CYBER & DATA SECURITY

Mitigation

Prevention and risk mitigation are key components in every aspect of bank operations - the same holds true in the protection of customer data.

ICBA Resources

The following links will lead you to cybersecurity assessment tools to help you better understand where your bank stands.

Educate Your Customer

Share these cybersecurity resources with your customers to help them protect their businesses and data.

CISA Resources

Risk Assessments

Ransomware Resources

Cybersecurity Exercises and Training

Law Enforcement Contacts

Regulatory Resources

Vulnerabilities & Mitigation

Cybersecurity and data security vulnerabilities come in many forms. Use these resources to know what you are dealing with and how to stay one step ahead.

Name	Source	Date
Advisory on Ransomware and the Use of the Financial System to Facilitate Ransom Payments	OFAC	10/01/2020
Advisory on Ransomware Awareness for Holidays and Weekends	CISA and FBI	08/31/2021
Advisory on Unemployment Insurance Fraud During COVID-19	FINCEN	10/13/2020
Analysis Report: FiveHands Ransomware	CISA	05/06/2021
Apache Log4J Vulnerability Guidance	CISA	12/13/2021
AppleJeus: Analysis of North Korea’s Cryptocurrency Malware	CISA	02/17/2021
CISA Alert: Active Exploitation of SolarWinds Software	CISA	12/13/2020
CISA Emergency Directive on SolarWinds Orion Code Compromise	CISA	12/13/2020
CISA-FBI Guidance for MSPs and their Customers Affected by the Kaseya VSA Supply-Chain Ransomware Attack	CISA and FBI	07/07/2021
Compromised Managed Service Providers	USSS	09/10/2020
Contact U.S. Department of Labor Cyber Fraud Task Forces	DOL	09/10/2020
Contact U.S. Secret Service Cyber Fraud Task Forces	USSS	09/10/2020
Cyber Fraud Task Force Bulletin - September 2020	USSS	09/25/2020
Cybersecurity: Ransomware Alert	OCIE	09/10/2020
Fact Sheet: Russian SVR Activities Related to Solar Winds	CISA	05/07/2021
FBI Alert: Increased use of Mobile Apps Could Lead to Exploitation	FBI	09/10/2020
FBI Sees Spike in Fraudulent Unemployment Insurance Claims Filed Using Stolen Identities	FBI	09/10/2020
FinCEN Advisory on Imposter Scams and Money Mule Schemes	FinCEN	09/10/2020
Indicators Associated with Netwalker Ransomware	FBI	09/10/2020
Indicators of Compromise Associated with Darkside Ransomware	FBI	05/10/2021
Joint Advisory on Accellion File Transfer Appliance Vulnerabilities	CISA	02/24/2021
Joint Cybersecurity Advisory on Russian Foreign Intelligence Service (SVR)	NCSC, CISA, FBI, NSA	05/07/2021
Lessons Learned from Russia-Ukraine 1	US Department of the Treasury	09/13/2022
Lessons Learned from Russia-Ukraine 2	US Department of the Treasury	10/06/2022
Lessons Learned from Russia-Ukraine 3	US Department of the Treasury	10/20/2022
Lessons Learned from Russia-Ukraine 4	US Department of the Treasury	11/03/2022
Malicious Cyber Actor Spoofing COVID-19 Loan Relief Webpage	CISA	09/10/2020
MedusaLocker Advisory	Joint Advisory	06/30/2022
Money Mule Awareness TLP AMBER	DOJ OIG	10/13/2021
Money Mule Awareness TLP WHITE	DOJ OIG	10/13/2021
Money Mule Initiative and Education	DOJ	12/16/2020
MOVEit Transfer Exploit	US Department of the Treasury	06/04/2023
North Korea: Cyber Tactics and Tools Targeting Global Financial Sector	DHS	01/13/2021
North Korean Malicious Cyber Activity	CISA	02/17/2021
OCCIP Cybersecurity Alert 1 - Ransomware	OCCIP	09/10/2020
Pandemic Response Portal		09/28/2020
People’s Republic of China State-Sponsored Cyber Actors Exploit Network Providers and Devices	CISA	06/08/2022
PIN - Egregor Ransomware	FBI	01/07/2021
PIN: Cyber Criminals Exploit Email Rule Vulnerability to Increase the Likelihood of Successful Business Email Compromise	FBI	12/01/2020
Ransomware Guide	CISA	09/01/2020
Russian Foreign Intelligence Service Cyber Operations: Trends and Best Practices for Network Defenders	CISA and FBI	04/27/2021
SBA Information Notice	SBA	07/21/2020
SBA Lender Alert EIDL	SBA	07/14/2020
Scam Awareness Materials for Groups and Organizations	SSA	11/02/2020
Security Alert Pandemic Related Fraud Chargeback Scheme	Visa	10/21/2020
Selecting and Safely Using Collaboration Services for Telework	NSA	09/10/2020
Snatch Ransomware Notice	FinCEN	07/14/2022
State UI ACH ID List	USSS	09/10/2020
Tips to Defend Against Ransomware	FS-ISAC	05/01/2019
U.S. Secret Service Cyber Fraud Task Force Map	USSS	09/10/2020
Unemployment Insurance Fraud Consumer Protection Guide		09/28/2020
USSS SBA OIG Joint Alert - PPP EIDL Fraud - TLP Green		09/28/2020
USSS-DOL OIG UI Advisory	USSS	09/10/2020
What We Urge You to do to Protect Against the Threat of Ransomware	White House	06/03/2021

Alerts

Risk Management
The Benefits of a .BANK Domain
Risk Management
Protecting Your Customers and Bank with Sheltered Harbor
Technology
Carnegie Cyber Security Toolkit: The ideal resource for community banks
Technology
Preparing for the End of Microsoft's Internet Explorer

Cybersecurity and Technology News

CFPB Penalty Against VyStar Credit Union Exemplifies Consumer Impact of Tax-Exempt Industry’s Lagging Regulatory Oversight

Oct 31, 2024 | Press Release

Independent Community Bankers of America (ICBA) President and CEO Rebeca Romero Rainey issued the following statement after the Consumer Financial Protection Bureau took action against VyStar Credit Union for harming consumers through its botched rollout of a new online banking system.

Independent Banker: Faster payments don’t have to lead to faster fraud

Oct 25, 2024 | NewsWatch Today

Addressing real-time payments fraud requires a combination of techniques—there's no silver bullet—according to the latest Independent Banker magazine.

ICBA shares tips for Cybersecurity Awareness Month

Oct 2, 2024 | NewsWatch Today

In recognition of Cybersecurity Awareness Month, ICBA released tips to help consumers protect their sensitive financial information and minimize the risk of cyber threats.

ICBA Shares Consumer Tips to Protect Financial Data During Cybersecurity Awareness Month

Oct 1, 2024 | Press Release

In recognition of Cybersecurity Awareness Month this October, the Independent Community Bankers of America (ICBA) offers tips to help consumers protect their sensitive financial information and minimize the risk of cyber threats.

CISA warns of Iran-based ransomware attacks

Aug 29, 2024 | NewsWatch Today

The Cybersecurity and Infrastructure Security Agency, the FBI and the Department of Defense issued a joint advisory that warns of cyber actors known as Pioneer Kitten, UNC757, Parisite, Rubidium, and Lemon Sandstorm are targeting and exploiting U.S. and foreign organizations across multiple sectors.

ICBA ThinkTECH Accelerates Banking Innovation During AP7 Showcase

Jul 25, 2024 | Press Release

The Independent Community Bankers of America® (ICBA) hosted its ThinkTECH Accelerator Showcase, the culmination of the latest Accelerator program (AP7) yesterday. For the first time, the Showcase was held at the Graduate School of Banking at Colorado for its student body of nearly 500 bankers and streamed online for a virtual audience.