View profile

How Not to Get Hacked Like Deloitte

Late last month, Deloitte revealed that it suffered a security breach. The firm initially downplayed
How Not to Get Hacked Like Deloitte
By Blake Oliver • Issue #59 • View online
Late last month, Deloitte revealed that it suffered a security breachThe firm initially downplayed the severity of the incident, saying that only a few clients had been affected. 
But now it appears — as is often the case — the attackers may have gained access to far more information than Deloitte would care to admit.
information shared by a person with direct knowledge of the incident said the company in fact does not yet know precisely when the intrusion occurred, or for how long the hackers were inside of its systems.
Additionally, forensic investigators identified several gigabytes of data that had been transferred to a server in the United Kingdom.
Amazingly, the hackers got into Deloitte’s systems via an administrator account protected only with a single password. That means Deloitte was not using multi-factor authentication, which is pretty much Cybersecurity 101 these days.
Multi-factor authentication vastly increases security by requiring at least one other form of identity verification in addition to a password, such as a text message sent to a mobile phone.
If your firm doesn’t have a secure way to manage passwords with multi-factor authentication, I highly recommend LastPass for Business. That Word doc on your desktop called “Passwords” isn’t going to cut it anymore.

App Updates
Xero — Introducing "Ask in Xero HQ"
Spotlight — Xero HQ integration
Catching Cloud Academy —
 Accounting for Shopify
Learn how a large franchise consolidates, benchmarks & ranks its 200+ shops.
Learn how a large franchise consolidates, benchmarks & ranks its 200+ shops.
Practice Management
“If you want professionals to be more entrepreneurial, bin timesheets”
Recruiting & HR
Insights from Karbon's 2017 talent survey
Thrivecast Ep. 75: Geni Whitehouse
Shake Shack to open cashless, kiosk-only location in New York City
Book Club
An accountant’s review of Profit First
Did you enjoy this issue?
Blake Oliver

A weekly newsletter for accountants and controllers using cloud technology to improve efficiencies and make their jobs more strategic and impactful. Topics include apps, automation, remote work, management, new regulations, marketing, and more.

For additional resources for controllers and accounting managers, visit FloQast (where I work) is close management software built by accountants for accountants to help them close faster and more accurately.

Visit my personal website and blog at

If you don't want these updates anymore, please unsubscribe here
If you were forwarded this newsletter and you like it, you can subscribe here
Powered by Revue
14721 Califa St, Los Angeles, CA 91411