Internet con artists have a new way to get unsuspecting people to cough up Social Security numbers or other personal data -- impersonate tax collectors.

The latest Internet scam involves a fake e-mail from the Internal Revenue Service stating that you're due a tax refund, and you can collect it by following an Internet link to a site that asks for your Social Security number, credit card number and bank account.

The message looks like it comes from the IRS, and following the link takes one to a page that looks just like an official IRS Web site, including a home button that takes browsers to the actual IRS homepage, www.irs.gov.

This is a phishing scam, just like the fake notices from eBay, Amazon.com or credit card companies that flood our e-mail boxes.

The goal is to get people to unwittingly hand over information so identity thieves can assume their identities, clean out their bank accounts and destroy their credit ratings in short order.

The IRS is aware of the scam and advises people to just hit the delete button. It does not send out unsolicited e-mail, nor does it or any government agency ask people for credit card numbers.

So far, the Utah Division of Consumer Protection has not received any complaints. But this is another example of the Internet being used by con artists to fleece unsuspecting victims.

With common sense and a healthy dose of skepticism, people can foil these identity thieves and hucksters.

Ignore unsolicited requests for personal data. Legitimate businesses and financial institutions won't ask for Social Security numbers or other personal data by e-mail. Banks and credit card companies already have this information on file.

Don't click links asking for personal information. Phishers will set up Web sites that look just like a company's official site where they can gather personal information from unsuspecting victims. Some will even direct victims to the company's actual site, but open a pop-up window to collect personal data.

Don't trust. Verify. If someone contacts you and asks for personal information to clear up a problem with a business, don't reply directly. Instead contact the company yourself, either by going to its Web site or calling on the phone, and find out if there really is a problem.

Be skeptical. If the IRS owes you money, it's not going to send you an e-mail and ask for your credit card number. The agency will just send a check by mail or make an electronic deposit in your bank account if you provided the data on your tax return.

Turn them in. If you suspect someone is trying to steal your identity through phishing, notify the company that's being impersonated, as well as the National Fraud Information Center, www.fraud.org. If you think you were victimized by a phishing scam, contact the state Attorney General's office at idtheft.utah.gov. Even if the phishers are operating beyond the reach of authorities, the publicity may keep other people from taking their bait.

This story appeared in The Daily Herald on page A6.