What’s a Security Awareness Program and why do I need one?

What’s this Security Awareness Program you speak of? In case you didn’t know, a security awareness program is a crucial piece of the newest multi-factor authentication (MFA) guidance that was put in place January of 2012. So if you’re a financial institution looking for a good example of why you should have a security awareness program, or you’re just trying to figure out what people are talking about pertaining security awareness, this is where you’re [...]

By | June 20th, 2013
Compliance & Business Continuity, Industry InSights|Comments Off on What’s a Security Awareness Program and why do I need one?

Mobile Phishing

Mobile Phishing By: Pierluigi Paganini Emails are considerable as a primary vector for cyber-attacks against mobile devices, principal security firms revealed that phishing activities in the last few years have increased exponentially, targeting every sector from industry to government agencies. RSA’s October Online Fraud Report 2012 described an impressive increase in phishing attacks, up 19% over the second half of 2011. The total loss for various organizations sums up to $2.1 billion over the last 18 months; [...]

By | April 2nd, 2013
Network Security & Solutions|Comments Off on Mobile Phishing

Embracing Social Media in the Workplace: Risk or Reward?

Social networking is more than just websites like Facebook, Twitter and Google+ -- it’s also the devices and users that access these sites. Today’s digitally-aware generation of employees are bringing their smart phones and tablets right into the workplace. Not because this digitally-native generation prefers texting to phone calls, and status updates over emails. Mobile technology is not a convenience for them - it’s how they live, and increasingly, how they work. Some organizations view [...]

By | October 25th, 2011
Industry InSights, Network Security & Solutions|Comments Off on Embracing Social Media in the Workplace: Risk or Reward?

The New FFIEC Guidance – Five Tips to Ensure Compliance

By now, the new FFIEC guidance should have found its way onto your desk and to the top of your ‘To Do List”. After all, the January compliance deadline is fast approaching, so it’s time to get busy. The question everyone is asking is no longer “What is this?”, but “How do I do this? Where do I begin?” To help you, we’ve identified five key starting points for financial institutions. 1. Enforce strong step-up [...]

By | August 15th, 2011
Compliance & Business Continuity, Network Security & Solutions|Comments Off on The New FFIEC Guidance – Five Tips to Ensure Compliance

Security Alert: W32/Zbot Malware (also known as Zeus)

InfoSight has detected a flood of phishing emails that are propagating through the Internet and targeting small community banks.  This spam campaign is delivering hundreds of thousands of messages that masquerade as a failed wire transfer, while delivering the password-stealing Zeus banking Trojan.  The hackers were very aware of who to target; they went after the individuals in the bank responsible for wire transfers. A snapshot of a sample email is provided below. The <From:> [...]

By | July 5th, 2011
Network Security & Solutions|Comments Off on Security Alert: W32/Zbot Malware (also known as Zeus)