Be vigilant to protect against ransomware

Mat Payne
Director of Technology

The massive worldwide cyberattack this weekend provides a good opportunity to revisit your IT security measures.

Hundreds of thousands of users were infected with what is referred to as ransomware that locked down victims’ computers and held the data ransom until the victim paid money in bitcoins.

Once the initial computer was infected, the virus, known as WannaCry, would search the network and find other computers that were vulnerable to the recent security flaw that was discovered in March during a release of NSA tools used to hack computers.

At that time, Microsoft quickly released a patch for the security flaw and encouraged all users to patch their systems immediately.  Unfortunately many users never did, which allowed the virus to spread so rapidly. A security researcher in the United Kingdom was able to quickly stop the spread of the infection which could have been much, much worse.

According to media reports, such as the Wall Street Journal, the malware spread across several countries on Friday, but appeared to be contained by Monday. However, until the source can be identified, there are concerns that it could resurface.

The critical failure for this infection came when many of the world’s users ignored the updates that were released by Microsoft. We want to encourage our users to turn on automatic updates in Windows and install them as soon as they are ready.

Ransomware is a phishing scheme that can infect your computers primarily when the user clicks on a link that contains the virus. This is why it is important to be very cautious about emails – particularly those with links or attachments – and hold fast to policies and procedures to protect your valuable information.

“Spoofing” has become a common way for criminals to hack into your accounts – usually using email as a vehicle, but sometimes even going so far as to set up fraudulent, but authentic-looking websites.

A “spoofing” email appears to come from a legitimate company official. It will contain, for example, the actual name of the chief executive officer or owner of the company. The fraudulent email will be sent to the person handling payroll or human resources asking for a list of employees and their identifying information, including Social Security numbers.

During tax season, a spoofing email scam surfaced that appeared to come from the IRS. According to the IRS, some of the emails contain language similar to these examples:

  • “Kindly send me the individual 2016 W-2 (PDF) and earnings summary of all W-2 of our company staff for a quick review;”
  • “Can you send me the updated list of employees with full details (Name, Social Security Number, Date of Birth, Home Address, Salary);” or
  • “I want you to send me the list of W-2 copy of employees wage and tax statement for 2016, in need them in PDF file type, you can send it as an attachment. Kindly prepare the lists and email them to me asap.”

You will note that the examples include some incorrect grammar, run-on sentences or inappropriate capitalization. This is one clue that the email request is not legitimate.

This is typical of most phishing scams, which have once again made the IRS list of “Dirty Dozen” tax scams for the 2017 filing season.

In these email schemes, criminals pose as a person or organization the taxpayer trusts or recognizes. They may hack an email account and send mass emails under another person’s name.  They may pose as a bank, credit card company, tax software provider or government agency. Criminals go to great lengths to create websites that appear legitimate but contain phony log-in pages. These criminals hope victims will take the bait and provide money, passwords, Social Security numbers and other information that can lead to identity theft.

Scam emails and websites also can infect a taxpayer’s computer with malware without the user knowing it. The malware can give the criminal access to the device, enabling them to access all sensitive files or track keyboard strokes, exposing login information.

You should also be aware of any emails that demand immediate action or seem extremely urgent.  Creating a sense of urgency is designed so that you might do something that normally bypasses your normal procedures.

Another place to look if you are suspicious of electronic communication is the sender’s address. Usually the con artists will use an address that is similar to your company’s domain name, but there is usually a misspelling, an extra or missing punctuation mark, the use of a public email, like Gmail or Yahoo, or other subtle differences that can go overlooked.

Also be sure to check the timing of the email. If you receive an email that would normally be sent during business hours but was sent at an unusual time, like 3 a.m., it is likely a scam.

Remember, don’t ever click on links included in the body of suspicious or questionable emails or open attachments. If in doubt, place a phone call to the person who supposedly sent the email just to verify it is legitimate.

It’s better to be safe than sorry. This would be a good time to establish email safety protocols with your employees and payroll service provider.

Please let us know if we can help you in any way.

 

Recent Articles:

Follow Antares CPAs:

Succession & Transition Strategies

Creating a successful succession plan is about protecting the future of a business and/or brand and ensuring there is a strategy in place to ensure your business continues to thrive.

After years of investing time, money and other resources, it’s imperative to prepare for this next stage in business and life. Poor planning can increase risks for stakeholders and tarnish legacies. Let’s make sure the next generation is well-equipped and ready to take your life’s work and family legacy to an even greater level of success.

Each situation is unique because the needs of each one involved are unique. We carefully review each opportunity to determine how best to structure a transition while meeting your goals, complying with any brand licensing polices and minimizing the tax implications of the transfer.

  • Next generation succession planning
  • Retirement planning
  • Wealth management

Let's get started.

Call us at 770.785.7855 Or email hello@antaresgroupcpas.com

Technology Services

Antares Group’s technology team provides convenient hardware and software support, along with comprehensive cloud accounting services with 24/7 access to up-to-date financial information exactly the way you want it, on any connected device, with a customizable dashboard interface. We use best-in class cloud accounting platforms and software including Sage Intacct, Bill.com and robot process automation (RPA) with integration capabilities with some of the leading point-of-sale, payroll, and business operations management software programs.

Cloud accounting is just the beginning; Antares Group’s experienced technology team also performs system evaluations and makes recommendations for products and services that will help your business run more efficiently, as well as protecting your information and infrastructure with robust security options. Using the right technology for automation will simplify your life and keep your valuable data safe..

  • Technology and security optimization
  • Complete cloud accounting services
  • Computer troubleshooting assistance with remote and onsite repair

Let's get started.

Call us at 770.785.7855 Or email hello@antaresgroupcpas.com

Business Planning & Valuation

An accurate understanding of your company’s current value and financial viability is vital for achieving business success and the launch pad to boundless possibilities in the years to come. Realistic valuations are essential for long-term strategic plans, business successions and expansions, gift and estate planning, and a lucrative retirement package. Planning for where you want to go in the future is what our business and tax advisors do best. Whatever your goals, we are here to provide you with the right plan and insightful guidance to achieve it.

  • Trend reporting and analysis and business valuation
  • General business and start-up consulting
  • Major reinvestment planning
  • Cash flow projections

Let's get started.

Call us at 770.785.7855 Or email hello@antaresgroupcpas.com

Back Office Solutions

In such a fast-moving business environment, business owners need every advantage to succeed. Improving efficiency should be an ongoing part of your strategy for financial success, empowering you to make continuous improvements.

Whether your business is a single location seeking to grow effectively and sustainably, an established franchise brand adding new locations, or something in between, Antares Group provides a suite of back office services and the financial expertise to help business owners and managers achieve their operational and financial goals. In the process of supporting your essential back office operations with practical solutions, we analyze the function and effectiveness, looking for inefficiencies and potential liabilities, offering valuable insights for owners and managers.

  • Daily deposit verification and online banking monitoring
  • Process invoices and code general ledger accounts
  • Process vendor payments and file 1099s
  • Prepare and file sales and use tax returns
  • Reconcile bank, credit card and cashless sales accounts

Let's get started.

Call us at 770.785.7855 Or email hello@antaresgroupcpas.com

Tax Advisory

Minimizing your tax burden is a year-round strategy; planning for and preparing complex business and individual tax returns is where Antares Group excels. Beyond simply helping you fulfill basic tax obligations, you can rely on our tax advisory team to keep you informed of ever-changing regulations and keep you in compliance. We conduct regular reviews to make sure all methods of reducing your tax liabilities are being used. We routinely assess your personal income tax situation and cash flow to guard against the unexpected. This ongoing strategic analysis empowers you to maximize tax savings and capitalize on new opportunities.

In addition, we provide advisory services for new business startups, acquisitions, and dispositions. Through careful analysis, we help clients determine the best structure and make the process as seamless as possible.

  • Business and individual year-end tax returns
  • Personal property, gift, and trust income tax returns
  • Fixed asset setup and maintenance
  • Annual tax planning and preparation

Let's get started.

Call us at 770.785.7855 Or email hello@antaresgroupcpas.com

Cloud Accounting

Whether you run a small closely held business or a large franchise operation, maintaining a firm grasp of accounting and bookkeeping can be challenging. Between managing staff and overseeing daily operations, there is not enough time to dig into the books and make sense of the financials. You need to know the facts and the implications. – having precise, up-to-date information at hand means you always know your financial position so you can make informed decisions that keep your business moving forward.

The financial experts at Antares can create a custom menu of accounting and tax services perfectly catered to your business needs, including accurate and timely financial statements and reports, so you are always prepared to respond quickly to changing and challenging circumstances. Along the way, we provide clear feedback and financial guidance to help you predict trends and recognize issues, then make the necessary adjustments to sustain cash flow throughout the year.

  • Timely preparation of financial statements based on your particular needs
  • Complete preparation of sales, payroll, inventory, accrual, and prepaid journal entries
  • Meticulous monthly bank and credit card reconciliations

Let's get started.

Call us at 770.785.7855 Or email hello@antaresgroupcpas.com