Cybersecurity Essentials for Accountants: Protecting Financial Data in a New Digital Reality

10 Dec

This article will count 0.25 units (15 minutes) of unverifiable CPD. Remember to log these units under your membership profile.

CIBA presented a webinar on 5 December 2025 with the above heading, facilitated by Dr Cornelie Crouse, a senior lecturer, researcher and academic coordinator of the MBA and PGDip programmes at the University of the Free State Business School. Cybersecurity has become one of the most important issues in modern business, and for accountants and financial professionals, the risks are especially acute. The sheer volume of sensitive information handled daily such as banking details, payroll records, supplier data, financial statements, compliance documents, which makes the accounting profession an irresistible target for cybercriminals. During her presentation, Dr Crous reminded us that the global cost of a data breach now averages over $6 million, with nearly half of all modern attacks powered by artificial intelligence. Cybersecurity is no longer a technical discussion reserved for IT departments; it is a strategic, ethical and risk-management priority for the accounting profession.

Why Cybersecurity Matters More Than Ever

Accountants occupy a unique position in any organisation: they are custodians of financial integrity. In many ways, they are the gatekeepers of some of the most confidential organisational and client information. This is why attackers increasingly target finance functions. A recent example referenced in the presentation: the breach at SitusAMC illustrates how a single compromised system can ripple across an entire financial ecosystem.

Cybersecurity, at its core, revolves around what is known as the CIA Triad: Confidentiality (ensuring only authorised people access information), Integrity (ensuring data remains accurate and unaltered), and Availability (ensuring systems remain reliable when needed). These simple principles guide the complex world of cyber risk.

To navigate this world effectively, accountants must also become familiar with key cyber concepts. Terms like phishing, ransomware, data breaches, multi-factor authentication (MFA), and supply-chain attacks form part of the everyday vocabulary of modern risk. These are not IT buzzwords, they are financial threats with real consequences for organisations, clients and the broader public.

Professionals must be familiar with critical terminology:

Phishing – Deceptive emails used to steal credentials.
Ransomware – Malicious software that locks or destroys files.
Data Breach – Unauthorised access to confidential information.
MFA (Multi-Factor Authentication) – Extra verification beyond a password.
Supply-Chain Attack – Compromising third-party vendors to enter systems.

These concepts frame the daily risks that accountants face.

The Changing Digital Risk Landscape

The shift toward cloud accounting, remote work and mobile access has brought immense efficiency, but it has also expanded the organisation’s attack surface. Many cloud vulnerabilities stem not from the technology itself, but from weak configurations and poor user practices. Remote work environments often rely on insecure home Wi-Fi, shared personal devices, or outdated software all of which create opportunities for attackers.

The year 2025 has brought a new generation of threats. AI-driven phishing emails now mimic writing styles with alarming precision. Deepfake technology can clone a CEO’s voice or create convincing video instructions for urgent payments. Ransomware has evolved from merely locking files to destroying them entirely. Supply-chain breaches attacks launched through trusted third-party software or service providers have become increasingly common.

This evolution reflects a troubling reality: cybercriminals are becoming smarter, faster and more sophisticated, and they are deliberately targeting financial professionals.

Phishing: Still the Accountant’s Biggest Threat

Despite the rise of advanced cyber tools, phishing remains the single most common entry point for attacks. Nearly half of all cyber incidents begin with a fraudulent email. The presentation included several real-world examples: fake PayPal alerts, Dropbox sharing requests, spoofed Outlook upgrade messages, fraudulent invoices, and cleverly disguised HR salary updates. Attackers know exactly what accountants frequently engage with, and they replicate it convincingly.

What makes phishing so dangerous is that it preys on trust. A single click on a link or attachment can compromise an entire organisation within minutes. As phishing becomes more personalised and AI-generated, the need for heightened awareness and continuous training cannot be overstated.

Ransomware, Insider Threats and Deepfakes

Ransomware continues to devastate organisations worldwide, with 64% of companies reporting an attack in the last year alone. The financial impact is enormous, not only in recovery costs, but also in downtime, reputational damage and potential regulatory penalties.

Insider risks pose an equally significant challenge. While sabotage or malicious intent is possible, many incidents are simply the result of human error: employees unintentionally sharing credentials, using weak passwords, or retaining access privileges after changing roles or leaving the organisation.

Deepfakes represent one of the most unsettling emerging risks. Voice-cloning tools can replicate an executive’s speech patterns, creating false authorisations for payments or confidential information. The implications for accountants, who often process approvals and instructions, are profound.

Building a Strong and Practical Cybersecurity Framework

To manage these risks effectively, Dr Crous highlights the NIST Cybersecurity Framework- an accessible and widely adopted structure that helps organisations manage their cyber posture. It consists of five key areas:

Dr Crous introduces the NIST Cybersecurity Framework, widely adopted globally and in South Africa:

Identify – Understand systems, data flows, and risks.
Protect – Implement controls, passwords, MFA, encryption.
Detect – Monitor anomalies and suspicious activity.
Respond – Have an incident response plan.
Recover – Restore backups and strengthen controls after an attack.

This structured approach helps accountants understand their role in enterprise risk management. For accountants, practical application of this framework includes developing strong password protocols, using passphrases instead of simple passwords, and adopting multi-factor authentication across all financial systems. MFA alone can block the vast majority of credential-theft attacks.

Passwords, MFA, and Data Protection

Strong Password Practices

Use passphrases, not short passwords
Never reuse passwords across systems
Change passwords after suspicious activity

Multi-Factor Authentication

MFA can block 99% of credential theft attacks.
It should be enforced across:

Payroll systems
Internet banking
Cloud accounting systems
Email accounts

Data protection measures such as encryption, secure VPNs, and a robust backup strategy further strengthen the organisation’s resilience. When used consistently, these controls drastically reduce exposure to cyber risk.

Data Protection Controls

Encrypt all sensitive data
Use VPNs when working remotely
Maintain a solid backup strategy (including offline backups)

Creating a Culture of Cyber Awareness

Technology alone cannot prevent cybercrime. The most powerful defence is an informed and vigilant workforce. Regular training, quarterly awareness sessions, and simulated phishing exercises help reinforce good habits and keep employees alert to evolving threats.

Internal controls also play a crucial role. Access rights should be granted according to the principle of least privilege, ensuring staff only have access to systems necessary for their roles. Periodic audits, vendor risk assessments and consistent monitoring of processes form an essential part of good governance.

Regulatory Expectations and Professional Responsibility

Compliance is increasingly intersecting with cybersecurity. Laws such as South Africa’s POPIA and international regulations like the GDPR require organisations to protect personal and financial information with great care. For accountants, this means aligning processes, documentation and decision-making with these statutory requirements. Failure to do so can lead to significant penalties and reputational harm.

Looking Ahead: Cybersecurity Trends Shaping 2025

The cybersecurity landscape will continue to evolve rapidly. We can expect more stringent regulations, greater adoption of AI defence tools, and a growing focus on securing supply chains. Risk management is becoming more integrated into everyday processes, and organisations are increasingly expected to maintain up-to-date risk matrices and monitoring systems.

Conclusion

The most important step is adopting a mindset of continuous improvement. Simple but consistent measures, mandatory MFA, regular training, updated compliance procedures, and awareness of emerging risks can reduce cyber exposure by up to 70%. With the right approach, accountants can play a powerful role in defending their organisations against digital threats.

Cybersecurity is no longer an optional skill for finance professionals; it is a core competency. As the custodians of financial information, accountants must embrace this responsibility with confidence, clarity and a commitment to staying informed.