[tekla]

https://www.taxpayeradvocate.irs.gov

I can't tell if this is trying to seem fake.

[caymanjim]

Seriously. This reads like self-promotion of a bad YouTube channel or something. It's amateurish, full of self-aggrandizement and opinions. This has no place coming from our gov't.

[altairprime]

FYI: https://en.wikipedia.org/wiki/Office_of_the_Taxpayer_Advocat...

[blitzar]

> An official website of the U.S. Gov

Looks as legit as the email I got from the official office of The Prince of Nigeria.

[tzs]

What seems fake about it?

[tekla]

Compare this site to the base domain.

https://www.irs.gov/

Do you think it looks official? Or does it look like someone spent $10 on a 3rd world rando to make a site on Wordpress and a spoofed URL and didn't even bother to make it part of the official site.

[DANmode]

> Do you think it looks official?

I check the address bar for that.

[tekla]

You mean the thing that has been the source of many cybersecurity issues for years because fonts w/ ambiguous characters and varying levels of "how closely are you actually reading the URL"?

The very thing where sites like gmai1.com that look exactly like the real site phish creds?

Or things that even Google has issues with subdomains?

https://hoxhunt.com/blog/advanced-phishing-attack-using-goog...

The IRS site does use lots of subdomains like https://sa.www4.irs.gov, but even it looks like its using the same design language as the normal site.

[DANmode]

> You mean the thing that has been the source of many cybersecurity issues for years because fonts w/ ambiguous characters and varying levels of "how closely are you actually reading the URL"? The very thing where sites like gmai1.com that look exactly like the real site phish creds?

Yes, that’s the one.

If I’m really paranoid, I’ll:

1.) avoid providing data to that page

2.) cross-reference host IP

3.) find the page on the original URL via search index

[tekla]

So you dont just read the address bar as claimed