Links in “Cybersecurity/Data Breaches”

The Government Accountability Office says bank regulators do not have standardized methods for collecting data, which limits their ability to analyze data and trends. It also finds that examiners with limited IT experience perform exams at smaller institutions. [7/6/15]

The Federal Financial Institutions Examination Council (FFIEC) has announced that it has developed a new cybersecurity risk assessment tool that financial institutions can use to assess how prepared they are to address cybersecurity risk. The free tool is available on the FFIEC website here. [7/1/15]

The OCC has rated compliance risk as one of the top supervisory concerns for 2015, along with cybersecurity, interest rate, underwriting, and strategic risks. [7/1/15]

The FFIEC has released a new cybersecurity assessment tool meant to determine an institution’s cybersecurity risk and level of preparedness. [7/1/15]

Want to learn more about security expectations and how you can strengthen your cybersecurity? The second annual Cybersecurity Symposium will take place August 24-25, 2015 in Denver, Colorado. [6/30/15]

If so, your board isn't alone. Nearly 6 in 10 board members rate their cybersecurity practices as very effective, compared to less than 2 in 10 of the IT security people in the trenches believing this to be true. More about the gap here. [6/30/15]

Scammers encrypt files on infected computers, then demand payment before they provide the key required to decrypt them. Even a police department has recently fallen victim to ransomware and ended up paying the ransom. How to protect your data from ransomware. [6/29/15]

The U.S. Government Accountability Office (GAO) has identified several challenges facing federal agencies in addressing cybersecurity threats. Agencies often struggle to design and implement risk-based programs and do not provide adequate responses to data breaches. GAO, the Department of Homeland Security, and the Office of Management and Budget offer several initiatives to combat these trends. [6/25/15]

Cybercriminals are upping their game in attacks targeting financial institutions. [6/24/15]

Fraud experts say that the move to EMV will reduce the amount of fraud from the use of fake plastic cards at point of sale terminals.  As a result, there is already a significant increase in “friendly fraud” where cardholders request charge backs for items purchased online, by telephone, or by mail order. [6/22/15]