News from Jim
Most Recent News
Archives
Contact Us
By Email:
info@jimbeddow.com
By Phone:
770-218-9722
By Fax:
770-573-3612
By Mail:
1301 Shiloh Road NW
Suite 1110
Kennesaw, GA 30144

America Counts on CPA's
ccnlogo_blue_133x34
The QuickBooks Advanced Certified Pro Advisor designation means we know the software, but the Sleeter Certified Consultant knows the software and accounting.
Meta
Securely Upload Your Files
Press here to securely upload your large files to Jim Beddow.

Hackers Target Small Business

PostDateIcon February 10th, 2010 | PostAuthorIcon Author: Admin

The Wall Street Journal is reporting a huge increase in hacker attacks on small business bank accounts. The hackers are using “spear phishing” emails to small business employees that have bank account access, but this is just one common method. These emails gather usernames and passwords through a fictitious website or a malware keylogger that transmits keystrokes to the thief. They find the usernames and passwords in the keylogger log file, then access the bank accounts remotely, add phony payees and electronically transfer funds from the account. Many small businesses don’t have the resources to protect against this or to recover the funds and they often just absorb the losses.  I’ve personally seen an increase in the number of phishing emails purportedly from financial institutions.

There are many things the small business can do to protect themselves. Consider these steps:

  • Use a non-Windows operating system to access bank accounts. Since you’re accessing the bank account through a browser, Ubuntu or Fedora Linux can be used. A bootable CD can be made from many of the Linux distributions. Use that CD in an old machine to access your bank account.
  • If you use Microsoft Internet Explorer, make sure you have the latest,  version 8.  Make sure you don’t have version 6. If you do, upgrade. It’s free.
  • Protect accounts. You can configure accounts to require two approvals for payment.
  • Establish a daily limit on how much can be paid from the account.
  • Impose restrictions on adding payees.
  • Check balances and scheduled payments at the end of every workday to ensure all are authorized. Electronic payments are usually made in the morning, so you may have time to intervene and stop them.
  • Know your rights with the bank and make sure the bank has appropriate controls. Small businesses are suing banks for not having reasonable controls. That assumes the bank has any money and isn’t teetering on the edge of insolvency itself.
  • Report losses and connect with the FBI’s InfraGard, a group of businesses, educational institutions and local law enforcement agencies that cooperate to prevent attacks by sharing information.

Read the entire article here: http://online.wsj.com/article/SB10001424052748703483604574630690362605018.html?mod=dist_smartbrief

Very interesting reading.

PostCategoryIcon Posted in Technology

Comments are closed.

QuickBooks Certified Advanced Pro Advisor
Expert Partners
ccnlogo_blue_133x34
The Sleeter Group produces terrific QuickBooks training material. See their website at www.sleeter.com for up-to-date information.
Site Map

Contact Us | Terms of Use | Trademarks | Privacy Statement | Disclaimer
Copyright © 2009 Jim Beddow, CPA. All Rights Reserved.