Cyber-Related Sanctions

The OFAC list is being updated to include persons engaging in significant malicious cyber-enabled activities. These entries on the OFAC list will include the identifier “[CYBER]”. Property in accounts held by listed persons should be placed in a blocked account, and transfers involving listed persons should be refused – similar to other entities on the OFAC list. This implements Executive … Read More

FDIC Cybersecurity Resources

The FDIC provides cybersecurity awareness resources for financial institutions that credit unions can use to assess their risks and responses to threats. Within these, is a Community Bank Cyber Exercise that includes videos depicting unique security scenarios. The videos provide discussion topics on operational risk issues and the potential impact of information technology disruptions on common banking functions. The series … Read More

Joint Statement on Cyber Attacks Involving Extortion

The FFIEC issued a Statement notifying financial institutions of the increasing frequency and severity of cyber attacks involving extortion. The Statement does not contain any new regulatory expectations. Credit unions should develop and implement effective programs to ensure they are able to identify, protect, detect, respond to, and recover from these types of attacks. The Statement recommends that financial institutions … Read More