Highlighting Recent Cyber-Related Financial Losses, the SEC Urges Public Companies to Revisit Internal Accounting Controls

Subscriber Content
Screenshot of the first page of Highlighting Recent Cyber-Related Financial Losses, the SEC Urges Public Companies to Revisit Internal Accounting Controls
By

A recent cyber threat investigation by the U.S. Securities and Exchange Commission (SEC) found widespread vulnerabilities at public companies involving fraudulent wire transfers and vendor payments initiated via compromised business email accounts. They found that while victims had adequate controls in place, those controls were bypassed by employees who didn't fully understand them or recognize signs that emailed payment instructions might not be reliable.

This article offers insights on the SEC’s subsequent report advising public companies to review internal accounting controls related to business email compromises (BECs), more commonly known as ‘‘spearphishing.’’


Topics
Accounting/Finance
Financial Reporting
Compliance
Investigations/Forensics
Internal Controls
Risk Assessment
Data Security
IT Security

Related Resources

Articles

SEC Amends Smaller Reporting Company Thresholds: A Closer Look

Methodologies & Models

Access Controls Capability Maturity Model (CMM)

Articles

Recognizing the People Element in Data Security Implementations

Free Trial

Sign up for a free, no-obligation trial to start exploring our timesaving, valuable resources.

Let's Do It