Saturday, December 16, 2017

Banks Participate in Information Sharing to Battle Online Theft

Posted by OnCourse Staff January 12, 2012 3:15pm

Photo Credit: iStockPhoto

For years, financial institutions shuddered at the thought of ever sharing information with one another, and always opted to maintain internal research for fears of providing “too much insight” into the other’s daily operations.

Yet, in light the rise of cyber-security threats, banks are becoming increasingly concerned with online theft, and are beginning to consider the importance of joining forces to combat these online hackers.

Several initiatives have already been designed to ensure a better protection against hackers, whose more sophisticated efforts to steal money and customer data for their own personal gains are multiplying at a faster rate than financial institutions’. 

According to Suzanne Kapner, a reporter for The Wall Street Journal, security officials from Morgan Stanley and Goldman Sachs are scheduled to meet with researchers from the Polytechnic Institute of New York University in an effort to create a new center that would go through bank data and detect potential attacks. Bank of America has even begun hosting informal quarterly meetings with rival experts to create solutions to the growing security trend. 

However, not all banks are unanimous in this decision. Kapner reported that some bank officials are hesitant to share their financial institution’s private information, and would prefer to conduct their own data research internally.

Nevertheless, recent real-life banking attacks such as the Zeus Trojan (a Trojan horse that steals banking information by keystroke logging and Form Grabbing. Zeus is spread mainly through drive-by downloads and phishing schemes) are presenting banks with the decision to ultimately look into alternative measures to prevent such vulnerability. (To learn more about these attacks, read Pete Viglucci’s blog).

In order to ensure better protection against outside threats, an IT risk assessment is required to identify the reasonably foreseeable threats from within and outside a bank’s operation that could result in unauthorized disclosure, misuse, alteration or destruction of customer information or customer information systems, as well as the reasonable foreseeable threats due to the disposal of customer information. Customer information stored on systems owned or managed by service providers and customer information disposed of by a bank’s service provider are factors that should be considered. Regulators require institutions to develop a thorough, written IT risk assessment. (P&G Associates offer such services. Click here to learn more!)

What are your thoughts on the sharing of information with other financial institutions?

Would you consider working with rival community banks in order to prevent such from happening to your financial institution?

If not, what other alternatives would you consider to keep you and your customers protected?

We would love to hear your thoughts!

Comments

Add a comment

  • Required fields are marked with *.

If you have trouble reading the code, click on the code itself to generate a new random code.



 Image

OnCourse Staff

The OnCourse writing staff work to keep you informed about the most pertinent financial industry news of the moment



OnCourse Staff's Posts Subscribe to RSS Feed



Training – An Investment and Risk Management Tool
Are You Gambling with Your BSA Program?
Does your 401(k) Plan need an Audit?
Same Day ACH Credits – Phase One
Is the IRS Status of your Defined Benefit plan in Jeopardy?
Is your Institution Monitoring Working Capital Lines of Credit?
Financial Reporting and Regulatory Update on the Horizon
Planning in a Consolidating Banking Industry
To opt-out or not to opt-out, that is the question – A reminder on March 31, 2015 Call Report, Schedule RC-R, item 3.a
Cybercriminals Broaden their Attacks in Social Networks
The Importance of Segregating a Bank’s Credit Function from its Lending Function
Requesting Current Financial Information
Countdown to Windows XP End of Life and Support: Are you still at Risk?
314(b) Distinct Advantages for Financial Institutions
Where is the Document?
Do You Know The Security Features of the New $100 Bill?
Segregation of Duties for Wire Transfer Processing
Community Banks Slowly Warm Up to Private Student Loans
Has your Bank updated the Adverse Action Notice?
How Does Your Bank Handle Customer Requested Maintenance Changes?
OCC Releases Booklet on "Common Sense" Community Banking
New SAR Filing Updates
The Importance of BSA Training
FFIEC Proposed Risk Management Guidance on Social Media: Beware and Prepare
Pandemic Preparedness: Are you testing your Pandemic Plan?
FFIEC issues revised “Supervision of Technology Service Providers” booklet
Is Your Institution's Marketing UDAAP Compliant?
Electronic Work Papers - Why P&G Made the Switch
Community Lenders Seize Market Share From Big Banks by Using Advanced Online Lending Technology
New FinCEN Guidance for CTR Aggregation for Businesses with Common Ownership (FIN – 2012 –G001)
Curry: Operational Risk Now OCC’s Top Concern
JOBS Act Client Alert - Rules 506 of Regulation D
Wall Street Receives Volcker Rule Clarity
De-stressing with stress testing
Banks Participate in Information Sharing to Battle Online Theft
IT security: Is your program still effective?
Mobile banking: How do we get there?
UBS further struggles with $2 Billion loss by Rogue Trader
Capital One Becomes Dodd-Frank Test as Nation’s Fifth Largest Bank
Community Banks to receive US Funding for Small Businesses
FDIC fields questions about overdraft guidance
Negligent Hiring – A mistake can cost more than just money!
From Embezzlement to Imprisonment: Former Citigroup employee faces charges with $19.2 million in bank fraud
Finding the Right Hire
Model behavior: Is your ALM model capturing your bank’s risks?
ALLL best practices: Pay attention to qualitative factors
Abandoned Property Law, and its new New York State of Mind
FDIC releases Provisions on Dodd-Frank to help Community Banks
Social Media in the Employment Arena – It Gets Funky!
Banks and Businesses get "swiped" over Fees
A little bit of this, and a little bit of that: Fed Unveils list of Banks Helped during Financial Crisis of 2008
To Test or Not to Test; That is the Question
2011 Failed Bank List Hits 25
Committee on Financial Services to Hold Hearing on the Effects of Dodd-Frank on Small Biz and Banks Today
2011 Failed Bank List up to 18
The Test Drive: Leasing or Buying a HR IT Platform
Double Digits: Bank Closings up to 11 in 2011
FCIC Releases Report on the Causes of the Financial Crisis
Another One Bites the Dust: Regulators Close 4 Banks
On Notice: FDIC Issues Rule for Temp Unlimited Deposit Insurance
2011 Failed Bank List Up to 3
Stick 'Em Up!
Time for a Tune-Up: The Necessity of a HR Audit
Visa Instituting Two-Tiered Debit Card Interchange Structure
The First Failed Banks of 2011
The Law on Your Side: Understanding HR Regulations in 2011
No Respite from RESPA