers** and steal data for ransom, with the operation first surfacing in **May...
ShinyHunters voice-phishing campaign targeting SSO accounts for extortion
CampaignAbout this happening: A **ShinyHunters**-linked extortion campaign is using **voice phishing** to target **Salesforce customers** and steal data for ransom, with the operation first surfacing in **May...
Latest development: 27.04.2026 17:43
ShinyHunters breached ADT after compromising an employee's Okta single sign-on (SSO) account in a vishing attack, then used that access to reach ADT's Salesforce instance and steal data. Have I Been Pwned said the exposed data affected 5.5 million people and included names, phone numbers, addresses, and in a small percentage of cases dates of birth and partial Social Security numbers or Tax IDs; the group later leaked an 11GB archive after extortion failed.
Timeline
-
19.02.2026 15:51 2 articles · 3mo ago
Eight-year prison sentence for Massachusetts tax-firm compromise
Legal Policy Action UpdateMatthew Abiodun Akande received an eight-year prison sentence for compromising four tax preparation firms in Massachusetts with phishing emails that impersonated the chief executive of a Massachusetts architectural engineering company, delivering Warzone RAT through a disguised Dropbox payload, stealing client Social Security numbers and prior-year tax data, and using the stolen information to file over 1,000 fraudulent tax returns seeking more than $8.1 million in refunds.
Show sources
- Nigerian man gets eight years in prison for hacking tax firms — www.bleepingcomputer.com — 19.02.2026 15:51
- Nigerian man gets eight years in prison for hacking tax firms — www.bleepingcomputer.com — 19.02.2026 15:51