Print Friendly, PDF & Email


Internet of Things (IoT) and Cyber Security

What Is IoT And How Do Hackers Infiltrate Your Devices? An increasing number of companies are installing Internet of Things (IoT) devices on their networks. IoT devices are typically “black box” devices, the inner workings of which are unknown to most users. For example, HVAC systems, smart fridges, computer printers, and even cars can contain IoT-enabled technology that connects through WiFi or cellular and therefore can be considered IoT devices.... continue reading

Configuration & Application Vulnerabilities in Cyber & IT Security

Despite the best efforts of IT teams, organizations continue to be plagued with IT security vulnerabilities in their systems by both internal and external threats. The most common vulnerabilities are poor configurations and outdated/unpatched systems or applications. These vulnerabilities may subject your organization to the risk of hackers gaining access to sensitive employee or client data. What are Countermeasures/Prevention Techniques? Change Management Organizations must establish and document their process for... continue reading

Common Social Engineering Cyber Attacks and Prevention Strategies

What is Social Engineering & what are the risks? The human component of cyber security is the weakest link in protecting your organization against external threats. Recently, social engineering attacks have become the most prevalent type of threat within reported cyber breaches. Social engineering is a malicious activity in which bad actors produce items such as false emails with the intent to persuade the recipient to unwittingly perform an action;... continue reading

AAFCPAs’ Mr. Anderson Earns Certified Ethical Hacker Credential

AAFCPAs’ Mr. Anderson Earns Certified Ethical Hacker Credential

AAFCPAs’ “white hat” ethical security hacker and business continuity advisor, Mr. Anderson has been awarded the Certified Ethical Hacker (CEH) credential issued by the International Council of E-Commerce Consultants (EC-Council). Mr. Anderson was awarded the CEH credential in recognition of his earned expertise in understanding how to uncover weaknesses and vulnerabilities in target systems and use the same knowledge and tools as a malicious hacker, but in a lawful and legitimate manner to assess... continue reading

Year in review: The Top 10 Insights from 2018

Year in review: The Top 10 Insights from 2018

2018 was a big year for finance professionals, with monumental changes in tax code & accounting rules, and other significant challenges & opportunities affecting commercial businesses, nonprofits, and individuals & their families.  Below are AAFCPAs’ most widely-read news alerts & insights in the past year: AAFCPAs’ 2018-2019 Tax Planning Guide for Businesses & Individuals Financial and Estate Planning Opportunities Related to the New Tax Law Whitepaper: Guidance on the New... continue reading

AAFCPAs to Present Workshop on Internal Controls & IT Countermeasures to Mitigate Risks

AAFCPAs’ Vassilis Kontoglis and David Kelleher will present an educational workshop on Best Practices in Internal Controls and IT Security to assist in mitigating risk at The Massachusetts Association of Early Education & Care (MADCA) Administration and Management Conference, in Worcester, MA on November 28th. Risk Management requires continuous improvement, and organizations must stay vigilant, and learn & adapt over time. In this interactive session, AAFCPAs will highlight critical risk... continue reading

AAFCPAs Wealth Management Advises Clients to Pursue Lines of Defense in Protecting Your Credit

AAFCPAs Wealth Management Advises Clients to Pursue Lines of Defense in Protecting Your Credit

Approximately 1 in 2 Americans had their personal information compromised as a result of a 2017 data breach at Equifax, and as a result are now at an increased risk for identify theft and financial fraud. Identify theft is an increasing problem for all people. In response, Congress initiated a new credit freeze law protecting consumers. This law went into effect on September 21, 2018. The new federal credit freeze... continue reading

AAFCPAs to Lead System and Organization Controls (SOC) Reporting Forum for PrimeGlobal, National CPA Firm Association

AAFCPAs’ James Jumes, MBA, M. Ed has been selected to lead the North American System and Organization Controls (SOC) Reporting Special Interest Group (SIG) for PrimeGlobal, an international association of independent accounting firms. James is uniquely qualified to lead this national SIG, which will serve as a forum for peers to share their interpretations and implementations of these complex attestation standards (Standards for Attestation Engagements No. 18 “SSAEs 18”), as well as... continue reading

AAFCPAs Earns SOC for Cybersecurity Services Certificate

AAFCPAs Earns SOC for Cybersecurity Services Certificate

AAFCPAs’ Partners James Jumes, MBA, M.Ed. and Robin Kelley, CPA, CITP, CGMA, CSPM, CCSFP have earned the System and Organization Controls (SOC) for Cybersecurity Certificate issued by The Association of International Certified Professional Accountants (AICPA). SOC for Cybersecurity is a new entity-wide cybersecurity audit that allows organizations to voluntarily report on their cybersecurity management programs to internal and external stakeholders with credibility. Companies are under increasing pressure to manage cybersecurity... continue reading

AAFCPAs’ Business Process & IT Advisory Practice to Present Cyber Security Session to National Jewish Cemetery Association Members

Vassilis Kontoglis, manager in AAFCPAs’ Business Process & IT Advisory practice, will present an educational workshop at the 10th Annual Jewish Cemetery Association of North America (JCANA) Conference scheduled for June 4th – 10th, 2018.  The theme of this year’s Conference is “Bringing Jewish Cemeteries into the 21st Century,” and this includes managing risks associated with a new generation of IT security threats. We have entered a new era of... continue reading