Security Alerts

• Your payroll approved (5/10/13)
  People are receiving fake emails with the title "Your payroll approved"
• Please respond - overdue payment (4/11/13)
  People are receiving fake emails with the title "Please respond - overdue payment."
• Fake ACH Batch Download Notification (3/11/13)
  People are receiving fake emails with the title "ACH Batch Download Notification."
• Pending Wire Transfer Notification (3/22/13)
  People are receiving fake wire email notifications with titles such as "Pending Wire Transfer Notification - Ref: 74L5"
• Incoming Transactions Report (2/26/13)
  People are receiving fake emails with the title "Incoming Transactions Report."
• Payroll Compliance Update: 2013 Federal Withholding Tables (2/21/13)
  People are receiving fake emails with the title "Payroll Compliance Update: 2013 Federal Withholding Tables."
• Please respond - overdue payment (2/21/13)
  People are receiving fake emails with the title "Please respond - overdue payment."
• TurboTax State Return Rejected (2/14/13)
  People are receiving fake emails with the title "TurboTax State Return Rejected."
• Fake ACH Batch Download Notification (2/8/13)
  People are receiving fake emails with the title "ACH Batch Download Notification."
• IRS refund owed to you (2/7/13)
  People are receiving emails with the title "IRS refund owed to you"
• Payment Received (1/22/13)
  People are receiving emails with the title "Payment Received."
• Payroll Account Holded by Intuit (1/11/13)
  People are receiving emails with the title "Payroll Account Holded by Intuit."
• Notification Only: Payroll Account Cancelled by Intuit (11/2/12)
  People are receiving emails with the title "Notification Only: Payroll Account Cancelled by Intuit"
• Your Intuit QuickBooks Order Confirmation (10/23/12)
  People are receiving emails with the title "Your Intuit QuickBooks Order Confirmation"
• Congrats - you're been granted access for GoPayments Merchant (10/15/12)
  People are receiving emails with the title "Congrats - you're been granted access for GoPayments Merchant."
• Your payroll is ready (10/09/12)
  People are receiving emails with a variety of similar titles like "Your payroll is ready."
• Congrats - you're accepted for Intuit GoPayment (10/05/12)
  People are receiving emails with the title "Congrats - you're accepted for Intuit GoPayment."
• IRS Approved 2012 W-2 and 1099 Tax Forms ? Order Before the Rush (10/03/12)
  People are receiving emails with the title "IRS Approved 2012 W-2 and 1099 Tax Forms ? Order Before the Rush."
• SERVICE NOTICE: Your Tax Return was Cancelled (10/03/12)
  People are receiving emails with the title "SERVICE NOTICE: Your Tax Return was Cancelled."
• Request of your employment changes info (10/01/12)
  People are receiving emails with the title "Request of your employment changes info."
• Your Intuit Order Notification (10/01/12)
  People are receiving emails with the title "Your Intuit Order Notification."
• Your payroll proceeded through Intuit. (9/26/12)
  People are receiving emails with a variety of titles, including "Your payroll proceeded through Intuit."
• US Airways reservation confirmation. (9/13/12)
  People are receiving emails with the title: "US Airways reservation confirmation"
• Fake email about incoming wire notification. (9/10/12)
  People are receiving emails with the title: "Incoming Wire Notification."
• Internet Banking False Positive Warning for Users with Avast! Antivirus (8/28/12)
  Intuit Financial Services has released information about a "false-positive" warning for users with Avast! Antivirus.
• Fake email about an important QuickBooks update. (8/28/12)
  People are receiving emails with one of the following titles: "Important QuickBooks Update, "QuickBooks Security Update," "Urgent: QuickBooks Update," and "QuickBooks Update: Urgent."
• Fake email: "Your order was shipped today" (8/14/12)
  People are receiving emails with the title "Your order was shipped today"
• Fake email about downloading Intuit.com invoice. (8/10/12)
  People are receiving emails purportedly from Classmates.com with the title "Download your Intuit.com invoice."
• Security Update for Gray GoPayment Card Reader (8/6/12)
  "GoPayments security update release for Android, iPhone, iPad and iPod Touch."
• Fake email about TurboTax tax refund. (7/23/12)
  People are receiving emails with the title "TurboTax Alert: Your $3,120.55 Tax Refund."
• Fake email about payments from Intuit Payments Network. (7/16/12)
  People are receiving emails with the title "You have received a new payment." This phishing is using a few different emails.
• Fake email about payroll processing by Intuit (7/16/12)
  People are receiving emails with the title "Your payroll processing is initiated by Intuit.
• Fake email about payments from Intuit Payments Network. (7/12/12)
  People are receiving emails with the title "You have received a new payment." This phishing is using a few different emails.
• Fake email about payroll processing by Intuit. (7/10/12)
  People are receiving emails with the title "Your payroll processing is initiated by Intuit.
• Fake emails using the Intuit brand to request tax information. (6/20/12)
  People are receiving emails with the title either "Please provide your tax information" or "Tax information needed within 30 days" or "Please provide your tax information ASAP."
• Fake email: Intuit Quickbooks Payroll (5/24/12)
  People are receiving emails with the title "Change Your Online Password."
• QuickBooks Potential Vulnerability Automatically Downloaded Patch Release (5/21/12)
  "QuickBooks has released an automatically downloaded patch for a potential security vulnerability."
• Fake email: Change Your Online Password (5/4/12)
  People are receiving emails with the title "Change Your Online Password."
• Fake email: You sent a payment (4/11/12)
  People are receiving emails with the title "You sent a payment."
• Change Your Online Password (3/16/12)
  People are receiving emails with the title "Change Your Online Password."
• Fake Email: Intuit order confirmations (3/12/12)
  People are receiving emails with a variety of subject lines about Intuit orders.
• Fake Email: Tax return fraud notification (3/8/12)
  People are receiving an email entitled "Tax return fraud notification."
• Fake Email: Intuit order confirmations (3/01/12)
  People are receiving emails with a variety of subject lines about Intuit orders.
• Fake Email: BBB case ID 77137847 (2/28/12)
  People are receiving an email entitled "BBB case ID 77137847."
• Fake Email: QuickBooks Security Notice (2/10/12)
  People are receiving an email entitled "QuickBooks Security Notice."
• Fake Email: Tax Information Needed within 30 days (2/6/12)
  People are receiving an email entitled "Tax Information Needed within 30 days."
• Legitimate Intuit Critical Notice (12/1/11)
  Customers are receiving an email entitled "Critical Notice" from Intuit and questioning whether it is phishing. This email is NOT phishing; is a legitimate email.
• Fake Intuit Online Payroll Email (11/28/11)
  Customers are receiving an email entitled "Your Intuit Online Payroll Free Trial".
• Fake QuickBooks Security Update Email (10/31/11)
  Customers are receiving an email entitled "QuickBooks Security Update".
• Fraudulent TurboTax Message (04/15/11)
  Customers are receiving a fraudulent email entitled "Important Message About Your 2010 Federal Tax Refund".
• Fake QuickBooks Security Update (04/6/11)
  We are seeing evidence of a fake QuickBooks Security update.
• Epsilon Data Breach May Affect You (04/4/11)
  Epsilon, a large marketing company, had names and email addresses stolen. Be careful when clicking on any link in an email.
• Fake QuickBooks Security Update (03/18/11)
  We are seeing evidence of a fake QuickBooks Security update.
• Legitimate TurboTax Email (03/1/11)
  When requested, TurboTax sends customers information about downloading TurboTax software.
• Phishing Alert from the IRS (02/23/11)
  Random individuals may receive a falsified e-mail claiming to be from the IRS."
• Phishing Alert from NACHA Electronics Payments Association (02/23/11)
  Random individuals and/or companies may have received a falsified e-mail with the subject title "Rejected ACH Transaction." This e-mail appears to be from NACHA-The Electronic Payments Association telling them that there is a problem with an ACH transaction they have originated. The e-mail includes a link which redirects the individual to a fake web page which appears to be the NACHA website and contains a link which is almost certainly an executable virus with malware.
• EFTPS notification: your account is blocked (11/09/10)
  Customers are reporting the receipt of a PayChex and TurboTax phishing email.
• Your Paychex and Tax payment has been rejected phishing email (09/20/10)
  Customers are reporting the receipt of a PayChex and TurboTax phishing email.
• IRS Phishing Scam (09/10/10)
  The IRS is reporting a new wave of phishing scams.
• Phishers never rest (09/02/10)
  Just a reminder that phishers never rest and your best protection is awareness.
• Zeus malware attacking financial institutions (07/12/10)
  A Zeus malware gang is targeting online banking customers of 15 leading US financial institutions by exploiting two trusted credit card security programs.
• Legitimate TurboTax Privacy Notification Email (06/11/10)
  Every year, TurboTax sends a notice to customers about our marketing practices with regard to customer information.
• Legitimate QuickBooks Update Email (06/09/10)
  QuickBooks customers received an email about a new update for QuickBooks Pro, Premier, Simple Start 2010 and Enterprise 10.0. This is a legitimate email.
• Phishing Alert for Intuit Small Business Customers-- security software (05/18/10)
  Intuit is receiving reports of individuals receiving fraudulent emails for Intuit Small Business Customers. The email asks customers to install Intuit Secure Software. Customers should delete this email. As we discover these fraudulent sites (cyber criminals often use the same email repeatedly with some variations, although they change web sites), we take them down.
• Legitimate Update for QuickBooks Pro, Premier, Simple Start 2010 and Enterprise 10.0 (05/07/10)
  Intuit recently released an update QuickBooks Pro, Premier, Simple Start 2010 and Enterprise 10.0. The text of the email message sent out to QuickBooks customers is shown below.
• Legitimate email from TurboTax about a Georgia Single Family Residence Tax Credit (03/30/10)
  IMPORTANT UPDATE FOR some TurboTax Customers: Intuit is sending an email to notify our customers about a Georgia Single Family Residence Tax Credit.
• IRS unveils 2010 list of notorious tax scams-the "Dirty Dozen" (03/23/10)
  IRS has unveiled its latest list of notorious tax scams, which it calls the "Dirty Dozen," highlighted by schemes involving phishing, hiding income offshore and false claims for refunds. IRS warns that these tax schemes are illegal and can lead to problems for both scam artists and taxpayers who risk significant penalties, interest and possible criminal prosecution.
• Legitimate email from TurboTax about a dependent qualification issue (03/10/10)
  Intuit is sending an email to notify our customers about a dependent qualification and credit issue. We are also reaching out to customers by phone. Given the number of phishing emails worldwide, TurboTax wants to ensure customers know this email is legitimate and that customers who receive the email should follow the instructions given.
• Phishing Alert for Intuit Small Business Customers-- digital certificate (03/8/10)
  Intuit is receiving reports of individuals receiving fraudulent emails for Intuit Small Business Customers. The email asks customers to download a Digital Certificate. Customers should delete this email. As we discover these fraudulent sites (cyber criminals often use the same email repeatedly with some variations, although they change web sites), we take them down.
• Phishing Alert for QuickBooks Customers--security plug-in or digital certificate (03/1/10)
  Intuit is receiving reports of individuals receiving fraudulent emails from QuickBooks or QuickBooks Online. The two separate emails ask customers to either download a plug in to assess their security or download a Digital Certificate. Customers should delete either of these emails. As we discover these fraudulent sites (cyber criminals often use the same email repeatedly, although they change web sites), we take them down.
• Phishing Alert for Intuit Payroll Customers (1/11/10)
  Some customers received an email from "Intuit Online Payroll" about updating security features by clicking a link and signing into their payroll service.
• Phishing Alert from NACHA Electronics Payments Association (11/12/09)
  Random individuals and/or companies may have received a falsified e-mail with the subject title "Rejected ACH Transaction." This e-mail appears to be from NACHA-The Electronic Payments Association telling them that there is a problem with an ACH transaction they have originated. The e-mail includes a link which redirects the individual to a fake web page which appears to be the NACHA website and contains a link which is almost certainly an executable virus with malware.
• QuickBooks ActiveX Controls (10/26/09)
  QuickBooks 2009 and older Security Issue Related to ActiveX: We've recently released a fix to address a potential security vulnerability within QuickBooks. The issue was related to the use of ActiveX technology in some versions of QuickBooks. On learning about the issue, we fixed the problem, tested the fixes within the identified versions of the software, and have released updates that will address the vulnerabilities. We are unaware of any customers affected.
• Fraudulent Emails (9/16/09)
  Intuit's name is being misused in fraudulent emails sent to QuickBooks Online and Intuit Online Payroll users.
• Fraudulent Job Postings (6/22/09)
  Intuit's name is being misused in a series of fraudulent classified advertisements under various headings, including "Treasury Finance And Payroll."
• Conficker Worm (3/30/09)
  Conficker is a worm which can exploit systems that are not protected. It is set to "call home" on April 1, 2009. Because of the unknowns associated with this worm, Intuit feels it is vital to update our customers and help them protect their information
• P2P File Sharing (3/3/09)
  Intuit is committed to helping people protect their personal and financial information and is continuing to advise consumers that using file sharing software can lead to certain, unintended risks, including unknowingly and inadvertently sharing sensitive, personal information.
• Coreflood Virus (2/16/09)
  Intuit has learned about malicious software called the Coreflood virus. This virus steals log in credentials and other sensitive information.