JHB 
The South African Revenue Service (SARS) eFiling system has long been a convenient tool for taxpayers and professionals alike. But cybercriminals have found ways to exploit this platform — placing unsuspecting taxpayers at serious financial and reputational risk.
eFiling hijackings are real, and they’re rising. Understanding how they occur — and how to prevent them — is now a crucial part of every taxpayer’s compliance strategy.
What is an eFiling hijacking?
An eFiling hijacking occurs when a third party — often posing as a tax practitioner — gains unauthorized access to your SARS eFiling profile. Once access is secured, the criminal can alter banking details, submit false returns, claim fraudulent refunds, or change your contact information to prevent you from being notified.
In many cases, victims are unaware anything is wrong until they receive communication from SARS — or don’t receive expected refunds.
How do hijackings happen?
These incidents often involve a combination of:
Phishing or social engineering
Fake emails, calls, or messages that trick you into sharing login credentials or personal information.
Giving access to someone claiming to be a tax practitioner without verifying their credentials or track record.
Easy-to-guess or reused passwords make accounts easy to breach.
Many users rarely log in or check their profile, allowing fraud to go undetected.
SARS recently stated that they are aware of these incidents and are working to improve security. However, the responsibility for maintaining access control largely lies with the account holder.
Red flags to watch out for
Be alert to these warning signs:
- Unexpected changes to your banking details on SARS eFiling
- Emails or SMSs from SARS referencing submissions you didn’t authorise
- Receiving tax notifications without any recent activity on your profile
- SARS correspondence suddenly stopping — especially refund confirmations
If you suspect your profile has been compromised, act fast. Contact SARS directly, report the suspicious activity, and seek assistance from your trusted MMS tax professional.
How to protect your SARS eFiling profile
These incidents often involve a combination of:
Use strong, unique passwords for your SARS login and change them regularly.
Enable two-factor authentication if available.
Avoid public Wi-Fi when accessing your SARS profile.
Only work with your verified, registered MMS tax practitioners. You can confirm our practitioner registration with SARS and controlling bodies like SAICA or SAIPA.
Never share login credentials, even with your accountant. Instead, use delegated access tools provided by SARS.
Regularly log in to monitor your profile, check your contact details, and verify any recent activity.
Partnering with us adds a layer of security
At MMS Group, we take eFiling security seriously. As registered tax practitioners with decades of experience, we help clients manage their compliance with the highest level of integrity, data security, and transparency. We never ask for your login details — and we use only approved practitioner access channels to submit and manage your tax information.
When it comes to your SARS profile, protection starts with awareness — and is strengthened by trusted partnership. If you’re concerned about the security of your eFiling profile or need professional assistance managing your tax affairs, our team is ready to help.