The Finastra ransomware attack from last week reminded us all of that.
The reality is that the overall inherent risk of a data breach or ransomware attack has gone up substantially over the last couple weeks for all financial institutions.
The hackers aren't taking a vacation right now. If there was a time for them to really hit us hard, it would be right now.
We all need to be aware of this to make sure we don't let off on good information security practices. Even if it seems convenient in times like these, it's exactly the opposite of what we need to do.
Risk is a product of impact and likelihood, and if you think of the circumstances right now, both the impact and likelihood have increase.
The impact is increased because who, in the midst of all that they're taking care of right now, has time for incident response? No one does.
The likelihood is increased for a number of reasons:
So even though Information Security may seem like an inconvenience right now, it is as important as ever for your financial institution.
So, what can you do?
The longer this pandemic goes on, the greater our exposure to many of these factors. Security breaches right now in banks and credit unions would not only impact the institution, it will also hurt the community that it takes place in. Let’s all do what we can to be vigilant, for everyone.
It's in times like these that we have to help each other out and we are here if you need it.
If while you're reading this email you're sitting there wishing you would have established a testing and training program for your staff a long time ago. It's never too late. If you want help, send me an email. I’ll walk you through getting set up on KnowBe4.
Or if you’ve implemented technology that you’re not sure you’ve properly assessed, take the time now to do so. If you’re not sure where to start, send me an email. I’ll walk you through your remote access risk assessment.
And if thinking about cybersecurity in a crisis like this seems too overwhelming and you just don’t have the time for it, then you really should send me an email. I’ll show you how you can get help managing your information security program that will continue working even in times like these.
Chris Bedel
chris@bedelsecurity.com
Remote Access Risk Assessment
https://www.bedelsecurity.com/lp-remoteriskassessment
Pandemic Planning
https://www.bedelsecurity.com/blog/pandemic-planning
Remote Work Security
https://www.bedelsecurity.com/blog/remote-work-security
Update: What We're Seeing From the COVID-19 Pandemic Planning Front
https://www.bedelsecurity.com/blog/update-what-were-seeing-from-the-covid-19-pandemic-planning-front