Menu
Banking Exchange Magazine Logo
Menu

Cyber crooks keep coming

No question, your bank is in their cross-hairs

Obvious and mediocre won’t be found here—but “Why didn’t I think of that?” will! Challenging the banking status quo is Dan Fisher’s personal mission. Obvious and mediocre won’t be found here—but “Why didn’t I think of that?” will! Challenging the banking status quo is Dan Fisher’s personal mission.

You will be attacked!

A battle that you cannot see is directed at your data.

Knowledge is power, and your data is even more powerful. Be it governmental, corporate, or personal databases, if your data is taken without your consent, it can ruin you reputation, your business, your personal finances, and your confidence in your government and banking system.

Wikileaks posted numerous Hillary Clinton emails, which shows clear evidence of a data breach. The Internal Revenue Service has reported that it has been hacked and the Democratic National Committee has been hacked. More recently, registration systems have been penetrated in Arizona and Illinois.

Who’s next?

What is going on?

The tactics are clear to me.

Key information systems are being probed and penetrated on a regular basis. The attacks are aimed at targets that will produce maximum news coverage and at the same time undermine public confidence. The attacks also correlate to current events to achieve maximum impact.

From our standpoint, the attacks are coming from a wide range of sources. These include state-sponsored efforts such as the People’s Republic of China and Russia.

We have morphed from human espionage operatives to cyber espionage within the realm of the World Wide Web.

More importantly, these attacks represent a proving ground for conceptual battle tactics rivaling a Tom Clancy novel. The net outcome is the successful penetration of larger, conspicuous, and more sophisticated targets.

The cyber research collected at our expense is putting tactical arrows in criminals’ quivers, and will potentially unleash a frightening future using servers positioned all across the virtual landscape. With this stolen information cyber criminals can plan to disrupt an industry, system, region, or government with only cyber-shots being fired.

What can we do?

The assumption here, as the title of this blog states, is that you will be attacked.

Start preparing now!

Your organization must determine your vulnerabilities. Penetration testing isn’t enough. Monitor your enterprise and the movement of data, and the type of access behaviors.

Encrypt and compartmentalize your data. Minimize your bank’s value as a target.

And do not keep the encryption keys online!

In other words, even if cyber criminals get in, make sure they won’t get much.

Constantly change your security parameters and your associated access controls. The longer you stand still the greater the chance you will be identified, successfully probed, and ultimately compromised.

Our research at The Copper River Group indicates that identity theft and large databases are the target.

Food for thought: If you hear an explosion, the one thing you should realize is the damage has already been done! It is too late to protect yourself. It is too late, the data is gone, and so are the perpetrators … while you are left with the damage.

Start protecting your data now—don’t wait until the explosion!

—The Wombat!

Dan Fisher

Dan Fisher is president and CEO of The Copper River Group, a consulting firm headquartered in Fargo, N. D., that focuses on technology and payment systems research and consulting for community financial institutions. For nearly 30 years, Fisher has worked in the financial industry using technology to improve the bottom line. He was CIO of Community First Bankshares (now part of Bank of the West), has served as a director of the Federal Reserve Board of Minneapolis, the chairman of the American Bankers Association Payment Systems Committee, and was a member of the Independent Community Bankers of America Payments Committee. Fisher has written numerous articles on banking technology and the payments system. He has authored or co-authored six books and recently published a book titled, "Capturing Your Customer! The New Technology of Remote Deposit." You can contact Fisher at [email protected] or at 701-293-6222.
P.S. To understand Dan's nickname, check out "About the Wombat" on his website.       

back to top

Sections

About Us

Connect With Us

Resources

 

Banking Exchange

This Is the Week to Register for the
BANKING EXCHANGE FLY-IN CONFERENCE

CHICAGO, Illinois — NOVEMBER 7, 2024
Registration closes at 5 pm central time Tuesday, November 5


Conference to be held at the University of Chicago, Booth Business School Downtown

This one-day event is open to all executives at U.S. financial institutions. On the agenda, will be: