CYBER & DATA SECURITY

Mitigation

Prevention and risk mitigation are key components in every aspect of bank operations - the same holds true in the protection of customer data.


Vulnerabilities & Mitigation

Cybersecurity and data security vulnerabilities come in many forms. Use these resources to know what you are dealing with and how to stay one step ahead.

Name Source Date
Advisory on Ransomware and the Use of the Financial System to Facilitate Ransom Payments
OFAC 10/01/2020
Advisory on Ransomware Awareness for Holidays and Weekends
CISA and FBI 08/31/2021
Advisory on Unemployment Insurance Fraud During COVID-19
FINCEN 10/13/2020
Analysis Report: FiveHands Ransomware
CISA 05/06/2021
Apache Log4J Vulnerability Guidance
CISA 12/13/2021
AppleJeus: Analysis of North Korea’s Cryptocurrency Malware
CISA 02/17/2021
CISA Alert: Active Exploitation of SolarWinds Software
CISA 12/13/2020
CISA Emergency Directive on SolarWinds Orion Code Compromise
CISA 12/13/2020
CISA-FBI Guidance for MSPs and their Customers Affected by the Kaseya VSA Supply-Chain Ransomware Attack
CISA and FBI 07/07/2021
Compromised Managed Service Providers
USSS 09/10/2020
Contact U.S. Department of Labor Cyber Fraud Task Forces
DOL 09/10/2020
Contact U.S. Secret Service Cyber Fraud Task Forces
USSS 09/10/2020
Cyber Fraud Task Force Bulletin - September 2020
USSS 09/25/2020
Cybersecurity: Ransomware Alert
OCIE 09/10/2020
Fact Sheet: Russian SVR Activities Related to Solar Winds
CISA 05/07/2021
FBI Alert: Increased use of Mobile Apps Could Lead to Exploitation
FBI 09/10/2020
FBI Sees Spike in Fraudulent Unemployment Insurance Claims Filed Using Stolen Identities
FBI 09/10/2020
FinCEN Advisory on Imposter Scams and Money Mule Schemes
FinCEN 09/10/2020
Indicators Associated with Netwalker Ransomware
FBI 09/10/2020
Indicators of Compromise Associated with Darkside Ransomware
FBI 05/10/2021
Joint Advisory on Accellion File Transfer Appliance Vulnerabilities
CISA 02/24/2021
Joint Cybersecurity Advisory on Russian Foreign Intelligence Service (SVR)
NCSC, CISA, FBI, NSA 05/07/2021
Lessons Learned from Russia-Ukraine 1
US Department of the Treasury 09/13/2022
Lessons Learned from Russia-Ukraine 2
US Department of the Treasury 10/06/2022
Lessons Learned from Russia-Ukraine 3
US Department of the Treasury 10/20/2022
Lessons Learned from Russia-Ukraine 4
US Department of the Treasury 11/03/2022
Malicious Cyber Actor Spoofing COVID-19 Loan Relief Webpage
CISA 09/10/2020
MedusaLocker Advisory
Joint Advisory 06/30/2022
Money Mule Awareness TLP AMBER
DOJ OIG 10/13/2021
Money Mule Awareness TLP WHITE
DOJ OIG 10/13/2021
Money Mule Initiative and Education
DOJ 12/16/2020
MOVEit Transfer Exploit
US Department of the Treasury 06/04/2023
North Korea: Cyber Tactics and Tools Targeting Global Financial Sector
DHS 01/13/2021
North Korean Malicious Cyber Activity
CISA 02/17/2021
OCCIP Cybersecurity Alert 1 - Ransomware
OCCIP 09/10/2020
Pandemic Response Portal
09/28/2020
People’s Republic of China State-Sponsored Cyber Actors Exploit Network Providers and Devices
CISA 06/08/2022
PIN - Egregor Ransomware
FBI 01/07/2021
PIN: Cyber Criminals Exploit Email Rule Vulnerability to Increase the Likelihood of Successful Business Email Compromise
FBI 12/01/2020
Ransomware Guide
CISA 09/01/2020
Russian Foreign Intelligence Service Cyber Operations: Trends and Best Practices for Network Defenders
CISA and FBI 04/27/2021
SBA Information Notice
SBA 07/21/2020
SBA Lender Alert EIDL
SBA 07/14/2020
Scam Awareness Materials for Groups and Organizations
SSA 11/02/2020
Security Alert Pandemic Related Fraud Chargeback Scheme
Visa 10/21/2020
Selecting and Safely Using Collaboration Services for Telework
NSA 09/10/2020
Snatch Ransomware Notice
FinCEN 07/14/2022
State UI ACH ID List
USSS 09/10/2020
Tips to Defend Against Ransomware
FS-ISAC 05/01/2019
U.S. Secret Service Cyber Fraud Task Force Map
USSS 09/10/2020
Unemployment Insurance Fraud Consumer Protection Guide
09/28/2020
USSS SBA OIG Joint Alert - PPP EIDL Fraud - TLP Green
09/28/2020
USSS-DOL OIG UI Advisory
USSS 09/10/2020
What We Urge You to do to Protect Against the Threat of Ransomware
White House 06/03/2021

Cybersecurity and Technology News

CISA launches cybersecurity public awareness campaign

Sep 27, 2023 | NewsWatch Today
The Cybersecurity and Infrastructure Security Agency announced the launch of a nationwide cybersecurity public awareness campaign to educate Americans on how to stay safe online.

Fed’s Bowman urges community banks to weigh in on agency rulemakings

Sep 25, 2023 | NewsWatch Today
Federal Reserve Governor Michelle Bowman encouraged community bankers to provide feedback on agency rulemakings.

CFPB issues guidance on credit denials by lenders using AI

Sep 20, 2023 | NewsWatch Today
The Consumer Financial Protection Bureau issued guidance about certain legal requirements that lenders must adhere to when using artificial intelligence and other complex models.

ICBA ThinkTECH Accelerator Alum Chimney Wins “Best of Show” Honors at FinovateFall 2023

Sep 19, 2023 | Press Release
The Independent Community Bankers of America (ICBA) celebrates this year’s FinovateFall 2023 Best of Show winner, Chimney, a member of the 2022 ICBA ThinkTECH Accelerator cohort.

ICBA ThinkTECH Solutions Forum Spotlights Faster Payments Offerings for Community Banks

Sep 15, 2023 | Press Release
The Independent Community Bankers of America (ICBA) hosted its first ThinkTECH Solutions Forum yesterday. This forum, which was designed to foster industry collaboration in support of community bank adoption of faster payments, is the first of three such forums planned for this year.

SEC’s Gensler to Congress: Securities laws apply to crypto industry

Sep 13, 2023 | NewsWatch Today
Securities and Exchange Commission Chair Gary Gensler told Congress that most crypto tokens and intermediaries are subject to U.S. securities laws despite the industry’s “wide-ranging noncompliance.”