3 Ways Credit Unions Can Prepare for a Cyber Extortion

  • Share:
technology

Distributed denial-of-service (DDoS) is a form of cyberattack where criminals attempt to disrupt a machine or network’s online services by overwhelming it with high-volume traffic. For credit unions, this means preventing members from conducting legitimate online transactions and creating a customer service debacle.

Credit unions should develop internal protocols as well as work with existing third-party technology vendors to proactively defend against and recover from cyber security threats, like DDoS attacks. Here are three steps that can help any financial institution prepare for a possible DDoS attack.

1. Create a recovery plan

As with many other cybersecurity threats, the first step many organizations take in protecting themselves against DDoS attacks is having a disaster response and recovery plan in place. This includes an inventory of technical competencies as well as a step-by-step outline of retaining business continuity in the event of a successful attack. A recovery plan is comprised of three basic parts: risk analysis, strategy and recovery timeline.

Risk analysis

It is important to inventory the number of internet-dependent processes and services a credit union has. Where and what can fraudsters target? How would the network handle a DDoS attack if one happened right now? What options are available for response if an attack occurs?

Financial institutions may investigate partnering with a cybersecurity vendor for a detailed environment scan to search for weak spots and points where the network can be attacked, as well as a list of threats by priority. Common shortcomings include risk from backdoor access — either created intentionally or through malware — and threats that target third-party vendor services.

Strategy

This part of the recovery document will outline a process for the credit union to follow in case of a DDoS attack. It is important to lay out beforehand each employee’s role while responding to an incursion. A DDoS attack may affect many other parts of a credit union besides just the technology team. If a financial institution’s website and banking portal are down, marketing and communications should be agile enough to inform members as soon as the attack is detected. Customer service agents must be on hand to take any questions that members may have.

Recovery timeline

Credit unions need a response timeline in place before an attack occurs to establish what actions to take from the second a DDoS attack is detected. This timeline changes depending on what kind of DDoS mitigation tactics an organization deploys, but there will always be three phases: detection, response and recovery. Detection and response can either be handled by internal IT personnel or third-party mitigation services. Recovery, however, requires an all-hands-on-deck approach.

When an attack is over, and the network is available for use again, it may be unwise to allow members to connect all at once, further straining servers. Instead, consider a strategy that would slowly stagger the number of members using your services at any one time until things are back to normal.

2. Shore up mitigation

Banks and credit unions are favorite targets for cybercriminals and for DDoS attacks in particular. So it’s not news that cybersecurity is a priority budget item. According to Neustar, a technology company specializing in digital defence, more than 80 percent of companies are investing in greater DDoS mitigation. Their top motivation for doing so is preserving customer confidence and brand reputation, preventing ransomware and strengthening existing protection.

3. Ensure basic security needs are met

DDoS attacks are launched from networks of compromised computers and machines commonly referred to as a botnet. These “zombie” computers have been breached with malware, usually completely unknown to their owners, and can be directed by cybercriminals to participate in DDoS attacks or other illegal activities. Before organizations seek out preventative measures that deal directly with DDoS, they should ensure their basic security needs are met and their machines are protected.

  • Share:


« Return to "Trends"
TrendScan logo
<< Back to Articles

Latest Trends

  1. Opportunities and Risks of Banking for Marijuana-Related Businesses
  2. Experience Company Growth and Discovery with Employee-Driven Communication
  3. The Member Service Experience
  4. Become a Tax Resource for Members
  5. Should You Still Be Concerned about ADA Website Compliance?
  6. What Is a DDoS Attack and Why Should Credit Unions Be Concerned?
  7. Anticipating Change with a Succession Plan
  8. Don't Get Snagged on ADA Compliance Requirements
  9. The Performance Management Conundrum: Structure vs. Creativity
  10. Are You Ready to Adopt a Continuous Performance Management System?
  11. The Planning Process - Improved
  12. Building a Website with the User in Mind
  13. Is Your Executive Compensation Still Appealing?
  14. What Credit Unions Should Do with Ambiguous ADA Standards
  15. Content Marketing: Well Worth the Effort
  16. Your Social Media Accounts Deserve Quality Content
  17. Continuous Performance Management is Disrupting HR
  18. 7 Tax Changes Your Members Need to Know About
  19. Consumer Attitudes Toward Digital Advertising
  20. 5 Things Credit Unions Can Learn from Cyber Attacks
  21. The Website Audit Your Credit Union Needs
  22. Are You Properly Rewarding Your CEO?
  23. The Quest for a One-Stop Shop Financial App
  24. Credit Unions Could Replace Predatory Lenders
  25. 3 Succession Plans Your Credit Union Needs
  26. The Importance of Creating Quality Content
  27. Americans’ Lack of Financial Literacy Is an Opportunity for Credit Unions
  28. Optimizing Websites for Voice: What You Need to Know
  29. What’s Hot in Performance Management Technology
  30. Credit Union Compensation: Philosophy or Strategy?
  31. Why HR Should Take Advantage of Employee Self Service
  32. Volunteer and Young Board Members Need Development
  33. Build Up Membership Through Supportive Savings Programs
  34. 3 Website Design Trends for 2019
  35. Consumer Appetites in Mobile Innovation
  36. Selling Payments and Wealth Management Services
  37. Wanted: Apps for Clarification and Simplification
  38. How Useful Are Member Personas for Credit Union Marketing Teams?
  39. Learning Management Systems: What Credit Unions Should Consider
  40. 3 Ways Credit Unions Can Prepare for a Cyber Extortion
  41. Shifts and Trends to Know About in E-Learning
  42. What Borrowers Wished Credit Unions Knew
  43. The Win-Win Results of Prize-Linked Savings for Credit Unions and Members
  44. 3 Key Factors for Creating Good Content
  45. People Analytics: Bringing HR and Data Together
  46. Prioritizing the Credit Union Employee Experience
  47. Cut Through the Noise and Deliver Value Members Want
  48. The Credit Union Advantage for the Digital Customer
  49. Popular DDoS Mitigation Methods in 2019
  50. 4 Steps to Increased Social Media ROI
  51. Is Your CMS the Right Fit?
  52. Do You Know Why Payday Loans Are Used so Much?
  53. What the C-Suite Wants out of Social Media
  54. How Credit Unions Can Formalize the Branding Process
  55. Making Sure You Have the Right Leaders in the Right Seats
  56. Keeping Up with Digital Lending Convenience
  57. Just How Distracted Are Consumers?
  58. A Simple Way to Unify Your Marketing Efforts
  59. How to Generate Content with Fewer Resources
  60. How to Identify What You Want in an ESS
  61. Are You Missing Out on the Power of Video?
  62. Empowering Employees and HR with the Latest Technology
  63. The Dream Team for Successful Online Customer Interactions
  64. 2 Big FinTech Goals for Credit Unions
  65. Are Your Landing Pages up to Snuff?
  66. How Credit Unions Can Embrace Storytelling in Marketing
  67. Credit Unions Can Complete with Shadow Banks
  68. 6 Factors for Choosing the Right ESS System
  69. Caution: Customers Don't Always Ask for What They Want
  70. If Your Site Isn't Mobile Optimized, You're Losing Out
  71. 5 Guideposts to Measure Your Brand Promise Against
  72. Protect Your Credit Union with a Website Accessibility Response Plan
  73. Preparing a Transparency Communication Plan
  74. 3 Factors Impacting Credit Union Compensation Plans
  75. Don't Underestimate the Power of Financial Education
  76. Preparing for Compensation Transparency
  77. Don't Undervalue Your Brand Promise
  78. The Quickest Way to Understand Enterprise Risk Management (ERM)
  79. Leveraging Social Media for Member Engagement
  80. Finding the Best Platform for HR Technology
  81. The Role of HR and Hiring Managers in the Candidate Experience
  82. Why You Should Invest in an Applicant Tracking System
  83. Content, Tools, and Channels to Capture Consumer Attention
  84. Underestimate the Onboarding Process at Your Peril
  85. The Best Compliance Training with New Topics You Will Need
  86. 3 Brand Promises Credit Unions Can Learn From
  87. Identifying Marijuana-Related Businesses
  88. Serving the Underbanked and Millennials
  89. Why You Need ERM in Your Strategic Planning
  90. Enterprise Risk Management — Where to Start
  91. A Content Management System Will Make Your Life Easier
  92. The Quickest Way to Find the Right (and Safest) CMS
  93. Bankers associations’ opposition to mergers does a disservice to member banks and to consumers

Related Trends

  1. The Quickest Way to Find the Right (and Safest) CMS
  2. A Content Management System Will Make Your Life Easier
  3. Credit Unions Could Replace Predatory Lenders
  4. 5 Things Credit Unions Can Learn from Cyber Attacks
  5. Do You Know Why Payday Loans Are Used so Much?
  6. What Borrowers Wished Credit Unions Knew
  7. Serving the Underbanked and Millennials
  8. Should You Still Be Concerned about ADA Website Compliance?
  9. Don't Get Snagged on ADA Compliance Requirements
  10. Consumer Appetites in Mobile Innovation
  11. The Quest for a One-Stop Shop Financial App
  12. Wanted: Apps for Clarification and Simplification
  13. What Credit Unions Should Do with Ambiguous ADA Standards
  14. What Is a DDoS Attack and Why Should Credit Unions Be Concerned?
  15. Building a Website with the User in Mind
  16. 3 Ways Credit Unions Can Prepare for a Cyber Extortion
  17. 3 Website Design Trends for 2019
  18. The Credit Union Advantage for the Digital Customer
  19. Optimizing Websites for Voice: What You Need to Know
  20. Is Your CMS the Right Fit?
  21. 2 Big FinTech Goals for Credit Unions
  22. Caution: Customers Don't Always Ask for What They Want
  23. The Website Audit Your Credit Union Needs
  24. Keeping Up with Digital Lending Convenience
  25. Protect Your Credit Union with a Website Accessibility Response Plan
  26. Credit Unions Can Complete with Shadow Banks
  27. Popular DDoS Mitigation Methods in 2019

Industry insights
to your inbox!

Subscribe