Criminals love tax season. The stress and urgency surrounding this time of year makes the victim pool highly vulnerable to various types of schemes. In addition to phishing, tax season is also the time of year when criminals focus their efforts towards other types of attacks including Local File Inclusion (LFI), SQL Injection (SQLi), and credential stuffing . \r\n In case you missed the news,  the IRS moved tax day to May 17, 2021 , so expect a second wave from criminals targeting the new date. \r\n Quick Note: \r\n Today's post leverages data representing a moment in time, which consists of attacks observed between March 18 and April 29, in each of 2018, 2019, and 2020. In addition, we also examined data for June 17 through July 29, 2020. \r\n We picked these days in order to examine attack traffic before, during, and after normal tax filing times. Due to data volume and complexity, credential stuffing data will focus on 2020's data just to keep things simple.…