The IRS admits more than 200,000 attempts were made from questionable email domains, with more than 100,000 of those attempts successfully clearing authentication. Security experts say the IRS should have used behavioral analytics to detect the breach. Social Security, date of birth, street address, and additional sensitive financial information something like the amount of specific loan payment or the balance, I assume thats more than enough data to get access to many financial instruments. The IRS says the data was obtained from a non-IRS source since it seems to be exactly the kind of information the IRS has, including tax filing status.”]