Skip to main content

'Anatomy' Of A Ransomware Attack

By Ray Birch

BALTIMORE—Credit unions should brace for almost a month of major problems if they’re victimized by a ransomware attack, according to one cybersecurity expert, whose insights into the “anatomy” of a ransomware attack are coming at the same time nearly 60 CUs are currently trying to restore their own operations.

As those credit unions have come to learn, it takes on average 22 days to get through a ransomware attack and get to the other side, that same expert stated.

That information and additional insights were shared during a webinar hosted by cybersecurity firm Think/Stack, which that was held to provide CUs with insights and answers regarding ransomware in light of the recent attack that that continues to affect those five-dozen CUs hit by an attack on a common vendor.

Feature Ransomware Webinar 1

“We're all being targeted, and this (recent attack) could have happened to anybody,” said Cal Bowman, Think/Stack VP of client innovation and strategy, referring to an attack on the CUSO Ongoing Operations that in turn affected the data processor Fedcomp. “So, it's really important we all recognize that every one of you here has vendors, has partners that are vulnerable. Therefore, the question is, are you ready to respond to any type of large-scale event that really can cripple your organization?”

What’s Been Learned

bowman

Bowman said a goal of the webinar, which was attended by more than 300 credit unions, was to walk through what happens during a ransomware attack and share what his company has learned supporting CUs that have been victimized by such attacks.

Think/Stack VP of Security and Risk Jennifer Anthony said when a ransomware attack occurs in an organization it frequently creates the “fog of war.”

“What you will see in a generalized ransomware attack is the tactical and technical pieces that begin to happen over the first couple days,” Anthony explained.

But at the same time a credit union is seeking to find a tactical path through that fog, the emotional side of the battle must be given attention, as employees struggle to get the CU operating again, Anthony said.

“There is confusion and concern,” she said. “Maybe someone can't get on to a system they previously could access. Maybe there's a service that's not working and folks are starting to feel confused about what's going on. All this is happening as your technical teams in the background are beginning to quickly investigate the source of the problem.”

Anthony emphasized a credit union involved in a ransomware attack should be prepared to spend at least three weeks dealing with it.  

The Internal Threat

As CUToday.info has reported and as credit unions are frequently warned, ransomware attacks often occur due to an employee opening the door by falling for a phishing scam or downloading a file they believe to be safe.

“This is a function of human performance,” she noted. “We all begin to look for who's at fault, who did something they were not supposed to do that caused this. What we tell organizations is that when you get caught in that space, you should not spend a lot of time trying to figure out who to point the finger at, (but instead spend) time trying to figure out how to get out of the situation.”

Not surprisingly, Anthony described the working environment following an attack as “chaotic.”

‘Everyone’s Scared’

“Everyone's scared. We're not sure what's going on and maybe we have members who are really angry. Maybe we have board members that are really angry, or leaders that are really angry,” she said. “The goal at this point is to figure out how to get past it. We'll figure out who's to blame or what's to blame, or how we can prevent it in the future at a later point.”

It's an issue credit unions should take seriously, according to Anthony, who said there is a growing ransomware threat to the not-for-profit co-ops.

“In the last seven months we worked with six credit unions who individually found themselves in this space,” she said. “This is something that's happening on a regular basis, across all industries.”

Anthony reminded that as the credit union moves through a ransomware incident many employees will be feelin remorse and concern over fellow workers in IT who are working feverishly to restore operations.

“They feel like they are at fault for what is going on, and that is a very difficult place to be,” she said. “The technical teams are trying to figure out how to remediate the situation. I've been in organizations where technical teams are working nonstop, around the clock, for days and days. The credit union then is trying to figure out how do we feed people? How are we going to send people home to sleep so they can come back and be effective—because you are in this fight for a long time and there is a lot of pressure on everyone.”

Like Being in a Battle

Anthony likened the experience to those who fight in a war.

“I spent 20 years in the in the United States military, and this is a roller coaster akin to what a service member might experience in their daily lives—and this can be traumatic,” she said.

anthony

She urged credit unions to consider where they are vulnerable.  

“We know 93% of ransomware attacks are in Windows-based environment,” she said. “If we listed them in order of frequency of occurrence, how they occur, here's what they would be: Number one is e-mail phishing campaigns. Number two would be (remote desktop protocol or RDP) vulnerabilities. And number three would be software vulnerabilities.”

The Long-Term Affects

While those 22 days are the typical time from attack to restoration of service, Anthony said the repercussions are felt for many months afterward.

“With the recovery efforts and return to operation, the average time for an organization to move through that is about nine months,” she said. “The attack is not the only thing organizations have to grapple with; there are follow-on impacts that are significant. If you're an organization that has about 500 employees, your average recovery cost is going to be about $3.1 million. If an attacker is successful in extracting information from your environment, you'll have to deal with the impacts of that.”

Steps to Take

What steps should credit unions take today to prevent an attack? CUToday.info will share those in a follow-up report.

Comments

Post a Comment

Please no profanity or political comments.

Popular posts from this blog

World's Happiest Country

  World's Happiest Country   Finland was named the world’s happiest country for the ninth consecutive year, the latest World Happiness Report revealed. Nordic countries—including Denmark, Iceland, Norway, and Sweden—also ranked in the top 10.  Analysts attribute Finland’s joy factor to its wealth, social safety network, and high life expectancy, among factors. Afghanistan maintained its place as the world’s unhappiest country. The results were based on answers from roughly 100,000 people in 140 countries and territories. Respondents were asked to rank their life satisfaction on a scale of 0 to 10. Finnish respondents gave an average life satisfaction score of 7.7; Afghans answered 1.4. The US, in 23rd place, reported an average score of 6.8. Explore rankings here . The report's authors cautioned this year that social media use is driving population-level drops in reported well-being among adolescents. Young English...
Post a Comment
Read Complete Article HERE>»

James Hunter, Executive Director of Credit Union Development for New Orleans Firemen’s CU, knows too well how expensive it is to be poor.

  NEW ORLEANS FIREMEN’S FCU 􀀁 METAIRIE, L   A passion for empowerment James Hunter knows too well how expensive it is to be poor. It’s what he sees every day as mortgage director and executive director of credit union development for $182 million asset New Orleans Firemen’s Federal Credit Union, Metairie, La., and executive director of The Faith Fund, a nonprofit partnership that seeks to provide a financial hand-up to the undeserved. It’s what inspires him to come to work every day and drives his passion of empowering people and setting them on the path to financial security. “Too many people are too far away from the starting line,” Hunter says. “Payday loans are a big business in Louisiana. Exorbitant fees and interest from payday loans drain more than a quarter of a billion dollars a year. Baton Rouge supports one of the top three pay-day loan markets in the U.S.” The Faith Fund was formed to counteract that. It’s a unique cooperative relationship between like-minded busi...
Post a Comment
Read Complete Article HERE>»

Lifesaving Companion Dog Takes On New Role With Injured Firefighter « CBS New York

Lifesaving Companion Dog Takes On New Role With Injured Firefighter « CBS New York : "NEW YORK (CBSNewYork) — A badly injured New York firefighter received a companion dog whose already saved people’s lives from fire. As CBS2’s Dave Carlin reported, disabled firefighter Tom Prin beamed as he was officially presented with his new canine companion Halona inside of a packed ceremony in Suffolk County. The former firefighter was one of 15 people receiving their canine companions. Prin was chosen because of what he’s been through — after fracturing his neck and back while responding to a Brooklyn fire. “When I was going from the third to fourth floor, the steps gave out and I fell through the fire escape,” he said. Prin has endured five spinal surgeries, but the Holtsville man will now be comforted by Halona who has quite the lifesaving resume herself." Click HERE to read full story and see video 'via Blog this'
Post a Comment
Read Complete Article HERE>»

What Trump’s ‘one big beautiful’ tax-and-spending package means for your money!

  Trump’s megabill will bring sweeping changes for household finances. President  Donald Trump  signed his “one big beautiful” tax-and-spending package on July 4 — legislation that will bring sweeping changes to Americans’ finances.  After the  Senate passed its version  on July 1, the House Republicans on July 3  voted to approve  the multi-trillion-dollar domestic policy legislation and send it to Trump’s desk for signature. The final bill makes permanent Trump’s  2017 tax cuts  while adding new relief, including a senior “bonus” to  offset Social Security taxes  and a  bigger state and local tax deduction . The plan also has tax breaks for  tip income , overtime pay and  auto loans , among other provisions.  The GOP’s marquee legislation will also enact deep spending cuts to social safety net programs such as  Medicaid  and food stamp benefits,  end tax credits tied to clean energy  an...
Post a Comment
Read Complete Article HERE>»

Boston Firefighters Credit Union can open membership to police officers

  By Deirdre Fernandes Globe Staff  February 12, 2015 The Boston Firefighters Credit Union will be able to open its membership to the city’s police officers and other law enforcement officials, a Suffolk County Superior Court judge ruled Thursday. Judge Mitchell Kaplan rebuffed an attempt by the City of Boston Credit Union to stop the firefighters credit union from expanding its membership and taking away some of its most lucrative customers: police officers, who are among the highest-paid city employees. The turf battle between the two financial institutions grew unusually emotional as they accused each other of distorting facts and invoking the events surrounding the Boston Marathon bombing to promote their cause. David Cotney, the state’s commissioner of banks, had approved the firefighters’ expansion plans in November. But the city’s credit union filed a court injunction to stop it. In his decision dismissing the case, Judge Kaplan said the commissioner’s decision ...
Post a Comment
Read Complete Article HERE>»

Dayton Firefighters FCU Taps New CEO

By Peter Strozniak CU Times Thomas Newton was appointed the new president/CEO of the $50 million Dayton Firefighters Federal Credit Union . Newton will replace Charles Passenthal who will retire in mid-October, according to a Sept. 18 prepared statement from the board of directors of the Dayton, Ohio-based cooperative. “We are very excited that Thomas is joining our team here at Dayton Firefighters Federal Credit Union,” Thomas Scott, board chair, said. “His dedication and proven track record will make him a strong leader for our credit union. We are looking forward to what he can bring to the credit union as president/CEO.” Newton worked as SVP for member services at the $379 million Universal 1 Credit Union in Dayton. He also served as EVP of operations of the $87 million FirstDay Financial Federal Credit Union in Dayton, which merged with the $313 million River Valley Credit Union in Miamisburg, Ohio, April 1. Newton has a Bachelor of Science degree from the University of Phoeni...
Post a Comment
Read Complete Article HERE>»

Average 30-Year Fixed-Rate Mortgage At 6.22%

MCLEAN, Va.--The 30-year fixed-rate mortgage inched up this past week, averaging 6.22%, Freddie Mac reported. "The 30-year fixed-rate mortgage edged up this week to 6.22% but remains nearly half a percentage point lower than the same time last year," said Sam Khater, Freddie Mac's chief economist. "Potential homebuyers are poised for a more affordable spring homebuying season than last with the market experiencing improvements in purchase applications and pending home sales.” The 30-year FRM averaged 6.22% as of March 19, up from last week when it averaged 6.11%. A year ago at this time, the 30-year FRM averaged 6.67%. The 15-year FRM averaged 5.54%, up from last week when it averaged 5.50%. A year ago at this time, the 15-year FRM averaged 5.83%. ================================================= Remember, you're not alone with  NCOFCU.org Join/Upgrade Check out some of NCOFCU's additional features: Annual Conference First Responder Credit Union Academy Finan...
Post a Comment
Read Complete Article HERE>»

Setting & Meeting Your 2018 GOALS - Dan Berger

A new year provides a fresh start and a clean slate and is often the time when resolutions and goals are established. If you are in the process of setting new goals – as I am – know that with an open mindset, achievement of all your goals is possible. "Goals provide clarity," writes Mareo McCracken, revenue leader of Movemedical. He explains that goal setting is about "combining the fortitude to achieve with clear thinking while making sense of your purpose and defining your ability to deliver value to others." However, goal setting and achieving also requires faith – or believing and hoping in something you can't see yet or that doesn't quite exist. For many of us, the No. 1 reason we don't achieve our goals is that we lack belief in ourselves and our abilities. I encourage you to read an article by Inc.com contributor Benjamin Hardy  that details the importance of having this kind of faith in yourself and delivers some tips on how to achie...
Post a Comment
Read Complete Article HERE>»

Sunday Reading - How were the National Parks started?

  America's 'Best Idea'       How were the National Parks started? America's National Park System includes roughly 85 million acres of US territory, equal to the size of Germany, set aside by federal law for preservation. There are 63 areas officially designated as national parks—including the Grand Canyon, the Great Smoky Mountains, and Acadia—and more than 400 additional smaller units ( see map ). In 1872, Yellowstone was established   as the first national park dedicated to public enjoyment and recreation, though its foundation also  displaced several Native American tribes . By 1916, the growing system required the creation of the National Park Service to preserve its lands for future generations. Eventually, hunting and logging were banned in the parks, though regulated extractive activity is still permitted in nati...
Post a Comment
Read Complete Article HERE>»