IRS Focuses on New Identity Theft and Other Scams

“There has been a spike in tax-related ID theft, internet fraud and similar crimes. Small businesses, tax pros and individuals are primary targets. The IRS is acting to avoid losing tax revenues, warn taxpayers and help victims. The IRS is strongly advising tax pros to increase their defenses against various types of cyber fraud.†– This is a quote from the October 2016 issue of The General Ledger

Here at Dorsey and Company this is not news. We’ve been working since day one to stay ahead of the curve in order to protect our clients and ourselves. Since we work with social security numbers, birthdates, and other incredibly sensitive information in order to provide tax returns, good bookkeeping and prompt payroll services, accountants would be a major target for cybercriminal activites.

We have always kept our security at the cutting edge of technology in order to combat these threats, going above and beyond what federal law demands. No birthdates, social security numbers, etc. are allowed to be emailed through regular email. We have a secure encrypted email service for this, as well as a secure encrypted portal for larger documents. Our regular email will literally tell our employees they cannot send the email if they have put anything resembling confidential information in it.

We have also just moved our entire infrastructure to a hosted environment with the highest security qualifications currently available. Your data is stored in a high-security server that is backed up daily and able to be restored quickly in case of disaster.

Here at Dorsey and Company we know your secure information needs to stay secure.

De zon is al hoog en de gasten zijn er allemaal in dezelfde houdingen? Zal het ontbijt moeten koken. Maar wanneer iemand thuis verzamelde, is het beter om zijn impuls te ondersteunen. De charme van orgieën is een delicate substantie, dus het is niet ‘s morgens traditioneel grapje over gisteren van gisteren. Zeg afscheid en ren rond huizen nu heb je een gemeenschappelijk mysterie. Later, ontmoeting van die avond in de institutionele eetkamer, zal het genoeg zijn om je betrokkenheid bij een licht te duiden.

Thoughts on Anti-Fraud Responsibilities and Prevention

Every business should have a fraud prevention system in place that includes a solidly written fraud policy.  It is necessary to develop awareness within an organization such that a culture is developed around fraud prevention activities.  Everyone understands what to look for and how to report suspicious behavior.  Smaller businesses are especially vulnerable to fraud because they lack the resources to implement complete systems of internal controls and properly segregate accounting duties among their limited staffs.  Therefore, accounting personnel may be tasked with completely inappropriate job functions that provide easy opportunities for committing financial frauds.

Businesses think I cannot afford fraud prevention time and effort.  Wrong – businesses cannot afford NOT to!  According to the ACFE’s 2012 Report to the Nations, estimated median losses for small organizations (less than 100 employees) that experience a fraud were $147,000.  That amount is more than the average salary for approximately three accounting personnel.  The report indicated that small organizations are the most common victims in fraud at 31.8% – the highest rate of ANY business size category.

So where do you begin?  Let’s just take one example – invoice approval.  Each day, managers review and approve thousands of invoices, contractor statements, time sheets, expense reimbursements, purchasing card details, and other documents that cause cash to be disbursed.  All too often, that approval becomes a ‘rubber stamp’ with little active thought about what the approval step really means.  “Signatures without thought” make it easy for those who are trying to fool us.  Approval of transactions that turn out to be fraudulent can be embarrassing at best and career limiting at worst!


How do I know?

Managers are encouraged to answer a few basic questions before approving invoices and other payment documents.  All address the general question of:  “How do I know?”

How well do I know this vendor or contractor?  Do I have firsthand knowledge that they even exist!

Do I know that they actually provided the goods or services identified in the invoice or other billing statement?

Do I know that they are using the correct amounts for price (including unit prices used), sales tax, freight, and other variables that make up the amount invoiced?

On what basis do I know that the prices are reasonable in the first place?  What standard have I used in determining that the price charged is fair?

How do I know that the quantities make sense?  On what basis have we agreed to purchase the stated quantities?

How do I know that the invoice and other documents are mathematically correct?

Do I know that this invoice has not already been paid?


The most important step

The above is just the first step.  Other steps would be to address similar transaction flows such as purchasing cards and travel and entertainment.  The most important step is to draft a fraud policy for your organization.  It asks every employee to:

  • Know what can go wrong in their areas of responsibility, including what it would look like if it happened on their watch
  • Use best-faith behaviors and formal controls to deter it from happening
  • Use best-faith behaviors and controls to find it right away when their prevention and deterrence efforts fail
  • Raise the alarm right away upon suspicion – so that the experts can take it from there
  • A very important action in the fight against fraud:  anti-fraud skills training for every employee.  That’s right – if we are expecting people to become an active part of the solution, we better show them exactly how.  Here are four ways you can provide this training:
  • Written ‘how-to’ articles (similar to the one in this article)
  • One-on one coaching, during every audit and every interview
  • Group-live training – where people come to an in-house training event
  • Technology-enables programs – like webinars and recordings of your group-live training
  • Smaller organizations may have more difficulty due to the limited resources but are a few solutions to consider:
  • Outsourcing financial statement reviews and detailed transaction reviews
  • Have certain accounting functions audited randomly
  • Outsource bank account reconciliations and payment reviews
  • Outsource payroll

The fraud policy and follow-up skills training are the two most important parts of an Anti-Fraud Campaign.  I know this because I am an expert in this area and yet few organizations follow up on either idea.



President, Dorsey and Company CPAs PLLC

11220 Rodney Parham Ste 4

Little Rock AR  72212