Cybersecurity Resources
CPASK has been made aware of phishing emails being circulated to members of firms posing as CPA Saskatchewan. Scammers have attempted to add @cpask.ca to the name of the sender and most recently, phishing emails have been sent from @cpsak.com instead of @cpask.ca and used a CPA Saskatchewan staff member's signature line in an effort to lead members to believe that the emails originated from CPA Saskatchewan.
If you have received a phishing email posing as CPASK, please contact your IT service provider to have the email account blocked in your system. If you are using Microsoft Office 365 you are also able to block the fake email account so you won't receive further emails from that account.
CPA Saskatchewan does not provide registrant information to third parties outside of those approved by the Board in our Privacy Policy. There have been no security breaches to CPA SK staff email accounts or our database.
Firms need to be knowledgeable to keep ahead of cybersecurity risks. It is important to check the adequacy of your IT infrastructure and user access on a regular basis to identify any unexpected vulnerabilities. All registrants are encouraged to remain vigilant against online threats and to stay engaged with cybersecurity protocols.
Below are some cybersecurity resources to assist both members and firms in increasing your awareness of potential cybersecurity threats:
Don't take the bait: Recognize and avoid phishing attacks - Canadian Centre for Cyber Security
Spotting malicious email messages - Canadian Centre for Cyber Security
Resources related to cybersecurity - CPA Canada
CPAs need to pay more attention to cybersecurity, experts say - CPA Canada
20 Questions Directors Should Ask About Cybersecurity - CPA Canada
Protecting CPAs From Email and Internet Scams - CPA Canada
If you are uncertain as to whether an email originated from CPA Saskatchewan, please contact our office at info@cpask.ca.