by Rickard Jorgensen, FCII, ARM, ACIArb. In the past few years we have seen quite a few of these costly and tragic situations and paid a number of claims made against our CPA firm and investment professionals clients. The essence is that a CPA or adviser (or Trustee) is induced by a trick, artifice or […]
By Nick Matarazzo A data breach can wreak havoc on your business and its reputation. Not to mention the fines incurred and countless hours you will spend reviewing your computers and the source of the threat. Research suggests that 90% of cyber attacks stem from a phishing or social engineering attack. Educate your employees about […]
by Rickard Jorgensen FCII, ARM, ACIArb. As we discussed in prior postings, social engineering is a major problem for CPAs. Go to: here for risk management advice and here for coverage details Social engineering is a deception to manipulate individuals into carrying out a particular act, such as transferring money, handing over confidential information or […]
Cybercrime Uses Social Engineering Techniques to Steal Employee Credentials and Commit Payroll Diversion
By Rickard Jorgensen, FCII, ARM, ACIArb Recent developments clearly shows the urgent need for security awareness training. The FBI warned September 18, 2018 about new criminal campaigns that target the online payroll accounts of employees in a variety of industries. METHODOLOGIES “Cybercriminals target employees through phishing emails designed to capture an employee’s login credentials. Once […]
by Rickard Jorgensen, FCII, ARM, ACIArb Sextortion attacks against professional firms, including CPAs, are not uncommon and increasing in frequency. Sextortion is a form of blackmail in which sexual information or images are used to extort sexual favors or cash from the victim. The FBI offers an explantion of this new crime here. However, recently […]
I know this is a little off topic as regards CPA professional liability insurance but cyber attacks are increasing in frequency and size (dollar value). At least monthly (and some times more) we receive calls from panicked firms because of a cyber attack. Good risk management is the best way to reduce the impact of cyber […]
A recent report from Netdilgence highlighted the increasingly difficult cyber risk environment for by business. A copy of the paper is available here. CPAGold™ members have access to a broad range of cyber risk services. One of the most useful is the substantial support and resources provided by eRiskHub. eRiskHub offers a range of tools and information […]
by Rickard Jorgensen, FCII, ACIArb., ARM Back in July 2017 we posted a blog about a protocol to minimize the possibility of a social engineering claim (Go here for the posting). This topic has become of interest to CPAs as the number of spoofing claims has increased. A recent posting on the KnowBe4 website (go here […]
What has become a common feature of the post-Holiday season is the W2 phishing scam. This is a sophisticated social engineering attack to dupe clients’ payroll and HR departments into providing W-2 data on employees, to enable the crooks can file fraudulent tax returns. For several years, these criminals have been the cause of identity […]
Originally posted May 14th, 2017 by Paul E. Paray, Esq. here. On May 12, 2017, WannaCry ransomware infections reportedly took hold of 200,000 computer systems in 150 countries. Experts have been warning against ransomware exploits for years. The recent rise of ransomware, however, has been a function of the low cost of financial data on the dark […]
- Professional Liability for CPAs – Understanding your coverage – Part I – the insurance application
- Gotcha! Three cyber policy traps to look out for (and a postcript to the CCH hack)
- Coverage for independent subcontractors via the CPAGold™ program.
- A cyber coverage “Fire Drill” – professional liability insurance implications of the CCH Axcess (Wolters Kluwer Tax & Accounting) malware attack.
- Private Company Management Liability Claims