Presentation is loading. Please wait.

Presentation is loading. Please wait.

Data Compromises: A Tax Practitioners “Nightmare”

Published byAlban Bruce Modified over 6 years ago

Similar presentations

Presentation on theme: "Data Compromises: A Tax Practitioners “Nightmare”"— Presentation transcript:

1 Data Compromises: A Tax Practitioners “Nightmare”
Richard Furlong, Jr. Senior Stakeholder Liaison October 26, 2017 Main Line Association for Continuing Education

2 Internal Revenue Service Criminal Investigation
Criminal Investigation serves the American public by investigating potential criminal violations of the Internal Revenue Code and related financial crimes in a manner that fosters confidence in the tax system and compliance with the law.

3 Overview IRS Publication 4557/NIST - “Small Business Information Security: The Fundamentals” Identify: Data, People, Equipment “The Printer Breach” Protect: Limit Access, Updates, Firewalls, “Lost Passwords and Remote Access Breaches”

4 Overview (cont’d) Detect: Anti-Virus, Spyware, “Lost Passwords to Spear Phishing and Malware Breaches” Respond: Information Security Plan Recover: Backups, “Ransomware Attack” Cyber Security Resources

5 Identify Identify and control who has access to your business information Conduct Background Checks Require individual user accounts for each employee Create policies and procedures for information security

6 Identify Identify what information your business stores and uses

7 Identify Develop an Inventory of IT Related Equipment

8 Identify Practitioner Breach 1 “The Printer”
Office printer with wireless capabilities hooked to network Manufacturer default password never changed Perpetrator gained access via printer’s wireless capabilities and manufacturer default password Gained full access to Firm’s files

9 Identify

10 Protect Limit employee access to data and information
Patch your operating systems and applications Install and activate software and hardware firewalls on all your business networks Secure your wireless access point and networks

11 Protect (continued) Set up web and email filters
Use encryption for sensitive business information Dispose of old computers and media safely Train your employees

12 Protect Practitioner Breach 2 “Remote Access”
IT Service Provider on monthly retainer December 2016 IT Provider identifies attempted access via Remote Access Program January 2017 upgrades Remote Access to VPN February 2017 returns rejected

13 Protect (continued) IT forensics reveal remote access compromise via employees infected home computer in 03/16 Perpetrator loaded hidden program granting full access and capable of copying and extracting files Program concealed using a common file naming convention went undetected from 03/16 to 02/17 1/3 of clients ID Theft Victims

14 Protect

15 Protect

16 Detect Install and update anti-virus, spyware, and other malware programs Maintain and monitor logs

17 Protect (Phishing Emails)

18 Phishing E-mail (Continued)

19 Phishing E-mail (Continued)

20 Phishing E-mail (Continued)

21 Phishing E-mail (Continued)

22 Detect Practitioner Breach 3 “Malware”
Tax practitioner opens with attachment and clicks on attachment. IT Forensics reveal hidden program granting access was loaded when the attachment was opened

23 Detect (continued) Malware and key logger were downloaded on network
Users on the network logged into various portals which allowed the username and passwords to be accessed. Perpetrators were able utilize the username and passwords to gain full access to financial information.

24 Respond Develop a plan for disasters and information security incidents The plan should include the following Roles and Responsibilities: Who makes the decision to initiate recovery procedures and contact law enforcement What to do with your information systems (i.e. shut down/lock computers, move to backup site)

25 Respond (continued) Contact IRS and State Tax Authorities
Who to call in case of an incident (i.e. How and when to contact senior executives, emergency personnel, cybersecurity professionals, legal professionals, service providers, or insurance providers) State Notification Laws

26 Respond IRS Tax professionals should contact IRS Stakeholder Liaison when a compromise is detected. The Stakeholder Liaison will refer Information within IRS (i.e. Criminal Investigations, Return Integrity & Compliance Services) State Tax Agencies Tax professionals can the Federation of Tax Administrators to get information on how to report victim information to the appropriate state authorities.

27 Respond (continued) State Tax Agencies
Tax professionals can the Federation of Tax Administrators to get information on how to report victim information to the appropriate state authorities.

28 Recover Make full backups of important business data/information
Make incremental backups of important business data/information Make improvements to processes/ procedures/technologies

29 Recover Practitioner Breach 4 “Ransomware”
Delivery of the ransomware came in the form of phishing to the human resource manager. Manger clicked on the link and ransomware was installed onto the network.

30 Recover (continued) Ransomware shutdown the system and demanded payment of $1,500 in Bitcoins. Perpetrators threatened to sell the PII on the dark web. Tax practitioner paid $1,500 and had IT specialist remove and restore the data using backup tapes

31 Cyber Security Resources
Internal Revenue Service (IRS) Publication 4557 IRS RESOURCES for Tax Professionals Latest News Protect Your Clients; Protect Yourself

32 Cyber Security Resources (continued)
Federal Trade Commission FTC Start with Security National Institute of Standards and Technology (NIST); Small Business Information Security: The Fundamentals

33 Contact Information Richard Furlong, Jr. Senior Stakeholder Liaison

Download ppt "Data Compromises: A Tax Practitioners “Nightmare”"

Similar presentations

Darton College Information Systems Use Policies. Introduction Dartons Information Systems are critical resources. The Information Systems Use Policies.

Darton College Information Systems Use Policies. Introduction Dartons Information Systems are critical resources. The Information Systems Use Policies.
Red Flags Rule BAS Forum August 18, 2010. What is the Red Flags Rule? Requires implementation of a written Identity Theft Prevention Program designed.

Red Flags Rule BAS Forum August 18, What is the Red Flags Rule? Requires implementation of a written Identity Theft Prevention Program designed.
HIPAA: FEDERAL REGULATIONS REGARDING PATIENT SECURITY.

HIPAA: FEDERAL REGULATIONS REGARDING PATIENT SECURITY.
Online Banking Fraud Prevention Recommendations and Best Practices This document provides you with fraud prevention best practices that every employee.

Online Banking Fraud Prevention Recommendations and Best Practices This document provides you with fraud prevention best practices that every employee.
ITS Offsite Workshop 2002 PolyU IT Security Policy PolyU IT/Computer Systems Security Policy (SSP) By Ken Chung Senior Computing Officer Information Technology.

ITS Offsite Workshop 2002 PolyU IT Security Policy PolyU IT/Computer Systems Security Policy (SSP) By Ken Chung Senior Computing Officer Information Technology.
Factors to be taken into account when designing ICT Security Policies

Factors to be taken into account when designing ICT Security Policies
Network security policy: best practices

Network security policy: best practices
Citadel Security Software Presents Are you Vulnerable? Bill Diamond Senior Security Engineer

Citadel Security Software Presents Are you Vulnerable? Bill Diamond Senior Security Engineer
Information Security Information Technology and Computing Services Information Technology and Computing Services

Information Security Information Technology and Computing Services Information Technology and Computing Services
General Awareness Training

General Awareness Training
Cyber crime on the rise. Recent cyber attacks How it happens? Distributed denial of service Whaling Rootkits Keyloggers Trojan horses Botnets Worms Viruses.

Cyber crime on the rise. Recent cyber attacks How it happens? Distributed denial of service Whaling Rootkits Keyloggers Trojan horses Botnets Worms Viruses.
UNDERSTANDING THE RISKS & CHALLENGES OF Cyber Security DAVID NIMMO InDepth IT Solutions DAVID HIGGINS WatchGuard NEIL PARKER BridgePoint Group A BridgePoint.

UNDERSTANDING THE RISKS & CHALLENGES OF Cyber Security DAVID NIMMO InDepth IT Solutions DAVID HIGGINS WatchGuard NEIL PARKER BridgePoint Group A BridgePoint.
Network Security Policy Anna Nash MBA 737. Agenda Overview Goals Components Success Factors Common Barriers Importance Questions.

Network Security Policy Anna Nash MBA 737. Agenda Overview Goals Components Success Factors Common Barriers Importance Questions.
Security Baseline. Definition A preliminary assessment of a newly implemented system Serves as a starting point to measure changes in configurations and.

Security Baseline. Definition A preliminary assessment of a newly implemented system Serves as a starting point to measure changes in configurations and.
E-Security: 10 Steps to Protect Your School’s Network NEN – the education network.

E-Security: 10 Steps to Protect Your School’s Network NEN – the education network.
PLUG IT IN 7 Protecting Your Information Assets. 1.How to Protect Your Assets: The Basics 2.Behavioral Actions to Protect Your Information Assets 3.Computer-Based.

PLUG IT IN 7 Protecting Your Information Assets. 1.How to Protect Your Assets: The Basics 2.Behavioral Actions to Protect Your Information Assets 3.Computer-Based.
How Hospitals Protect Your Health Information. Your Health Information Privacy Rights You can ask to see or get a copy of your medical record and other.

How Hospitals Protect Your Health Information. Your Health Information Privacy Rights You can ask to see or get a copy of your medical record and other.
Data Security: Steps to Improved Information Security September 22, 2015 Presented by: Alex Henderson General Counsel and Chief Administrative Officer.

Data Security: Steps to Improved Information Security September 22, 2015 Presented by: Alex Henderson General Counsel and Chief Administrative Officer.
PRIVACY, SECURITY & ID THEFT PREVENTION - TIPS FOR THE VIGILANT BUSINESS - SMALL BUSINESS & ECONOMIC DEVELOPMENT FORUM October 21, 2014 -WITH THANKS TO.

PRIVACY, SECURITY & ID THEFT PREVENTION - TIPS FOR THE VIGILANT BUSINESS - SMALL BUSINESS & ECONOMIC DEVELOPMENT FORUM October 21, WITH THANKS TO.
G061 - Network Security. Learning Objective: explain methods for combating ICT crime and protecting ICT systems.

G061 - Network Security. Learning Objective: explain methods for combating ICT crime and protecting ICT systems.

Similar presentations

Ads by Google