MY BLOG - Small businessess from 1 to 80 employees outsource your payroll management to us and let us worry about your payroll processing.
RSS Follow Become a Fan

Delivered by FeedBurner

Recent Posts

Tax changes to expect when you’re expecting
2016 Tax Tips for 2015 Filing Year
From Proprietorship to Corporation - When is the Best Time to Incorporate?
Tax Specialists Brief your Clients About CRA Fraud And E-Mail Scams
Bank of Canada cuts rates again

Most Popular Posts

Help your teenager build credit responsibly
Being an Executor of an Estate
Student Line of Credit
Principal Residence Exemption


aliko nutrition store- isotonix
aliko payroll services
canada revenue news and videos
canadian news
Cross border Tax
Disability awareness and Benefits for disabled
estate planning
Home Car Insurance
Income Splitting Strategies in Retirement
kids and money -set your children up for financial success
life insurance
on line safety tips
online safety tips
Real Estate - Investments / Retirement
Retirement planning
Save your money
small business planning
Tax Information for Students
tax news
tax planning
Tech news


January 2016
July 2015
May 2015
April 2015
February 2015
December 2014
November 2014
September 2014
August 2014
July 2014
June 2014
May 2014
April 2014
March 2014
February 2014
January 2014
December 2013
November 2013
October 2013
September 2013
August 2013
July 2013
June 2013

powered by


online safety tips

Use a Sign-In Partner

Use a Sign-In Partner  
My Account for Individuals
My Account allows you to track your refund, view or change your return, check your benefit and credit payments and your RRSP limit, set up direct deposit, and so much more.
Choose from one of two ways to access My Account:
Use a Sign-In Partner
  • Use the same sign-in information you use for other online services (e.g. online banking).
  • None of your information (e.g. financial, banking) will be shared with the CRA.
  • Your Sign-In Partner will not know which government service you are using.
  • You will temporarily leave the CRA website to use your Sign-In Partner.
  • View the full list of Sign-In Partners
    • BMO Financial Group
    • CHOICE REWARDS MasterCard
    • Scotiabank
    • Tangerine
    • TD Bank Group
Help and FAQs
  • Log in with your CRA user ID and password or register if you do not have a CRA user ID and password.
For immediate access to some of your information in My Account use Quick Access.
Representatives (including friends and family members) can access My Account on behalf of someone else using Represent a Client.

Vulnerability in Microsoft Internet Explorer Announced

Vulnerability in Microsoft Internet Explorer Announced

Vulnerability in Microsoft Internet Explorer Announced
(April 29, 2014) — A significant vulnerability in Microsoft's IE (Internet Explorer) was detected this past weekend that could affect your computers and business security.
1.     All versions of IE 6 through 11 for Windows are affected.
2.     No patch is available as of today.

This newly discovered exploit could be used against Microsoft’s web browser, Internet Explorer (IE). The browser may inadvertently access an object in memory that was previously deleted. The memory may be corrupted in a way that allows a cyber criminal to use a code to target your computer.

Microsoft plans to release a security update, but it won’t protect you if you use Windows XP. With the dropping of support for XP, we believe that we’ve had the first of many attacks that will be targeting Windows XP.
What Should You Do?
1.     Don’t use Microsoft's IE (Internet Explorer) on any computer.
2.     Use an alternative browser such as Google Chrome or Firefox.
3.     When the patch is issued, it won’t apply to XP users-ever!
4.     If you are an XP User, use an alternative browser-forever!
5.     Think seriously about upgrading your XP machines.


5 Ways to keep your passwords ( mostly )safe from hackers.

5 Ways to keep your passwords ( mostly )safe from hackers.
5 Ways to keep your passwords ( mostly )safe from hackers.
If the scary Internet security bug Heartbleed has taught us anything, it’s that none of our passwords are ever truly safe.

Discovered only a few weeks ago, Heartbleed is the code name for a gaping hole in a commonly used security protocol that’s supposed to protect passwords, credit card numbers, and other sensitive data submitted through a web page.

So, what can you do to keep bad guys from stealing your password with help from the next Heartbleed? (And yes, there will eventually be another bug or virus that takes Heartbleed’s place in the headlines.)

Well, like wearing a seat belt in a car, there are plenty of measures you can take to greatly reduce—but not eliminate—the odds of your Internet accounts getting hijacked by hackers.
1. Get a password manager
Sure, it’s hard to give up your old password habits and start fresh with new ones, and it’s even harder to entrust your precious passwords to an unfamiliar program.
Believe me, I know. I dragged my heels for years before finally breaking down and buying my own password manager, and I had all kinds of excuses for doing so: hackers might break into the program and steal my passwords, I didn’t have time to figure out how to use it, my passwords were probably safe anyway…etcetera, etcetera.
Well, it’s true that no password manager can possibly keep all your passwords completely safe, and yes, there’s usually a learning curve. And no one hates change more than me.
Painful though it was, though, I finally did make the plunge with a password manager, and I’m glad I did. No more scraps of paper with passwords scribbled on them, no more forgotten passwords, and no more “weak” passwords like “Patterson123.”
Indeed, once you pick a password manager of your own, you’ll find the following steps a whole lot easier. Take, for example…
2. Use lengthy, “strong” passwords
A password like “Patterson123″ or the old, not-so-reliable “password” is easy to remember, but guessing them is a piece of cake for even the most casual hackers.
Indeed, enterprising password thieves have collected gigantic databases of stolen passwords, culling through them to figure out the most popular combinations of words, letters and numbers.
Bottom line: If there’s an identifiable word or name in your favorite password, it’s “weak.” Period. Your birthday backwards won’t cut it, either, nor will the name the street you grew up on
Instead, make sure your passwords are “strong”—meaning they contain (ideally) a meaningless garble of letters, numbers and symbols.
In its guide to creating strong passwords, Microsoft recommends at least eight characters, no words or real names, plenty of symbols, a combination of lower- and upper-case letters, plus a sprinkling of numbers for good measure.
Nope, strong passwords aren’t easy to remember, but they’re tough (although not impossible) to crack.
Besides, your password manager can remember—and even create—those lengthy, indecipherable passwords for you.
3. Never use the same password twice
It is, of course, much easier to remember one password for all your accounts than it is to commit dozens of passwords to memory—and yes, for years, I was one of those one-password-for-everythng people.
As you can imagine, though, using the same password for all your Internet accounts makes life incredibly easy for any hacker who manages to steal your one big password.
That’s why you need to use different passwords for each of your online accounts.
I know, I know—even more to remember, right? Again, here’s where a password manager (which, typically, will store all your passwords in a searchable database) can come to the rescue.
4. Change your passwords regularly
Like bread in a cupboard or the clothes in your wardrobe, passwords get stale over time.
No, you don’t have to change your passwords as often as the Kardashians shed wardrobes, but you should consider changing your passwords at least every six months or so—all the better to keep hackers guessing.
The best password managers can help by flagging passwords that are ripe for changing, as well as storing your old passwords in case you ever need them again.
5. Use “two-step” authentication whenever possible
So, you’ve diligently exchanged your weak passwords for strong ones, you’ve created different passwords for each of your accounts, and you’re changing your passwords every few months or so.
Does that mean your passwords are completely safe from hackers? Sadly, no.
That’s why you should consider an extra level of security for your most precious online accounts, particularly when it comes to your primary email account—you know, the one where all those “Reset your password” messages go.
Some of the biggest online services around—think Facebook, Google, Apple, and the like—have implemented something called “two-step” authentication: a method of securing a password with a secondary numeric code.
Switch on two-step authentication on Google, for example, and Google will regularly (but not always) prompt you for a six-digit code after you’ve entered your password.
This code changes every 60 seconds, and it’s sent to your phone via text message or a special “authenticator” app.
Sound like a pain? Well, it is, and I still find myself groaning whenever I need to fetch another six-number authentication number on my iPhone.
But what’s a pain for me is even worse for a hacker, who now has an extra hoop to jump through even once s/he’s managed to snare one of my strong passwords.

Statement by the Commissioner of the Canada Revenue Agency on the Heartbleed bug

Statement by the Commissioner of the Canada Revenue Agency on the Heartbleed bug
Statement by the Commissioner of the Canada Revenue Agency on the Heartbleed bug
After learning that the Canada Revenue Agency (CRA) systems were vulnerable to the Heartbleed bug, the CRA acted quickly to protect taxpayer information by removing public access to its online services on April 8, 2014.
Since then, CRA worked around the clock to implement a “patch” for the bug, vigorously test all systems to ensure they were safe and secure, and re-launch our online services late yesterday.
Regrettably, the CRA has been notified by the Government of Canada's lead security agencies of a malicious breach of taxpayer data that occurred over a six-hour period. Based on our analysis to date, Social Insurance Numbers (SIN) of approximately 900 taxpayers were removed from CRA systems by someone exploiting the Heartbleed vulnerability. We are currently going through the painstaking process of analyzing other fragments of data, some that may relate to businesses, that were also removed.
The CRA is one of many organizations that was vulnerable to Heartbleed, despite our robust controls. Thanks to the dedicated support of Shared Services Canada and our security partners, the Agency was able to contain the infiltration before the systems were restored yesterday. Further, analysis to date indicates no other CRA infiltrations have occurred either before or after this breach.
Beginning today, the Agency is putting in place measures to support and protect the individuals affected by the breach. Each person will receive a registered letter to inform them of the breach. A dedicated 1-800 number has also been set up to provide them with further information, including what steps to take to protect the integrity of their SIN. The Agency will not be calling or emailing individuals to inform them that they have been impacted – we want to ensure that our communications are secure and cannot be exploited by fraudsters through phishing schemes.
The CRA will also provide those who have been affected with access to credit protection services at no cost. And we will apply additional protections to their CRA accounts to prevent any unauthorized activity.
On April 11, 2014, I informed the Privacy Commissioner of Canada of the breach. The RCMP are investigating.
As the Commissioner of the CRA, I want to express regret to Canadians for this service interruption. In particular, I share the concern and dismay of those individuals whose privacy has been impacted by this malicious act.
CRA online services are safe and secure. The CRA responded aggressively to successfully protect our systems. We have augmented our monitoring and surveillance measures, so that the security of the CRA site continues to meet the highest standards.
I know that all employees of the Canada Revenue Agency join me in appreciation for the cooperation and patience of the public, businesses and representatives as we resolved this situation.
the CRA  services have been restored to full service and the deadline to file tax returns without penalty has been extended until May 5, 2014.
Andrew Treusch

Beware online scams that lock computers for ransom, say RCMP

Beware online scams that lock computers for ransom, say RCMP
Beware online scams that lock computers for ransom, say RCMP
Nova Scotia RCMP are warning the public about an online scam that targets computer users and holds their computers for a ransom in exchange for money.
The malicious software, known as ransomware, pops up on users' computers and tries to trick them into paying money to have the software removed.
"This type of pop-up goes far beyond being a nuisance and can actually harm your computer," said Cpl. Christian Hochhold of the RCMP technological crime unit.
"If you cannot access anything on the computer beyond the pop-up screen your computer is infected."
The malicious software freezes access to the computer system it infects and then demands a ransom be paid to the creator of the malware in order for the restriction to be removed.
RCMP say in some cases, the ransomware installs itself on the computer and encrypts files on the hard drive, preventing users from accessing their own files.
Once installed, the malicious software prompts a message to appear indicating the files are locked and the data will be lost unless you pay the scammer a sum of money. RCMP say this type of ransomware is very difficult for malware-scanning software to get rid of — however RCMP say people should not cave to the scammers' demands.
"Do not pay the scammers' ransom request. Be sure to frequently backup your important data in case your computer is infected and if it is, have it cleaned to remove any malware," advises Hochhold.  
To prevent ransomware attacks, police advise people to:
Have a proper firewall installed on your computer.
Ensure software such as anti-malware, web browser and operating system are up to date.
Be cautious of the websites you visit.
Don't open email attachments unless your trust the source.
Regularly scan your computer for malware.
It may be possible to remove the ransomware yourself following instructions in an online search but it might be necessary to have a professional look at your computer.