Categories: FDIC

FFIEC Joint Statements on Destructive Malware and Compromised Credentials

FIL-13-2015
March 30, 2015

FFIEC Joint Statements on Destructive Malware and Compromised Credentials

Printable Format:

FIL-13-2015 – PDF (PDF Help)

Summary:

The Federal Financial Institutions Examination Council (FFIEC) has issued two joint statements to alert financial institutions to specific risk mitigation techniques related to destructive malware and cyber attacks that compromise credentials.

Statement of Applicability to Institutions With Total Assets Under $1 Billion: This Financial Institution Letter applies to all FDIC-supervised financial institutions.

Highlights:

  • The joint statement on Cyber Attacks Compromising Credentials discusses the growing trend of cyber attacks designed to obtain online credentials for theft, fraud, or business disruption and recommends risk mitigation techniques. Financial institutions should address this threat by reviewing their risk management practices and controls related to information technology networks and authentication, authorization, fraud detection, and response management systems and processes.
  • The joint statement on Destructive Malware discusses the increasing threat of cyber attacks involving destructive malware. Financial institutions and technology service providers should enhance their information security programs to ensure they are able to identify, mitigate, and respond to this type of attack. In addition, business continuity planning and testing activities should incorporate response and recovery capabilities and test resilience against cyber attacks involving destructive malware.
  • Both statements reference applicable sections of the FFIEC Information Technology Examination Handbook.
IR Press

Share
Published by
IR Press

Recent Posts

OCC Issues Annual Report for 2024

WASHINGTON—The Office of the Comptroller of the Currency (OCC) today published its 2024 Annual Report.…

2 days ago

OCC Announces Enforcement Actions for December 2024

WASHINGTON—The Office of the Comptroller of the Currency (OCC) today released enforcement actions taken against…

3 days ago

Treasury Maintains Pressure on Houthi Procurement and Financing Schemes

WASHINGTON — Today, the Department of the Treasury’s Office of Foreign Assets Control (OFAC) sanctioned…

4 days ago

Treasury Sanctions Georgian Ministry of Internal Affairs Officials for Brutality Against Protesters, Journalists, and Politicians

WASHINGTON — Today, the Department of the Treasury’s Office of Foreign Assets Control (OFAC) is…

4 days ago

Treasury Maintains Pressure on Iranian Shadow Fleet

WASHINGTON — Today, the United States Department of the Treasury is imposing sanctions on four…

4 days ago

Treasury Releases Report on the Uses, Opportunities, and Risks of Artificial Intelligence in Financial Services

WASHINGTON – Today, the U.S. Department of the Treasury (Treasury) released a report following the issuance of…

4 days ago