DataBreaches.Net

Menu
  • About
  • Breach Notification Laws
  • Privacy Policy
  • Transparency Report
Menu

California CPA firm hacked to file fraudulent returns

Posted on October 1, 2016 by Dissent

On August 15, 2016, Wheeler & Egger, CPAs, LLP discovered a data security incident involving their firm and some of their clients whose 2015 tax returns were on Extension.  After thorough investigation, they have discovered that the perpetrator(s) hacked into their system, and between August 3rd and 9th 2016, fraudulently filed 45 client tax returns.

Letters were mailed to all affected parties starting on September 13, 2016, advising them that:

If they are an individual, this information may have included their name, gender, birth date, telephone number(s), address, social security number, all employment (W-2) information, 1099 information, direct deposit bank account information including account number and routing information (if provided to them), and supporting documentation including brokerage statements and other documents you may have provided to them.

If they are an entity, this information may have included their company name, Federal Employer Identification Number, address, telephone number, employee and/or 1099-recipient information, partner, shareholder/officer or beneficiary names, addresses, social security numbers, and supporting records.

If you did not receive a letter but are concerned that you could be affected, please call 1-855-303-6663 for verification.

Regarding the incident, Wheeler & Egger, CPAs, LLP immediately contacted their IT consultant to secure their network and hired a third party forensic security firm to perform a thorough investigation into the breadth of the exposure. With the help of their IT consultants: (1) the malware on the impacted computer’s hard drive has been removed; (2) they have made internal software system management changes; and (3) all network firewalls, computers and security protections have been confirmed to be properly functioning.

Wheeler & Egger, CPAs, LLP has also reported this breach to the FBI, IRS, FTB, FDIC, OCC, FRB, U.S. Secret Service, all three consumer reporting agencies, and the applicable State Attorney Generals. They will further assist in any criminal investigation of the cyber intruder(s).

Given the breadth of information potentially exposed, Wheeler & Egger, CPAs, LLP is recommending that those potentially affected be vigilant in reviewing all bank account and brokerage statements, as well as free credit reports. Those potentially affected may also want to change the bank account numbers provided to Wheeler & Egger, CPAs, LLP and/or have a conversation with their bank notifying them of the incident. They can also call the three major credit agencies and place a 90-day fraud alert on their accounts. Contact information is: Equifax (1-888-766-0008; P.O. Box 740241, Atlanta, GA 30374), Experian (1-888-397-3742; P.O. Box 4500, Allen, TX 75013), and TransUnion (1-800-680-7289; P.O. Box 1000, Chester, PA 19022-2000). Lastly, individuals are entitled to a free credit report every year from these agencies at www.annualcreditreport.com.

If identity theft is suspected, report it to law enforcement, including the Federal Trade Commission at https://www.identitytheft.gov/Assistant#. Additional information about avoiding and protecting against identity theft can also be obtained by visiting the above Federal Trade Commission website, or by writing the Consumer Response Center at 600 Pennsylvania Ave., NW, Washington D.C., 20580, or by calling 1-877-IDTHEFT.

As an added precaution, Wheeler & Egger, CPAs, LLP has arranged for complimentary credit monitoring to be provided to those affected for one year through AllClear ID. Please call toll free number 1-855-303-6663 for further information.

Protecting information is incredibly important to Wheeler & Egger, CPAs, LLP as is addressing this incident with the information assistance individuals may need. If you have any questions or concerns, please contact toll free number 1-855-303-6663; or by mail at Wheeler & Egger, CPAs, LLP 133 Old Wards Ferry Rd Ste. J, Sonora, CA 95370.

SOURCE Wheeler & Egger, CPAs, LLP

Related posts:

  • Four Arizona residents sentenced in tax refund fraud scheme that used prisoners’ information
  • Montgomery Man Sentenced In Identity Theft Related State Income Tax Fraud
  • Madison Square Garden Company Alerts Customers of Payment Card Data Breach
  • Be: Hit by cyberattack, the Courcelles Public Social Action Center persevered to respond to floods and emergency conditions
Category: Business SectorHackID TheftMalwareU.S.

Post navigation

← Hackers target University of Central Florida students
MS: Urgent Care Clinic of Oxford notifies patients of ransomware attack →

1 thought on “California CPA firm hacked to file fraudulent returns”

  1. Regret says:
    October 1, 2016 at 11:52 am

    Gee – one year of free credit reporting! Hopefully these guys have professional liability insurance (at least) or a cyber insurance policy. Even small CPA firms should know they are a juicy target.

Comments are closed.

Now more than ever

"Stand with Ukraine:" above raised hands. The illustration is in blue and yellow, the colors of Ukraine's flag.

Search

Browse by Categories

Recent Posts

  • Horizon Healthcare RCM discloses ransomware attack in December
  • Disgruntled IT Worker Jailed for Cyber Attack, Huddersfield
  • Hacker helped kill FBI sources, witnesses in El Chapo case, according to watchdog report
  • Texas Centers for Infectious Disease Associates Notifies Individuals of Data Breach in 2024
  • Battlefords Union Hospitals notifies patients of employee snooping in their records
  • Alert: Scattered Spider has added North American airline and transportation organizations to their target list
  • Northern Light Health patients affected by security incident at Compumedics; 10 healthcare entities affected
  • Privacy commissioner reviewing reported Ontario Health atHome data breach
  • CMS warns Medicare providers of fraud scheme
  • Ex-student charged with wave of cyber attacks on Sydney uni

No, You Can’t Buy a Post or an Interview

This site does not accept sponsored posts or link-back arrangements. Inquiries about either are ignored.

And despite what some trolls may try to claim: DataBreaches has never accepted even one dime to interview or report on anyone. Nor will DataBreaches ever pay anyone for data or to interview them.

Want to Get Our RSS Feed?

Grab it here:

https://databreaches.net/feed/

RSS Recent Posts on PogoWasRight.org

  • Supreme Court Decision on Age Verification Tramples Free Speech and Undermines Privacy
  • New Jersey Issues Draft Privacy Regulations: The New
  • Hacker helped kill FBI sources, witnesses in El Chapo case, according to watchdog report
  • Germany Wants Apple, Google to Remove DeepSeek From Their App Stores
  • Supreme Court upholds Texas law requiring age verification on porn sites
  • Justices nix Medicaid ‘right’ to choose doctor, defunding Planned Parenthood in South Carolina
  • European Commission publishes its plan to enable more effective law enforcement access to data

Have a News Tip?

Email: Tips[at]DataBreaches.net

Signal: +1 516-776-7756

Contact Me

Email: info[at]databreaches.net

Mastodon: Infosec.Exchange/@PogoWasRight

Signal: +1 516-776-7756

DMCA Concern: dmca[at]databreaches.net
© 2009 – 2025 DataBreaches.net and DataBreaches LLC. All rights reserved.