Taxpayers who pick up the phone to hear someone claiming to be from the IRS face a simple test: did a letter arrive first? The Internal Revenue Service has stated repeatedly that it normally contacts people for the first time by mail sent through the U.S. Postal Service. Any phone call, text, or email that skips that step is not how the agency operates, and the distinction is the single fastest way to identify a scam before money or personal data changes hands.
How the IRS mail-first rule exposes phone scams
The agency’s own consumer guidance spells out a clear sequence. According to the IRS, it will normally reach taxpayers initially by mail delivered through the Postal Service. A phone call from an actual IRS employee can follow, but only after a written notice or letter has already been sent and only about the specific issue described in that letter. Revenue officers who need to schedule in-person visits follow the same protocol, sending an appointment letter before picking up the phone, and they are expected to present official identification and provide a direct callback number tied to the agency.
That sequence creates a built-in verification layer. If no letter has arrived in the mailbox, no legitimate IRS business is being conducted over the phone. The federal government portal USA.gov reinforces this by noting that tax questions are not handled by email, further narrowing the channels through which real IRS communication travels. Scammers, by contrast, rely on urgency and surprise. Phone and text messages impersonating the agency typically demand immediate payment or threaten arrest, tactics the IRS says it never uses in a first contact.
IRS warnings describe a familiar pattern: impostors often insist on payment through gift cards, wire transfers, or cryptocurrency, methods that are difficult to reverse once money is sent. In its public alerts on recognizing common tax scams, the agency stresses that it does not demand a specific payment method, will not ask for card numbers over the phone, and does not send law enforcement to arrest people for unpaid tax bills without extensive prior correspondence. Any caller who ignores these norms is signaling a likely fraud.
One gap in the public record limits how precisely anyone can measure the problem. Neither the Treasury Inspector General for Tax Administration nor the Federal Trade Commission has published a tabulated breakdown showing how many verified impersonation complaints involved taxpayers who had received no prior mailed notice. Cross-referencing TIGTA complaint timestamps with Postal Service delivery records could, in theory, reveal whether the vast majority of scam targets had no preceding written notice within the prior 30 days. That data linkage has not been performed or released publicly, leaving the scale of the exposure estimated rather than measured.
What taxpayers still cannot verify on their own
The mail-first rule is clear in principle, but taxpayers who want to confirm whether a specific letter is genuine face practical limits. The IRS maintains online tools for scheduling appointments and checking account activity, yet the agency has not published usage statistics or outcome data showing how often mail-initiated contacts are resolved versus those that begin through other channels. Without that information, taxpayers must rely on the rule itself rather than on any dashboard that tracks its application in real time.
A second unresolved question involves the IRS employee-verification system. The agency references a tool that lets taxpayers confirm whether a caller actually works for the IRS, but detailed descriptions of how that tool functions or how many people use it each filing season have not been made broadly available. For anyone who receives an unexpected call, the safest first step is to hang up, check the mailbox for any recent IRS correspondence, and then call the agency directly using the number printed on that letter or the main phone line listed on IRS.gov rather than any number supplied by the caller.
Taxpayers also cannot easily verify the authenticity of caller ID information, which scammers routinely spoof to display “IRS” or a Washington, D.C., area code. The agency’s own alerts on avoiding identity-theft impostors emphasize that technology makes it simple for criminals to mimic official-looking contact details. Because of that, the presence of a government-style number on a phone screen offers no reassurance; the only reliable cross-check is whether a legitimate notice arrived by mail in advance.
These structural limits place more of the burden on individual skepticism. The IRS urges people who suspect a scam to refrain from sharing Social Security numbers, bank data, or one-time passcodes with anyone who initiates contact. Instead, taxpayers can independently locate official contact channels, confirm whether any balance is actually due, and, if appropriate, report the attempted fraud to oversight offices. Until more granular public data is available on how scams intersect with the agency’s mail-first practices, that cautious approach remains the most practical protection.
Warren Cohen is a finance writer based in Phoenix, Arizona, covering personal finance topics including credit, banking, and beginner investing. He earned his degree in business administration from Arizona State University and began his career working in consumer finance, where he gained direct experience with lending and credit systems. He now writes for personal finance websites and fintech platforms, focusing on clear, practical content that helps readers make informed financial decisions.
