The IRS has released its 2026 “Dirty Dozen” list, an annual compilation of prevalent tax scams that threaten taxpayers, businesses, and tax professionals. Published as part of a broader awareness initiative led by the Internal Revenue Service in coordination with the Security Summit, the list highlights evolving fraud schemes and reinforces the importance of vigilance, particularly during tax filing season.
Now in its third decade, the “Dirty Dozen” campaign reflects the increasingly sophisticated tactics used by fraudsters to exploit taxpayers. The 2026 update introduces new risks while reinforcing persistent threats, underscoring the need for proactive safeguards and informed decision-making.
Emerging Trends and Notable Developments
A key addition to the 2026 list is the rise of abusive undistributed long-term capital gains claims, particularly involving misuse of Form 2439. The IRS has identified a growing number of cases where taxpayers submit overstated or fabricated claims, sometimes linked to nonexistent or misrepresented investment entities. This shift reflects a broader trend: scammers are increasingly targeting more technical areas of the tax code to exploit gaps in taxpayer understanding.
At the same time, technology continues to amplify risk. Artificial intelligence, spoofing tools, and automated outreach have enabled more convincing impersonation schemes, making traditional warning signs harder to detect.
The 2026 Dirty Dozen: Overview of Key Scam Categories
The IRS categorizes this year’s risks into twelve primary schemes, each representing a distinct threat vector.
Digital and AI-Driven Impersonation Phishing emails, text messages (“smishing”), and AI-enabled phone scams remain among the most common threats. Fraudsters impersonate the IRS using fake websites and QR codes, spoofed caller IDs, and voice mimicry and robocalls. These tactics aim to extract sensitive information or install malware. The IRS reiterates that it typically initiates contact by mail and does not demand immediate payment via unsolicited communications.
Fraudulent Charities Scammers frequently exploit crises by creating fake charitable organizations. Donations to these entities not only fail to support legitimate causes but may also expose donors to identity theft. Only contributions to verified tax-exempt organizations qualify for deductions.
Social Media Misinformation Viral “tax hacks” circulating on social platforms continue to mislead taxpayers into claiming improper credits or filing inaccurate returns. These schemes can result in audits, penalties, and potential criminal exposure.
Identity Theft and Account Takeover Unauthorized access to IRS online accounts remains a significant concern. Criminals may use stolen personal information or pose as helpers during account setup to gain control of taxpayer profiles.
Abusive Tax Credit and Refund Schemes Several items on the list involve fabricated or exaggerated claims, including misuse of Form 2439 for capital gains credits, bogus self-employment tax credit promotions, and overstated withholding schemes to inflate refund. These tactics often promise large refunds but expose taxpayers to enforcement actions and financial penalties.
Unethical Tax Preparers So called “ghost preparers” who refuse to sign returns or provide identification numbers present a serious compliance risk. Taxpayers remain legally responsible for all submitted information, regardless of who prepared the return.
Inflated Non-Cash Charitable Contributions Schemes involving exaggerated valuations of donated property—such as art or conservation easements—continue to attract IRS scrutiny. These arrangements often promise substantial tax reductions without adequate support.
Cybersecurity Threats Targeting Professionals Tax professionals and businesses face increased exposure to spear-phishing and malware attacks. These campaigns frequently masquerade as legitimate client communications to gain access to sensitive systems and data.
Misleading Offer in Compromise Promotions So-called “OIC mills” aggressively market debt resolution services, often charging high fees while overstating the likelihood of qualification for the IRS Offer in Compromise program.
Implications for Taxpayers
The 2026 Dirty Dozen highlights a critical reality: tax-related fraud is no longer limited to simple scams. Increasingly, schemes involve technical tax concepts, digital manipulation, and social engineering tactics that can deceive even financially sophisticated individuals.
For taxpayers and advisors, key risk mitigation strategies include:
- Verifying all IRS communications through official channels
- Avoiding reliance on unsolicited advice or social media claims
- Engaging qualified, credentialed tax professionals
- Exercising caution when claiming unfamiliar credits or deductions
- Implementing strong cybersecurity practices, particularly for sensitive financial data
Conclusion
Hire a competent tax professional. The IRS “Dirty Dozen” serves as both a warning and a practical guide to navigating an evolving threat landscape. As fraudsters adopt more advanced technologies and strategies, the margin for error narrows—making diligence, skepticism, and professional guidance essential.
By understanding these risks and implementing appropriate safeguards, taxpayers and advisors can better protect financial information, ensure compliance, and avoid the costly consequences associated with fraudulent or unsupported tax positions.