Saturday, December 21, 2024

Be aware of Crowdstrike update, scams involving encrypted email, web-shared documents

Krebs on Security published an article detailing the latest on the Crowdstrike update leading to issues across the globe. Click here to read the article. Additionally, ABA President and CEO Rob Nichols released this letter addressing the issue.

Starting earlier this month the OBA and many other financial institutions across the country have received malicious emails purportedly from employees at other financial institutions. Usually from someone already in their contacts. (New Phishing Method Uses VNC to Bypass MFA Measures and Gives Cybercriminals Needed Access —knowbe4.com)

Now would be a great time to review your email security protocols for effectiveness and to remind your employees of your policies and processes.

Resources:
Security Awareness Training | KnowBe4 (www.knowbe4.com) — Free tools for phishing/security awareness.

National Cybersecurity Alliance (staysafeonline.org) — Online safety and response guidance.

CISA (www.cisa.gov) — No-cost, in-house cybersecurity services designed to help individuals and organizations build and maintain a robust and resilient cyber framework.