THE HOME LOAN SAVINGS BANK. Corporate Account Takeover & Information Security Awareness

Similar documents
Corporate Account Takeover & Information Security Awareness

Mifflinburg Bank & Trust. Corporate Account Takeover & Information Security Awareness

TRAINING FOR AMERICAN MOMENTUM BANK CLIENTS. Corporate Account Takeover & Information Security Awareness

The information contained in this session may contain privileged and confidential information. This presentation is for information purposes only.

Corporate Account Takeover & Information Security Awareness. Customer Training

Information Security Awareness

PATRIOT BANK CUSTOMERS. Corporate Account Takeover & Information Security Awareness

Corporate Account Takeover & Information Security Awareness

Corporate Account Takeover & Information Security Awareness

Best Practices: Reducing the Risks of Corporate Account Takeovers

Corporate Account Takeover & Information Security Awareness

Don t Fall Victim to Cybercrime:

ONLINE BANKING SECURITY TIPS FOR OUR BUSINESS CLIENTS

Remote Deposit Quick Start Guide

Protecting your business from fraud

Payment Fraud and Risk Management

Electronic Fraud Awareness Advisory

Business Internet Banking / Cash Management Fraud Prevention Best Practices

Deter, Detect, Defend

Business ebanking Fraud Prevention Best Practices

Corporate Account Take Over (CATO) Guide

Online Cash Manager Security Guide

Sound Business Practices for Businesses to Mitigate Corporate Account Takeover

Retail/Consumer Client. Internet Banking Awareness and Education Program

Reliance Bank Fraud Prevention Best Practices

Preventing Corporate Account Takeover Fraud

Identity Theft Protection

Spam, Spyware, Malware and You! Don't give up just yet! Presented by: Mervin Istace Provincial Library Saskatchewan Learning

What are the common online dangers?

Online Banking Fraud Prevention Recommendations and Best Practices

BE SAFE ONLINE: Lesson Plan

Best Practices Guide to Electronic Banking

WEBTHREATS. Constantly Evolving Web Threats Require Revolutionary Security. Securing Your Web World

Computer Protection. Computer Protection. Computer Protection 5/1/2013. Classic Battle of Good vs Evil. David Watterson & Ross Cavazos

Malware, Spyware, Adware, Viruses. Gracie White, Scott Black Information Technology Services

Common Cyber Threats. Common cyber threats include:

Business Identity Fraud Prevention Checklist

Information Security. Louis Morgan, CISSP Information Security Officer

Contact details For contacting ENISA or for general enquiries on information security awareness matters, please use the following details:

Fraud Detection and Prevention. Timothy P. Minahan Vice President Government Banking TD Bank

Section 12 MUST BE COMPLETED BY: 4/22

Network Security. Demo: Web browser

Learn to protect yourself from Identity Theft. First National Bank can help.

How to Identify Phishing s

BCS IT User Syllabus IT Security for Users Level 2. Version 1.0

Get Started Guide - PC Tools Internet Security

1. Any requesting personal information, or asking you to verify an account, is usually a scam... even if it looks authentic.

ITSC Training Courses Student IT Competence Programme SIIS1 Information Security

How to stay safe online

Infocomm Sec rity is incomplete without U Be aware,

PROTECT YOUR COMPUTER AND YOUR PRIVACY!

How To Protect Your Online Banking From Fraud

E Commerce and Internet Security

Cyber Security Survival Guide

Cyber Security. Securing Your Mobile and Online Banking Transactions

thriller INTERNET SECURITY

& INTERNET FRAUD

Security Tips You are here: Home» Security Tips

Statistical Analysis of Internet Security Threats. Daniel G. James

PC Security and Maintenance

How to easily clean an infected computer (Malware Removal Guide)

Staying Safe Online. Produced in association with

Spyware. Michael Glenn Technology Management 2004 Qwest Communications International Inc.

FAKE ANTIVIRUS MALWARE This information has come from - a very useful resource if you are having computer issues.

Network Security and the Small Business

Essentials of PC Security: Central Library Tech Center Evansville Vanderburgh Public Library

Trust the Innovator to Simplify Cloud Security

Cyber Security, Fraud and Corporate Account Takeovers LBA Bank Counsel Conference December 2014

Internet basics 2.3 Protecting your computer

Phishing Scams Security Update Best Practices for General User

Introduction to Computer Security Table of Contents

Intercepting your mail. They can complete change of address forms and receive mail that s intended for you.

Practical guide for secure Christmas shopping. Navid

Understanding Spyware

INTERNET & COMPUTER SECURITY March 20, Scoville Library. ccayne@biblio.org

Ten Tips to Avoid Viruses and Spyware

Practical tips for a. Safe Christmas

Phishing Activity Trends Report. 1 st Half Committed to Wiping Out Internet Scams and Fraud

System Compatibility. Enhancements. Operating Systems. Hardware Requirements. Security

F-Secure Anti-Virus for Mac 2015

Recognizing Spam. IT Computer Technical Support Newsletter

National Cyber Security Month 2015: Daily Security Awareness Tips

Online Banking Risks efraud: Hands off my Account!

Frequent Smart Updates: Used to detect and guard against new infections as well as adding enhancements to Spyware Doctor.

High Speed Internet - User Guide. Welcome to. your world.

Secure and Safe Computing Primer Examples of Desktop and Laptop standards and guidelines

Ohio University Computer Services Center October, 2004 Spyware, Adware, and Virus Guide

INFOCOMM SEC RITY. is INCOMPLETE WITHOUT. Be aware, responsible. secure!

OCT Training & Technology Solutions Training@qc.cuny.edu (718)

Countermeasures against Spyware

MacScan. MacScan User Guide. Detect, Isolate and Remove Spyware

Spyware Doctor Enterprise Technical Data Sheet

Your security is our priority

Keeping you and your computer safe in the digital world.

Computer Network and Internet Security Awareness and Responsible Use. Indian River County School District

Identity Theft. CHRISTOS TOPAKAS Head of Group IT Security and Control Office

CLEO Remote Access Services CLEO Remote Desktop Access User Guide v1.3

NewNet 66 Network Security

Top tips for improved network security

Transcription:

THE HOME LOAN SAVINGS BANK Corporate Account Takeover & Information Security Awareness

The information contained in this session may contain privileged and confidential information. This presentation is for information purposes only. Before acting on any ideas presented in this session; security, legal, technical, and reputational risks should be independently evaluated considering the unique factual circumstances surrounding each institution. No computer system can provide absolute security under all conditions. Any views or opinions presented do not necessarily state or reflect those of The Home Loan Savings Bank or any other entity.

What will be covered? What is Corporate Account Takeover? How does it work? Statistics Current Trend Examples What can we do to prevent CATO? What can Businesses do to prevent CATO?

What is Corporate Account Takeover? A fast growing electronic crime where thieves typically use some form of malware to obtain login credentials to Corporate Online Banking accounts and fraudulently transfer funds from the account(s).

Malware Short for malicious software, is software designed to infiltrate a computer system without the owner's informed consent. Malware includes computer viruses, worms, trojan horses, spyware, dishonest adware, crimeware, most rootkits, and other malicious and unwanted software.

Domestic and International Wire Transfers, Business-to-Business ACH payments, Online Bill Pay and electronic payroll payments have all been used to commit this crime.

How does it work? Criminals target victims by scams Victim unknowingly installs software by clicking on a link or visiting an infected Internet site. Fraudsters began monitoring the accounts Victim logs on to their Online Banking Fraudsters Collect Login Credentials Fraudsters wait for the right time and then depending on your controls they login after hours or if you are utilizing a token they wait until you enter your code and then they hijack the session and send you a message that Online Banking is temporarily unavailable.

Statistics Where does it come from? Malicious websites (including Social Networking sites) Email P2P Downloads (e.g. LimeWire) Ads from popular web sites Web-borne infections: According to researchers in the first quarter of 2011, 76% of web resources used to spread malicious programs were found in 5 countries worldwide ~ United States, Russian Federation, Netherlands, China, & Ukraine.

Rogue Software/Scareware Form of malware that deceives or misleads users into paying for the fake or simulated removal of malware. Has become a growing and serious security threat in desktop computing. Mainly relies on social engineering in order to defeat the security software. Most have a Trojan Horse component, which users are misled into installing. Browser plug-in (typically toolbar). Image, screensaver or ZIP file attached to an e-mail. Multimedia codec required to play a video clip. Software shared on peer-to-peer networks A free online malware scanning service

Phishing Criminally fraudulent process of attempting to acquire sensitive information (usernames, passwords, credit card details) by masquerading as a trustworthy entity in an electronic communication. Commonly used means: Social web sites Auction sites Online payment processors IT administrators

E-mail Usage CAUTION! What may be relied upon today as an indication that an email is authentic may become unreliable as electronic crimes evolve. This is why it is important to stay abreast of changing security trends.

E-mail Usage Some experts feel e-mail is the biggest security threat of all. The fastest, most-effective method of spreading malicious code to the largest number of users. Also a large source of wasted technology resources Examples of corporate e-mail waste: Electronic Greeting Cards Chain Letters Jokes and graphics Spam and junk e-mail

What we can do to prevent CATO? Provide Security Awareness Training for Our Employees & Customers Review our Contracts Make sure that both parties understand their roles & responsibilities Make sure our Customers are Aware of Basic Online Security Standards Stay Informed Attend webinars/seminars & other user group meetings Develop a layered security approach

Layered Security Layered Security approach Monitoring of IP Addresses New User Controls Administrator can create a new user. Bank must activate user. Calendar File Frequencies, and Limits Dual Control Processing of files on separate devices recommended Fax or Out of Band Confirmation Secure Browser Key Pattern Recognition Software

What can Businesses do to prevent CATO? Education is Key Train your employees Secure your computer and networks Limit Administrative Rights -Do not allow employees to install any software without receiving prior approval. Install and Maintain Spam Filters Surf the Internet carefully Install & maintain real-time anti-virus & anti-spyware desktop firewall & malware detection & removal software. Use these tools regularly to scan your computer. Allow for automatic updates and scheduled scans. Install routers and firewalls to prevent unauthorized access to your computer or network. Change the default passwords on all network devices. Install security updates to operating systems and all applications as they become available. Block Pop-Ups

What can Businesses do to prevent CATO? Do not open attachments from e-mail -Be on the alert for suspicious emails Do not use public Internet access points Reconcile Accounts Daily Note any changes in the performance of your computer Dramatic loss of speed, computer locks up, unexpected rebooting, unusual popups, etc. Make sure that your employees know how and to whom to report suspicious activity to at your Company & the Bank Contact the Bank if you: >Suspect a Fraudulent Transaction >If you receive an email claiming to be from the Bank and it is requesting personal/company information.

2024 © DocPlayer.net Privacy Policy | Terms of Service | Feedback  | Do Not Sell My Personal Information