Hacking the AIS

1 Hacking the AIS Introduction Hacking is the use of technology to gain access to an individual’s or organization’s computer or network without authorization and illegally. The purpose of hacking is to obtain information and resources that would otherwise not be available to unauthorized personnel. Hacking is also done to make alterations which aid in the process of committing future misdeeds and crimes o an organization. A person who hacks is referred to as a hacker. This paper discusses the 2016 hacking of Tesco’s system, how it responded to the security breach and the role of its accounting software provider in preventing and controlling hacking. The paper aims to outline the concept of control and security in accounting information systems, as well as how to ensure the integrity and safety of data in an organization. Tesco Database Hacking In November 2016, Tesco Bank’s network was hacked for 48 hours and a whopping £2.26 million stolen from its online accounts. The hackers stole this money from around 9,000 to 10,000 customer accounts (Palmer, 2018). Once the hacking was discovered, Tesco Bank was quick to address the issue. It suspended online debit transactions to prevent any further hacking as it secured the system. The hackers are suspected to be fraudsters from Brazil who had knowledge of Tesco Bank card numbers and used them to carry out transactions illegally. The CEO of Tesco Bank, Gerry Mallon, apologized to the customers for the hacking and compensated those who had lost money from their accounts during the hacking. In October 2018, the Financial Conduct Authority fined the bank £16 million for exposing customers to financial loss through its failure to exercise due diligence in securing customers’ accounts from data breaches as required in the baking industry.