FINRA's BrokerCheck

February 2014 Risk Report

Rehmann Corporate Investigative Services (CIS) compiles Risk Report to help raise your awareness of the risks facing you and your company today – from fraud to malware and more. If you would like to learn more about protecting yourself against these threats, we can help: call us today at 248.267.8445.

February's "Take Action" Tip | Don't let a data breach ruin you financially – use these tips to protect your company and your data.

  1. Ensure staff and contractors understand their security and data privacy obligations.
  2. Ensure configurations and systems in your IT infrastructure are patched and secure.
  3. Implement a computer security incident response plan. Click here for more.
  4. Ensure you are compliant with data protection laws.


Document everything | When a fire occurred in Oakley, Michigan in 2008, fire investigators were unable to identify the cause. Nonetheless, they documented and photographed every detail of the fire scene. Five years later, an anonymous tip provided a new investigative angle and CIS investigators re-opened the case. The extensive and detailed documentation from 2008 recreated the scene and was key to 2014 testimony that brought a conviction for arson. Rehmann CIS recommends that clients hire investigators to document every insurance claim – there is no way to tell how that documentation might pay off in the future.

Dirty Dozen Tax Scams for 2014 | The IRS issued its annual review of tax scams and this year the scams will likely use the IRS name in phishing emails, phone calls or in advice tips. Identity theft is the top scam for 2014, but telephone scams are also on the rise, with callers pretending to be from the IRS and asking for personal identifying information. Scammers are even 'spoofing' the IRS toll-free number on caller ID. Don't respond: call the IRS yourself.

WiFi security | Be careful when you WiFi. Unsecure WiFi connections along with a flaw in Apple's iPhones and iPads, may allow cybercriminals to access personal information such as credit card numbers. Apple has issued a patch.

Careto malware | A new sophisticated malware compromises computers and collects information by sending out "spear phishing" emails, with addresses designed to be mistaken for the websites of mainstream newspapers such as The Washington Post and The Guardian. Email links take the user to a website that scans the user's computer for vulnerabilities and attempts to infect it. The malware allows the attacker to load new software into the victim's system that monitors keystrokes or captures email messages.

ID theft ring busted | Despite earning millions from fraudulent tax returns, one member of a Nigerian ID theft ring stole $40 from a cab driver in Dallas. Pursuing what they thought was a simple theft, police instead found a hotel room filled with piles of money and stacks of papers with stolen Social Security numbers. The five criminals in Dallas worked with a similar ring in Cincinnati, filing false tax returns electronically and having refunds credited to store value cards or bank accounts opened using the stolen identities.

Federal Cybersecurity Guidelines | In February, The National Institute of Standards and Technology released a "Framework for Improving Critical Infrastructure Cybersecurity" – a list of voluntary industry standards and best practices to prevent cyberattacks, in response to Presidential Executive Order 13636 issued in February 2013. The Framework enables organizations – regardless of size, degree of cybersecurity risk, or cybersecurity sophistication – to apply the principles and best practices of risk management to improving the security and resilience of critical infrastructure.

Rehmann's CIS team of professionals includes many experienced corporate investigators. To learn more about the Firm's corporate investigation services, click here.

Meet The Rehmann Team

Start typing a name ...
Searching for "{{nameQuery}}"...
Start typing an experience ...
Searching for "{{experienceQuery}}"...
Start typing a location ...
Searching for "{{locationQuery}}"...
Or view a list of team members