Skip to main content

What You Can Do About Ransomware Threat

By Ray Birch

RANCHO CUCAMONGA, Calif.—In the wake of a ransomware attack that shut down 60 credit unions, cyber security experts are warning many CUs are just one compromised key supplier away from being shut down, too. It’s a growing threat they say can have numerous  downstream effects on many organizations.

No institution is immune, and the best line of defense remains educating employees on how to avoid making mistakes that place a credit union, CUSO or vendor right into the hands of criminals.

“Co-op Solutions views ransomware attacks as an industry-wide threat that will continue for the foreseeable future with two main threat areas of concern,” said Christopher Williams, deputy chief information security officer at Co-op.

Feature Ransomware

The two areas of concern, according to Williams, are Ransomware-as-a-Service (RaaS) models and cyber supply chain threats.

A Proliferating Model

“With the RaaS model, an attacker doesn’t need to develop their own ransomware capability to turn a system compromise into a ransomware attack. This model has proliferated the cybercrime world. The model can quickly incorporate new tactics, techniques and procedures (TTPs) to be used by a wide range of threat actors,” he said. “The second threat area is the cyber supply chain. Attacks against key suppliers have a ripple effect across the supplier’s client-base. Many companies are one compromised key supplier away from a business crippling service impact.”

How to Respond

wlliams

Christopher Williams

Given that growing threat, what should credit unions be doing now?

“Credit unions should continue to educate their employees on the risk of ransomware attacks and the methods used to gain initial unauthorized access,” Williams advised. “Phishing remains a top attack vector, and social engineering of the service or help desk to compromise user credentials is on the rise.”

Credit unions also need to have robust backup capability—restoring to a clean and non-infected copy of system data, Williams added.

“That can help with the recovery of a ransomware attack,” he said. “In addition, they should become active members of the local area U.S. Secret Service Electronic Crimes Task Forces (ECTF) or Financial Crimes Task Forces (FCTF), which can provide advice in preventing attacks and support during suspected or actual attacks. In addition, monitor threat intelligence type sources for indications of attacks against their organizations or their vendors and new TTPs being used by attackers.

“Finally, practice the incident response to a ransomware attack. Drilling the panic and unknowns out of the process will help increase the chance of a successful recovery if an actual attack occurs,” he said.

The Good News? CUs Not Alone

Jim Stickley, CEO of Stickley on Security, said credit unions are one of many industries being affected by ransomware.

“I am not certain that ransomware is specific (to any organization), and credit unions and fintechs are just part of the much bigger picture of the state of ransomware in general,” said Stickley, who is also CEO of Troy, Mich.-based Mahalo Technologies. “Most people have this idea that cybercriminals are targeting a specific business type. While it’s true that healthcare and education are targeted directly and we also see banks and credit unions get targeted, when it comes to more general business, such as fintechs, we have not seen that level of direct attacks. Instead, what you see is employees who fall victim to phishing attacks or malicious websites.”

‘Average’ People, Not an Average Website

Stickley said when those incidents are investigated, what’s all-to-often discovered is that it was a phishing email that had been sent to hundreds of thousands of organizations that is the culprit, often in in the guise of te malicious websites that have been promoted though malvertising to “average” people. 

stickleyJim

Jim Stickley

“In these cases it’s just the low-hanging fruit. If an employee clicks the link, opens the attachment or browses to malicious sites, they open the door to the criminals. The criminals really don’t care if that organization is fintech, credit union or other business segment,” said Stickley, adding adding he does not believe the recent attack that hit DP vendor Fedcomp and than affected 60 credit unions had any company or credit union as a specific target.

“For criminals, there is little need to put a direct focus on fintech at this time since just about every business entity has similar value and so they will continue to cast a very wide net and whoever gets caught up will be their next victim,” he said.

Advice Shared

For credit unions looking to take some practical steps to defend themselves from ransomware, TruStage is sharing some strategies.

“Responding to the immediate threat of a ransomware attack or any cyber incident in a timely manner is critical to minimize data loss, contain the threat and restore operations,” Chris Gill, TruStage senior manager, risk and compliance solutions, told CUToday.info. “This is true even when that threat originates with a credit union’s third-party service provider or partner. Security incidents that do not originate at a credit union can still have a large impact on credit unions’ operations and reputation.”

Noting the affects such attacks have on member service, Gill added, “It reminds us all of the importance of having strong controls in place to minimize exposure, and to have a comprehensive business resiliency plan that is regularly tested and updated.”

Comments

Popular posts from this blog

NCOFCU Newsletter

The Bucket Coach is a financial advice book designed by Fire Services Credit Union, Tronto, Canada. and written exclusively for Fire Fighters It's a practical guide for household financial management, including investments, credit and mortgages, and retirement. Developed with contributions from Fire Fighters," NCOFCU Newsletter : " Kevin Connolly Chief Executive Officer    Fire Services Credit Union Phone: 416-440-1294 ext 301  Toll Free: 1-866-833-3285 E-mail:  kevin@firecreditunion.ca 1997 Avenue Rd Toronto, ON M5M 4A3 

Vought: ‘We’re Closing Down The CFPB’ — White House Budget Chief Says Agency Will Shut Down Within Months

  10/16/2025 09:03 am         WASHINGTON—White House Budget Director Russell Vought said Wednesday he plans to shut down the CFPB, PYMNTS reported. Russell Vought Speaking on  The Charlie Kirk Show , Vought said only a handful of employees remain at the CFPB’s Washington headquarters “while we close down the agency,” adding that he expects the process to be completed “within the next two or three months.” Vought’s remarks come amid a series of legal challenges targeting the Administration’s attempts to scale back or dismantle the CFPB. The Administration is currently facing lawsuits from a CFPB labor union and consumer advocacy groups, which argue that Trump lacks the authority to dismiss most of the Bureau’s staff or eliminate the agency altogether. On Wednesday, Vought repeated long-standing Republican criticisms that the CFPB has exceeded its authority and imposed unfair burdens on smaller financial institutions, PYMNTS noted. “All they want to do is wea...

AI Meets Retail: Walmart Lets Shoppers Buy Directly Through ChatGPT Using Sparky Instant Checkout

  10/15/2025 07:10 pm         BENTONVILLE, Ark.— Walmart is teaming up with OpenAI to introduce Sparky AI-driven shopping experiences that let customers and Sam’s Club members complete purchases directly through ChatGPT using its new Instant Checkout feature, PYMNTS reported. The collaboration broadens Walmart’s use of artificial intelligence across its retail ecosystem and underscores a wider industry move toward conversational, predictive commerce. Through the integration, shoppers can plan meals, restock household essentials, or discover new products simply by chatting with ChatGPT—while Walmart manages the entire transaction process seamlessly in the background, PYMNTS explained. “For many years now, eCommerce shopping experiences have consisted of a search bar and a long list of item responses,” Doug McMillon, president and CEO of Walmart Inc., stated in the PYMNTS report. “That is about to change. There is a native AI experience coming that is multi-media...

Understanding the Fed’s Balance Sheet

Chair Jerome H. Powell Monetary policy is more effective when the public understands what the Federal Reserve does and why. With that in mind, I hope to enhance understanding of one of the more arcane and technical aspects of monetary policy: the Federal Reserve's balance sheet. A colleague recently compared this topic to a trip to the dentist, but that comparison may be unfair—to dentists. 1 Today, I will discuss the essential role our balance sheet played during the pandemic, along with some lessons learned. I will then review our ample reserves implementation framework and the progress we have made toward normalizing the size of our balance sheet. I will conclude with some brief remarks on the economic outlook. Background on the Fed's Balance Sheet One of the primary purposes of a central bank is to provide the monetary foundation for the financial system and the broader economy. This foundation is made of central bank liabilities. On the Fed's balance sheet, the liabili...

For Banks and Credit Unions, AI Can Be Risky. But What’s Riskier? Falling Behind.

By Nicole Volpe,  Contributor at The Financial Brand For many bank and credit union leaders, Generative AI is mostly generating… anxiety. On one side is the fear of getting it wrong: exposing sensitive data, triggering a compliance breakdown, or wasting money on experiments that never scale. On the other looms something even more stress-inducing: watching competitors that have mastered AI serve their customers faster, cheaper, and with more personalization, while gaining market share in the process. Small and mid-sized financial institutions have long worked to offset competitive disadvantages versus larger and more-digital competitors, but AI threatens to widen the gap. Global and national players have the budgets and talent to embed AI deeply within their operations. Fintechs can pivot quickly and launch new digital experiences with fewer legacy constraints. Meanwhile, a majority of banks and credit unions sit in between — too small to match the giants’ scale, yet too complex and...