Journal of Information System and Technology Auditing

Journal of Information System and Technology Auditing

Investigating the Impact of Cyberattacks on Digital Auditing based on Becker's Criminal

Document Type : Original Article

Authors
Avan Jamshidi 1
Javad Jamshidi 2
1 1. Ph.D., Department of Accounting, Faculty of Social and Economic Sciences, AlZahra University, Tehran, Iran,/Lecturer at National Skill University.
2 M.A, Department of Law, Criminal Law and Criminology, Iran
10.22034/jista.2025.540907.1058
Abstract
This study aims to investigate the impact of cyberattacks on digital audit processes using the Becker criminal theory. This theory focuses on the cost-benefit analysis of criminal behavior and provides a framework for understanding the motivations of cybercriminals when confronting digital audit infrastructures. This research used a qualitative method with a theme analysis approach. Data were collected by studying documents and reports related to cyber-attacks and interviewing experts in the field of auditing and cybersecurity in 2024. We reached information saturation with 15 people. Data analysis was performed using Max Coda theme analysis software. The findings showed that cyberattacks have multiple impacts on digital auditing, which can be categorized into five main axes: Direct impacts of attacks: Cyberattacks directly affect the accuracy, integrity, and efficiency of digital audit systems. Risks and costs: Increased security costs and legal risks can limit these behaviors. Preventive measures: These measures can significantly reduce the vulnerability of organizations. Increased costs and reduced productivity: Attacks have increased security costs and reduced the efficiency of audit teams. Benefits of cyber attackers: Attackers exploit security weaknesses to obtain sensitive information and financial benefits. Social and ethical implications: Reduced trust in digital audit systems and concerns related to maintaining information confidentiality are key consequences. Cyberattacks have a significant negative impact on the efficiency and security of digital auditing. Becker's theory suggests that creating deterrence through increasing the costs of committing crime (such as harsher penalties and strengthening security systems) can have a positive impact on reducing these threats. Also, considering the increasing importance of digital audit in the modern world, dealing with cyber attacks is not only a technical need but also a strategic necessity. Previous research shows that cyber attacks have become one of the main challenges in digital audit processes. By combining original criminal theory and thematic analysis, this study provides a new approach to understanding the motivations of cybercriminals and suggests solutions to strengthen security and trust in digital auditing. These findings can be used as a scientific and practical reference for managers, auditors, and researchers.
Keywords
Cyber Attacks
Digital Auditing
Becker Criminal Theory
Information Security
Anderson, R., & Moore, T. (2020). The economics of information security. Science.
Ageeva, O., Karp, M., & Sidorov, A. (2020, March). The application of digital technologies in financial reporting and auditing. In Institute of Scientific Communications Conference (pp. 1526-1534). Cham: Springer International Publishing.
Becker, G. S. (1968). Crime and Punishment: An Economic Approach. Journal of Political Economy, 76(2), 169-217.
Böhme, R., & Schwartz, G. (2021). Cybercrime and its economic impact. Journal of Cyber Policy.
Bonabi Ghadim, Rahim, (2024). Cybersecurity based on audit evidence, Fourth National Conference on Cyber ​​Defense, Maragha, http://civilica.com/doc/1917436.(in persian)
Ghosh, S., & Sharman, R. (2021). Trust and security in digital auditing systems. Computers & Security.
Nakhaei, Habibullah; Barzegrawal, Mohammad. (2024), Studying the impact of digital technologies on the quality of financial reporting and auditing, Quarterly Journal of New Approaches in Management Sciences, Volume 4, Number 2.(in persian)
National Institute of Standards and Technology (NIST). "Cybersecurity Framework for Critical Infrastructure." Available at: https://www.nist.gov/cyberframework.
PwC Global (2023). "Digital Auditing and Cybersecurity: A Practical Guide for Organizations." PricewaterhouseCoopers Publications.
PwC. (2022). Cyber threats in the age of digital transformation. PwC Insights.
Sirois, L. P., Bédard, J., & Bera, P. (2020). The role of technology in modern auditing. Accounting Horizons.
Zare Bahnamiri, M. J. , Maleki, M. H. , Hasankhani, F. and Ramsheh, M. (2023). A Framework for Identifying and Analyzing Key Drivers Affecting Future of Auditing in Iran with a Focus on Blockchain Technology. Empirical Research in Accounting, 13(3), 27-56. doi: 10.22051/jera.2023.41640.3047.(in persian)
Zheng Guohong , Xia Zhongwei , He Feng, Xiao Zhongyi.(2025). The audit committee’s IT expertise and its impact on the disclosure of cybersecurity risk, Research in International Business and Finance 73 (2025).
Wang. L. (2025), Digital transformation, audit risk, and the low-carbon transition of China’s energy enterprises, Finance Research Letters, 106445
 
Journal of Information System and Technology Auditing
Volume 1, Issue 1 - Serial Number 1
April 2025
Pages 100-116

  • Receive Date 09 February 2025
  • Revise Date 02 July 2025
  • Accept Date 02 September 2025
  • Publish Date 22 June 2025