Rognan & Associates CPAs has recently notified clients of a data security breach affecting personal income tax returns. On or around April 29, 2024, the firm detected suspicious activity involving its third-party tax preparation software. An internal review revealed unauthorized changes to direct deposit account information, leading to the misdirection of several clients’ tax returns. The firm has reported the issue to state tax boards and the IRS, and engaged cybersecurity experts for a thorough investigation.
The breach exposed sensitive personal information, including names, addresses, Social Security numbers, dates of birth, and direct deposit account details. Although the information was accessed and used to file fraudulent tax returns, there is no evidence of further misuse beyond this scheme. Clients are being advised to review their account statements and credit reports regularly to monitor for any signs of fraud.
In response to the breach, Rognan & Associates has implemented enhanced security measures and contacted federal law enforcement. The firm is also reviewing its policies and network security protocols to prevent future incidents. As a precaution, Rognan & Associates is offering affected clients twelve months of complimentary credit monitoring through Identity Defense by Epiq eDiscovery Solutions.
Clients are encouraged to stay vigilant for any potential misuse of their information and report any fraudulent tax filings to the IRS and state tax agencies immediately. The firm has provided resources and steps to assist clients in protecting their information and addressing any issues related to the breach.
Reference: