It is common for community financial institutions to outsource some of their most critical systems, including their core system and Internet banking sites. Outsourcing helps keep the data center...
Brian Petzold
Recent Posts
Your Fax Machine Can Let In Intruders
by Brian Petzold | Aug 24, 2018
Researchers at Check Point recently announced that they found a way to access a network by sending a fax. The vulnerability has been named “Faxploit”, and it allows an attacker to send a fax over a...
Combatting "Yes"
by Brian Petzold | Aug 10, 2018
There are many stories of IT staff who were so eager to help someone that they gave an employee too much access, whitelisted a website containing malware, or any number of other activities that...
Essential Employee Training
by Brian Petzold | Aug 3, 2018
Financial institutions are expected to provide some level of training to users. Between making sure the right topics are covered and that everyone completes it, can be a tall order for those who are...
Effectively Reporting Vulnerability Management Performance
by Brian Petzold | Jul 27, 2018
The Board of a financial institution is responsible for ensuring that the vulnerability management program is effective, often delegating monitoring to senior management. IT departments diligently...
What is Credential Stuffing?
by Brian Petzold | Jul 13, 2018
One of the fastest-growing types of cyberattack right now is called credential stuffing. Credential stuffing takes place when an attacker uses a list of IDs and passwords that have been obtained in...
Technologies to Consider During Cybersecurity Planning
by Brian Petzold | Jun 29, 2018
Regulators want financial institutions to plan for cybersecurity upgrades, both in strategic planning and during the budgeting process. It is difficult sometimes to know how to approach this...
When Devices Turn Bad
by Brian Petzold | Jun 22, 2018
There has been a lot of discussion recently about the “Internet of Things” (shortened “IoT”). The IoT is made up of devices, vehicles, appliances, or other non-traditional computers that can...
Accepting Vulnerability Risk
by Brian Petzold | Jun 15, 2018
Financial institutions are in the business of managing risk to an acceptable level. We do it every day when assessing whether to originate a loan or to purchase a certain bond. In many cases, we...
Five Tips for a Healthy CAT Experience
by Brian Petzold | Jun 8, 2018
The Cybersecurity Assessment Tool (“CAT”) is a valuable tool for institutions to use to assess their security strategy. While completing the CAT is not required, regulators will use the CAT...