How Not to Get Hacked Like Deloitte

Late last month, Deloitte revealed that it suffered a security breach. The firm initially downplayed
Cloud Accounting Weekly
How Not to Get Hacked Like Deloitte
By Blake Oliver • Issue #59 • View online
Late last month, Deloitte revealed that it suffered a security breachThe firm initially downplayed the severity of the incident, saying that only a few clients had been affected. 
But now it appears — as is often the case — the attackers may have gained access to far more information than Deloitte would care to admit.
information shared by a person with direct knowledge of the incident said the company in fact does not yet know precisely when the intrusion occurred, or for how long the hackers were inside of its systems.
Additionally, forensic investigators identified several gigabytes of data that had been transferred to a server in the United Kingdom.
Amazingly, the hackers got into Deloitte’s systems via an administrator account protected only with a single password. That means Deloitte was not using multi-factor authentication, which is pretty much Cybersecurity 101 these days.
Multi-factor authentication vastly increases security by requiring at least one other form of identity verification in addition to a password, such as a text message sent to a mobile phone.
If your firm doesn’t have a secure way to manage passwords with multi-factor authentication, I highly recommend LastPass for Business. That Word doc on your desktop called “Passwords” isn’t going to cut it anymore.

News
Reviews
App Updates
Xero — Introducing "Ask in Xero HQ"
Spotlight — Xero HQ integration
CPE
Catching Cloud Academy —
 Accounting for Shopify
Events
Learn how a large franchise consolidates, benchmarks & ranks its 200+ shops.
Learn how a large franchise consolidates, benchmarks & ranks its 200+ shops.
Practice Management
“If you want professionals to be more entrepreneurial, bin timesheets”
Recruiting & HR
Insights from Karbon's 2017 talent survey
Podcasts
Thrivecast Ep. 75: Geni Whitehouse
Automation
Shake Shack to open cashless, kiosk-only location in New York City
Book Club
An accountant’s review of Profit First
Did you enjoy this issue?
Blake Oliver

A newsletter for accountants and bookkeepers using the latest cloud technology to serve their clients or employers. Topics include apps, automation, remote work, practice management, marketing, and more. For more, visit my website at http://www.blakeoliver.com.

Carefully curated by Blake Oliver with Revue. If you were forwarded this newsletter and you like it, you can subscribe here. If you don't want these updates anymore, please unsubscribe here.
8605 Santa Monica Blvd, #14341 Los Angeles, CA 90069-4109