DDoS Resiliency: Protecting Against the Attack of the Robots
GRF Cybersecurity Risk Assessment and Scorecard Blog Series Your website is essential for promoting your nonprofit organization’s mission. However, bad actors often target nonprofit websites for attack, assuming they are not as protected as commercial sites. One hacker strategy is to bring the site down entirely through a denial of service attack. That’s where…
Email Security: Don’t let attackers in through the front door
GRF Cybersecurity Risk Assessment and Scorecard Blog Series Your email is a critical business function that needs to be constantly available and secured. Securing your email systems involves looking at the configuration of your email server, your mail exchange (MX) records, and SMTP (Simple Mail Transfer Protocol) to identify any potential vulnerabilities or misconfigurations….
Attack Surface: Are all your systems’ access points secure?
GRF Cybersecurity Risk Assessment and Scorecard Blog Series Anything freely available on the internet and open to users can be a point of attack for a malicious actor. To prevent unauthorized access to your network and systems, it’s crucial to understand the vulnerabilities of your network. The term “attack surface” refers to the total…
2022 Risk Outlook for Nonprofits and Associations
Our 2022 Risk Outlook reflects the key risks that we see our nonprofit and association clients prioritizing and the advice we’re offering our clients to mitigate them. These risks are: Cybersecurity, Information Security, and Data Privacy Disaster Recovery and Business Continuity Third-Party Risk Talent Management Revenue Diversification Diversity, Equity, and Inclusion Fraud Risk Please fill…
GRF CPAs & Advisors Announces Four New Partners
GRF has promoted four members of the firm to Partner: Lindsay Dean, CPA; Tricia Katebini, CPA, MBA; Max Manley, CPA; and Melissa Musser, CPA, CITP, CISA.
Fraud Control and Prevention: Proactive Measures
The Association of Certified Fraud Examiners (ACFE) publishes a bi-annual, Report to the Nations (the Report) providing detailed statistics and key findings related to fraudulent activity by industry throughout the world. The 11th study of occupational fraud, the publication serves as one of the best sources of fraud-related data and information the globe over. GRF’s…
Fraud Control and Prevention: Mastering the Basics
Keeping it simple provides more protection than you might expect By Mac Lillard, CPA, CFE, CISA, CRISC, CITP | Manager, Audit and Risk Advisory Services During 2020, the Federal Trade Commission (FTC) received more than 2.2 million reports of fraud, up 500,000 from the 1.7 million reports filed in 2019. The significant increase in fraudulent…
Information Disclosure: Are you up to date on privacy laws?
GRF Cybersecurity Risk Assessment and Scorecard Blog Series Securing the privacy of your organization’s employee and customer data is critical for maintaining the trust of members and donors – and is increasingly becoming a legal requirement. What is information disclosure? Information disclosure occurs when an application reveals sensitive information about its users. Depending on…