“It wouldn’t happen to me, I’m too small.” Fortunately, I don’t hear that as often as I used to, but I still hear it. It’s not true.
I looked up a big breach on the dark web last weekend perpetrated by a large criminal group. The criminal site also listed a recent breach of a small CPA/RIA in Washington. 8-person firm according to the CPA’s website. It seems like the breach included sensitive financial data and personal information of the firm's clients. This is quite concerning, and the affected firm should take the necessary steps to address the breach and protect their clients' information.
They were attacked, and they didn’t pay the ransom.
So the criminals published all the data they stole.
- Tax data for hundreds of clients.
- Schwab account numbers.
- Tax filing PIN codes allowing other criminal to file fake returns and get fraudulent refunds.
- Documents on client divorce proceedings.
- The CPAs own tax returns.
- Emails.
- Client SSNs, cell phone numbers, addresses, wiring accounts and instructions and more.
The files are easily browseable on the dark web
(screenshot from Rhysida website)
You May Be Too Small To Make The News, But Not Too Small For An International Criminal Gang.
You can find an official breach notification for Moser Wealth Advisors at https://www.maine.gov/agviewer/content/ag/985235c7-cb95-4be2-8792-a1252b4f8318/3da6f7d3-a934-4a03-b71c-318e9e8a8b1a.html
