1 min read
‘Tis the Season for Tax Scams
Every year, thousands of people fall victim to tax-related phishing scams. As with most intrusions, it only takes one click on a fraudulent link to...
Threats (4)
2 min read
Is Your Risk Assessment Authentication & Access Ready?
In August, the FFIEC released new guidance titled “Authentication and Access to Financial Institution Services and Systems”. Because the guidance...
2 min read
Log4Shell Response for Community Financial Institutions
This post is intended to help community financial institutions appropriately prioritize their response efforts to the Log4Shell vulnerability. If...
2 min read
Extending Security Controls Beyond the Office
Over the past several years, organizations have allocated considerable resources to protect their Information Technology environment. Historically,...
2 min read
Backups vs. Retention
We often run into situations where different staff in an institution have different understandings of the goals and operations of their backup...
2 min read
Keep an Eye on API Security
Application programming interfaces, or APIs, enable applications to exchange data and functionality easily with other applications and users in or...
2 min read
Tricky Phish Testing
Phishing remains one of the top threats to organizations today. Every user regularly receives emails designed to trick them into clicking on a link,...
3 min read
Guidance from the FBI- Their Efforts and Your Role
After spending some time this week helping our customers with ransomware preparation, I found a statement on the FBI’s website that would be a great...
2 min read
Breaking the SMS Habit
Multifactor Authentication (MFA) is one of the most important controls to block account takeover fraud. There are many different forms of MFA...