Links in “Technology”
- Silence about Cyberattacks May Be the Real Risk
An overwhelming majority of respondents to a recent survey of IT security professionals states that exchanging threat intelligence could have prevented cyberattacks. The traditional means of sharing information is just not sufficient today. [4/29]
- Heartbleed Lessons: Look for Odd Behavior on Internal Networks, Too
It is no longer enough to look for odd behavior with log-ins and actions in customer-facing offerings. Banks need to do the same with their own internal networks to detect whether criminals are seeking access. [4/29]
- Risk Watch 10: DDoS Webinar
Big banks arenât the only financial organizations targeted by DDoS and now the FFIEC has issued guidance to ensure youâre prepared. In this free DDoS webinar, learn about how DDoS attacks impact your credit union, hear stories of attacks and new research that supports DDoS as a smokescreen for breaches including financial and data theft.
- Ostrich Syndrome? 9% of Retailers Report No Cybersecurity Exposure
While 60% of retailers describe their cybersecurity exposure as significant, 9% are not reporting any exposure at all. [4/25]
- FDIC to Hold Discussion on Expanding Consumer Banking Access
The open-session webcast for the FDIC Advisory Committee on Economic Inclusion (ComE-IN) will be held on Thursday, April 24, 2014 and will include key topics of safe accounts, mobile financial services, financial education opportunities, and consumer demand for small dollar loans. [4/23]
- Black Box/White Box: A Primer on Network Penetration Testing
Black box and white box are two types of a pentest, short for network penetration test, where a third party seeks to break into your system in order to check for vulnerabilities. [4/23]
- Cybersecurity: What U.S. Lenders Can Learn from their Middle East Counterparts
The Middle East has been a hotbed of cyber attacks for some time. Recently several Middle East banks were hit by a malicious botnet disguised as a banking app. Here are some things U.S. banks can learn from these attacks. [4/22]
- Heartbleed Is Not Just a Website Threat
âHeartbleedâ may be affecting other parts of your infrastructure, such as your servers, mobile apps, and mobile devices. Both Cisco and Juniper have acknowledged that some of their network equipment uses the affected software. Mobile apps that donât use the affected software may also be vulnerable if they cycle through servers that do. [4/21]
- Cybersecurity Wars: Bankers Fire Back at OCC’s Curry
ABA takes exception to Comptroller's speech for giving "uncalled-for criticism of the banking industry" for cybersecurity breaches, rather than a call for vendors to step up their game. [4/21]
- Data Security Responsibility: OS Manufacturers, App Developers or Consumers
When it comes to mobile data security, each party has a role, but not equally. [4/21]
