You may have read that threat actors had hacked 140,000 AICPA emails and passwords. Our IT incident response team assessed the allegedly compromised trove of emails and passwords, enlisting third-party cybersecurity firms as part of that process. We’ve concluded the hacked emails are not connected to the AICPA. They appear to be from previously disclosed breaches of other, unrelated organizations.
Unfortunately, hacking scams are increasingly common for organizations large and small. We spend a lot of time investing in our own cybersecurity to keep our data safe and provide the accounting profession with best practices in this area. You may find it useful to read our blog Protect yourself from email and online fraud | Resources | AICPA or refer to our cyber security resources to keep up to date and stay safe.