'Anatomy' Of A Ransomware Attack

By Ray Birch

BALTIMORE—Credit unions should brace for almost a month of major problems if they’re victimized by a ransomware attack, according to one cybersecurity expert, whose insights into the “anatomy” of a ransomware attack are coming at the same time nearly 60 CUs are currently trying to restore their own operations.

As those credit unions have come to learn, it takes on average 22 days to get through a ransomware attack and get to the other side, that same expert stated.

That information and additional insights were shared during a webinar hosted by cybersecurity firm Think/Stack, which that was held to provide CUs with insights and answers regarding ransomware in light of the recent attack that that continues to affect those five-dozen CUs hit by an attack on a common vendor.

“We're all being targeted, and this (recent attack) could have happened to anybody,” said Cal Bowman, Think/Stack VP of client innovation and strategy, referring to an attack on the CUSO Ongoing Operations that in turn affected the data processor Fedcomp. “So, it's really important we all recognize that every one of you here has vendors, has partners that are vulnerable. Therefore, the question is, are you ready to respond to any type of large-scale event that really can cripple your organization?”

What’s Been Learned

Bowman said a goal of the webinar, which was attended by more than 300 credit unions, was to walk through what happens during a ransomware attack and share what his company has learned supporting CUs that have been victimized by such attacks.

Think/Stack VP of Security and Risk Jennifer Anthony said when a ransomware attack occurs in an organization it frequently creates the “fog of war.”

“What you will see in a generalized ransomware attack is the tactical and technical pieces that begin to happen over the first couple days,” Anthony explained.

But at the same time a credit union is seeking to find a tactical path through that fog, the emotional side of the battle must be given attention, as employees struggle to get the CU operating again, Anthony said.

“There is confusion and concern,” she said. “Maybe someone can't get on to a system they previously could access. Maybe there's a service that's not working and folks are starting to feel confused about what's going on. All this is happening as your technical teams in the background are beginning to quickly investigate the source of the problem.”

Anthony emphasized a credit union involved in a ransomware attack should be prepared to spend at least three weeks dealing with it.

The Internal Threat

As CUToday.info has reported and as credit unions are frequently warned, ransomware attacks often occur due to an employee opening the door by falling for a phishing scam or downloading a file they believe to be safe.

“This is a function of human performance,” she noted. “We all begin to look for who's at fault, who did something they were not supposed to do that caused this. What we tell organizations is that when you get caught in that space, you should not spend a lot of time trying to figure out who to point the finger at, (but instead spend) time trying to figure out how to get out of the situation.”

Not surprisingly, Anthony described the working environment following an attack as “chaotic.”

‘Everyone’s Scared’

“Everyone's scared. We're not sure what's going on and maybe we have members who are really angry. Maybe we have board members that are really angry, or leaders that are really angry,” she said. “The goal at this point is to figure out how to get past it. We'll figure out who's to blame or what's to blame, or how we can prevent it in the future at a later point.”

It's an issue credit unions should take seriously, according to Anthony, who said there is a growing ransomware threat to the not-for-profit co-ops.

“In the last seven months we worked with six credit unions who individually found themselves in this space,” she said. “This is something that's happening on a regular basis, across all industries.”

Anthony reminded that as the credit union moves through a ransomware incident many employees will be feelin remorse and concern over fellow workers in IT who are working feverishly to restore operations.

“They feel like they are at fault for what is going on, and that is a very difficult place to be,” she said. “The technical teams are trying to figure out how to remediate the situation. I've been in organizations where technical teams are working nonstop, around the clock, for days and days. The credit union then is trying to figure out how do we feed people? How are we going to send people home to sleep so they can come back and be effective—because you are in this fight for a long time and there is a lot of pressure on everyone.”

Like Being in a Battle

Anthony likened the experience to those who fight in a war.

“I spent 20 years in the in the United States military, and this is a roller coaster akin to what a service member might experience in their daily lives—and this can be traumatic,” she said.

She urged credit unions to consider where they are vulnerable.

“We know 93% of ransomware attacks are in Windows-based environment,” she said. “If we listed them in order of frequency of occurrence, how they occur, here's what they would be: Number one is e-mail phishing campaigns. Number two would be (remote desktop protocol or RDP) vulnerabilities. And number three would be software vulnerabilities.”

The Long-Term Affects

While those 22 days are the typical time from attack to restoration of service, Anthony said the repercussions are felt for many months afterward.

“With the recovery efforts and return to operation, the average time for an organization to move through that is about nine months,” she said. “The attack is not the only thing organizations have to grapple with; there are follow-on impacts that are significant. If you're an organization that has about 500 employees, your average recovery cost is going to be about $3.1 million. If an attacker is successful in extracting information from your environment, you'll have to deal with the impacts of that.”

Steps to Take

What steps should credit unions take today to prevent an attack? CUToday.info will share those in a follow-up report.

Comments

Why Auto Lending Is Starting To Stand Out As A Real Threat To CUs

By Ray Birch MILWAUKEE—Auto lending is emerging as one of the biggest areas of risk for credit unions, even as the broader U.S. economy continues to perform better than many expected, according to Bill Handel, chief economist at Raddon, a Fiserv company. Delinquency trends in auto portfolios are now approaching levels last seen during the Great Financial Crisis, Handel said, driven by a combination of high vehicle prices, elevated interest rates and increasing financial pressure on lower-income consumers. “There’s probably still a lot of risk in the auto portfolios,” Handel said. “Our numbers in terms of delinquency behavior in the United States are now rivaling what they were during the Great Financial Crisis.” Economy Holding Up Better Than Expected Despite those pockets of risk, Handel said the broader economy remains surprisingly resilient. “If you look at the U.S. economy, it’s actually performing quite well—probably better than most people would have anticipated,” he said. ...

Read Complete Article HERE>»

When Cooperation Turns To Competition: A Turning Point For The Firefighter Credit Union Movement

By Grant Sheehan For decades, firefighter credit unions have stood as a model of what cooperative finance is meant to be—institutions built not to compete ruthlessly, but to serve a shared mission: supporting the financial well-being of those who risk their lives in service to others. That’s what makes the recent actions of Firefighter First Credit Union so concerning. Firefighter First FCU was not just another participant; it was a founding member of the National Council of Firefighter Credit Unions (NCOFCU). It helped shape the very principles of collaboration, mutual respect, and non-encroachment that have long defined our community. Those principles weren’t accidental; they were intentional safeguards to ensure that firefighter-focused credit unions could grow together, not at each other’s expense. But something has changed. Firefighter First FCU’s decision to pursue a nationwide charter marks a clear shift in direction—from cooperation to direct competition. This isn’t simpl...

Read Complete Article HERE>»

Small Credit Unions Don’t Lack Representation—They Lack Board Education

By Grant Sheehan Let’s be clear— representation for small credit unions is not something new that suddenly needs to be invented. For more than 150 years in Europe and 115 years in the U.S., many of us—along with numerous trade groups representing postal workers, schools, hospitals, the military, first responders, electricians, welders, auto workers, and many other sponsor employee groups—have been actively representing and supporting small credit unions. The mission has always been the same: protect these institutions and ensure they have a voice. The real challenge facing small credit unions has never been a lack of organizations claiming to represent them. The challenge has been engagement and education. Many small credit unions operate with extremely limited resources. Their boards are made up of volunteers who already have full-time careers. Even when scholarships, training opportunities, and conferences are offered, the realities of travel costs, staffing shortages, op...

Read Complete Article HERE>»

With Graham Signaling New Budget Bill, Credit Unions Brace For Tax Debate

By Ray Birch WASHINGTON— Senate Budget Committee Chairman Lindsey Graham’s comments Wednesday that Republicans will “expeditiously move toward creating a second budget reconciliation bill” are giving new shape to what had been a speculative discussion in Washington—and prompting renewed attention within the credit union industry to whether the movement’s federal tax exemption could again surface as lawmakers look for possible offsets. In a post on X, Graham said that after consulting with President Trump, his team and Senate Majority Leader John Thune, the Senate Budget Committee will move quickly on a second reconciliation package focused on “adequate funding to secure our homeland” and support for the military. The remarks are notable because they offer one of the clearest indications yet that a second fast-track budget measure—previously discussed but far from certain—may now be gaining traction. CUToday.info on Wednesday reached out to House Budget Committee Chairman Jodey Arringto...

Read Complete Article HERE>»

Sunday Reading - How were the National Parks started?

America's 'Best Idea' How were the National Parks started? America's National Park System includes roughly 85 million acres of US territory, equal to the size of Germany, set aside by federal law for preservation. There are 63 areas officially designated as national parks—including the Grand Canyon, the Great Smoky Mountains, and Acadia—and more than 400 additional smaller units ( see map ). In 1872, Yellowstone was established as the first national park dedicated to public enjoyment and recreation, though its foundation also displaced several Native American tribes . By 1916, the growing system required the creation of the National Park Service to preserve its lands for future generations. Eventually, hunting and logging were banned in the parks, though regulated extractive activity is still permitted in nati...

Read Complete Article HERE>»

James Hunter, Executive Director of Credit Union Development for New Orleans Firemen’s CU, knows too well how expensive it is to be poor.

NEW ORLEANS FIREMEN’S FCU 􀀁 METAIRIE, L A passion for empowerment James Hunter knows too well how expensive it is to be poor. It’s what he sees every day as mortgage director and executive director of credit union development for $182 million asset New Orleans Firemen’s Federal Credit Union, Metairie, La., and executive director of The Faith Fund, a nonprofit partnership that seeks to provide a financial hand-up to the undeserved. It’s what inspires him to come to work every day and drives his passion of empowering people and setting them on the path to financial security. “Too many people are too far away from the starting line,” Hunter says. “Payday loans are a big business in Louisiana. Exorbitant fees and interest from payday loans drain more than a quarter of a billion dollars a year. Baton Rouge supports one of the top three pay-day loan markets in the U.S.” The Faith Fund was formed to counteract that. It’s a unique cooperative relationship between like-minded busi...

Read Complete Article HERE>»

Lifesaving Companion Dog Takes On New Role With Injured Firefighter « CBS New York

Lifesaving Companion Dog Takes On New Role With Injured Firefighter « CBS New York : "NEW YORK (CBSNewYork) — A badly injured New York firefighter received a companion dog whose already saved people’s lives from fire. As CBS2’s Dave Carlin reported, disabled firefighter Tom Prin beamed as he was officially presented with his new canine companion Halona inside of a packed ceremony in Suffolk County. The former firefighter was one of 15 people receiving their canine companions. Prin was chosen because of what he’s been through — after fracturing his neck and back while responding to a Brooklyn fire. “When I was going from the third to fourth floor, the steps gave out and I fell through the fire escape,” he said. Prin has endured five spinal surgeries, but the Holtsville man will now be comforted by Halona who has quite the lifesaving resume herself." Click HERE to read full story and see video 'via Blog this'

Read Complete Article HERE>»

What Trump’s ‘one big beautiful’ tax-and-spending package means for your money!

Trump’s megabill will bring sweeping changes for household finances. President Donald Trump signed his “one big beautiful” tax-and-spending package on July 4 — legislation that will bring sweeping changes to Americans’ finances. After the Senate passed its version on July 1, the House Republicans on July 3 voted to approve the multi-trillion-dollar domestic policy legislation and send it to Trump’s desk for signature. The final bill makes permanent Trump’s 2017 tax cuts while adding new relief, including a senior “bonus” to offset Social Security taxes and a bigger state and local tax deduction . The plan also has tax breaks for tip income , overtime pay and auto loans , among other provisions. The GOP’s marquee legislation will also enact deep spending cuts to social safety net programs such as Medicaid and food stamp benefits, end tax credits tied to clean energy an...

Read Complete Article HERE>»

Boston Firefighters Credit Union can open membership to police officers

By Deirdre Fernandes Globe Staff February 12, 2015 The Boston Firefighters Credit Union will be able to open its membership to the city’s police officers and other law enforcement officials, a Suffolk County Superior Court judge ruled Thursday. Judge Mitchell Kaplan rebuffed an attempt by the City of Boston Credit Union to stop the firefighters credit union from expanding its membership and taking away some of its most lucrative customers: police officers, who are among the highest-paid city employees. The turf battle between the two financial institutions grew unusually emotional as they accused each other of distorting facts and invoking the events surrounding the Boston Marathon bombing to promote their cause. David Cotney, the state’s commissioner of banks, had approved the firefighters’ expansion plans in November. But the city’s credit union filed a court injunction to stop it. In his decision dismissing the case, Judge Kaplan said the commissioner’s decision ...

Read Complete Article HERE>»

World's Happiest Country

World's Happiest Country Finland was named the world’s happiest country for the ninth consecutive year, the latest World Happiness Report revealed. Nordic countries—including Denmark, Iceland, Norway, and Sweden—also ranked in the top 10. Analysts attribute Finland’s joy factor to its wealth, social safety network, and high life expectancy, among factors. Afghanistan maintained its place as the world’s unhappiest country. The results were based on answers from roughly 100,000 people in 140 countries and territories. Respondents were asked to rank their life satisfaction on a scale of 0 to 10. Finnish respondents gave an average life satisfaction score of 7.7; Afghans answered 1.4. The US, in 23rd place, reported an average score of 6.8. Explore rankings here . The report's authors cautioned this year that social media use is driving population-level drops in reported well-being among adolescents. Young English...

Read Complete Article HERE>»

First-responder Credit Union Newsroom

Search This Blog