Skip to main content

What You Can Do About Ransomware Threat

By Ray Birch

RANCHO CUCAMONGA, Calif.—In the wake of a ransomware attack that shut down 60 credit unions, cyber security experts are warning many CUs are just one compromised key supplier away from being shut down, too. It’s a growing threat they say can have numerous  downstream effects on many organizations.

No institution is immune, and the best line of defense remains educating employees on how to avoid making mistakes that place a credit union, CUSO or vendor right into the hands of criminals.

“Co-op Solutions views ransomware attacks as an industry-wide threat that will continue for the foreseeable future with two main threat areas of concern,” said Christopher Williams, deputy chief information security officer at Co-op.

Feature Ransomware

The two areas of concern, according to Williams, are Ransomware-as-a-Service (RaaS) models and cyber supply chain threats.

A Proliferating Model

“With the RaaS model, an attacker doesn’t need to develop their own ransomware capability to turn a system compromise into a ransomware attack. This model has proliferated the cybercrime world. The model can quickly incorporate new tactics, techniques and procedures (TTPs) to be used by a wide range of threat actors,” he said. “The second threat area is the cyber supply chain. Attacks against key suppliers have a ripple effect across the supplier’s client-base. Many companies are one compromised key supplier away from a business crippling service impact.”

How to Respond

wlliams

Christopher Williams

Given that growing threat, what should credit unions be doing now?

“Credit unions should continue to educate their employees on the risk of ransomware attacks and the methods used to gain initial unauthorized access,” Williams advised. “Phishing remains a top attack vector, and social engineering of the service or help desk to compromise user credentials is on the rise.”

Credit unions also need to have robust backup capability—restoring to a clean and non-infected copy of system data, Williams added.

“That can help with the recovery of a ransomware attack,” he said. “In addition, they should become active members of the local area U.S. Secret Service Electronic Crimes Task Forces (ECTF) or Financial Crimes Task Forces (FCTF), which can provide advice in preventing attacks and support during suspected or actual attacks. In addition, monitor threat intelligence type sources for indications of attacks against their organizations or their vendors and new TTPs being used by attackers.

“Finally, practice the incident response to a ransomware attack. Drilling the panic and unknowns out of the process will help increase the chance of a successful recovery if an actual attack occurs,” he said.

The Good News? CUs Not Alone

Jim Stickley, CEO of Stickley on Security, said credit unions are one of many industries being affected by ransomware.

“I am not certain that ransomware is specific (to any organization), and credit unions and fintechs are just part of the much bigger picture of the state of ransomware in general,” said Stickley, who is also CEO of Troy, Mich.-based Mahalo Technologies. “Most people have this idea that cybercriminals are targeting a specific business type. While it’s true that healthcare and education are targeted directly and we also see banks and credit unions get targeted, when it comes to more general business, such as fintechs, we have not seen that level of direct attacks. Instead, what you see is employees who fall victim to phishing attacks or malicious websites.”

‘Average’ People, Not an Average Website

Stickley said when those incidents are investigated, what’s all-to-often discovered is that it was a phishing email that had been sent to hundreds of thousands of organizations that is the culprit, often in in the guise of te malicious websites that have been promoted though malvertising to “average” people. 

stickleyJim

Jim Stickley

“In these cases it’s just the low-hanging fruit. If an employee clicks the link, opens the attachment or browses to malicious sites, they open the door to the criminals. The criminals really don’t care if that organization is fintech, credit union or other business segment,” said Stickley, adding adding he does not believe the recent attack that hit DP vendor Fedcomp and than affected 60 credit unions had any company or credit union as a specific target.

“For criminals, there is little need to put a direct focus on fintech at this time since just about every business entity has similar value and so they will continue to cast a very wide net and whoever gets caught up will be their next victim,” he said.

Advice Shared

For credit unions looking to take some practical steps to defend themselves from ransomware, TruStage is sharing some strategies.

“Responding to the immediate threat of a ransomware attack or any cyber incident in a timely manner is critical to minimize data loss, contain the threat and restore operations,” Chris Gill, TruStage senior manager, risk and compliance solutions, told CUToday.info. “This is true even when that threat originates with a credit union’s third-party service provider or partner. Security incidents that do not originate at a credit union can still have a large impact on credit unions’ operations and reputation.”

Noting the affects such attacks have on member service, Gill added, “It reminds us all of the importance of having strong controls in place to minimize exposure, and to have a comprehensive business resiliency plan that is regularly tested and updated.”

Comments

Popular posts from this blog

What You Might Not Know About July 4th.

ATMs and the Windows 11 Software Upgrade

ATMs and the Windows 11 Software Upgrade Joe Woods, SVP Marketing & Partnerships Dolphin Debit Access There is a lot of information and misinformation circulating regarding the required Windows 11 software. Windows 10 is sunsetting and therefore Windows 11 is now the new operating system of choice moving forward. Many of us may not realize, however, that there are multiple versions of Windows 10. These different versions have different sunset dates, different options for extended service plans as well as different applications. Your ATM’s will be required to upgrade to Windows 11 at some point in the near future. However, that future could be four months away or forty months away. And if costs are similar to the Windows 10 upgrade, you could be spending $5,000-$14,000 per ATM for the upgrade.   To figure out what is best for you, you need to examine your ATM fleet. Several factors need to be considered for this change from Win10 to Win11. Making a rash decision to per...

Sunday Reading - Underwater Kingdoms

Underwater Kingdoms   Coral reefs are underwater ecosystems made from the skeletons of hard coral colonies. Each colony is composed of multiple polyps called corals—animals with tentacles around a mouth at one end and sac-like bodies at the other that attach to a surface and secrete calcium carbonate for protection. Over thousands of years, these secretions accumulate to form habitats that support about 25% of marine species, even though they cover less than 1% of the ocean floor. >  The first coral reefs formed hundreds of millions of years ago. ( More , w/video) > Coral polyps are tiny animals whose mouths both consume food and expel waste. ( More ) > See how coral reefs get their color. ( More ) Known as the "rainforest of the seas," coral reefs are found in tropical and subtropical waters of more than 100 countries, wi...

Sunday Reading - We Hold These Truths to Be Self-Evident

We Hold These Truths to Be Self-Evident .  The Declaration of Independence is the founding document that formally announced the American Colonies' break from British rule. Adopted on July 4, 1776, it laid the philosophical and moral foundation for American self-governance, asserting that individuals possess inherent rights and that governments must be accountable to the people. While it didn't create a government or legal framework, the Declaration marked the birth of the United States as a sovereign nation. >  Hear why the Continental Congress decided to declare independence, how the text took shape...

Stern Advice: Financial predictions for 2012 | Reuters

Stern Advice: Financial predictions for 2012 | Reuters : " A lot of people are predicting more of the same for 2012: Another year of stock market volatility, high unemployment, banking industry upheaval, weak housing and more talk about Facebook, mobile commerce, 401(k) plans and taxes. But maybe that's just because it's hard to envision change." 'via Blog this'

Ramp Up Cyber Spending As AI Reshapes Industry Priorities

NEW YORK—Artificial intelligence is rapidly becoming the defining force shaping banking strategy, with 80% of banking executives now expecting AI to significantly disrupt their business and operating models within the next three to five years, according to KPMG's 2026 Banking Technology Survey. The survey of 200 U.S. banking executives found institutions are responding by accelerating investments in cybersecurity, payments modernization and technology-driven acquisitions. "AI, payments modernization, cybersecurity, and tech-driven M&A are no longer separate agendas," said Peter Torrente, KPMG's U.S. Banking Sector Leader, who said banks are increasingly being challenged to keep pace across technology, risk and growth simultaneously. Cybersecurity remains a top concern. More than three-quarters (76%) of banking leaders reported an increase in cyberattacks over the past year, while 92% said they are boosting cybersecurity budgets. In addition, 84% are increasing cyb...

What Credit Unions Can—And Can't—Do With New Trump Accounts

07/02/2026 09:36 am         WASHINGTON--With Trump Accounts set to officially launch July 4, America’s Credit Unions updated its frequently asked questions document to clarify the role of credit unions now and in the future. Credit unions do not have a role to play yet, as the Treasury has not announced steps to transition accounts from initial provider BNY Mellon to other authorized institutions, ACU noted. Trump Accounts are tax-deferred accounts that can be established on behalf of a child under the age of 18. Account contributions begin after July 4, with contributions up to $5,000 a year allowed. Created by H.R. 1, the law also established a pilot program to deposit a one-time $1,000 grant into accounts of children born between Jan. 1, 2025 and Dec. 31, 2028. Once the child turns 18, the account funds are available for educational expenses, home ownership, entrepreneurship, and other designated purposes. Once guidance is available from Treasury, credit unions ...

White Paper from WOCCU Examines How Stablecoins are Reshaping Financial Infrastructure

WASHINGTON– World Council of Credit Unions (WOCCU) has released a new white paper that examines how stablecoins are reshaping the financial infrastructure that credit unions and other cooperative financial institutions rely on to serve their members.  According to WOCCU, the white paper, How Digital Money Is Impacting Credit Unions, Part 1: Focus on Stablecoins , is the first in a planned three-part series exploring how emerging forms of digital money are affecting the global credit union movement.  “The report begins by noting that stablecoins are no longer a niche fintech development, but part of a broader structural shift in how money is stored, moved and regulated,” WOCCU explained. “As commercial banks, payment networks, technology firms and retailers build stablecoin offerings or integrate stablecoin rails into their platforms, credit unions must consider how these changes could affect deposits, payments, member relationships and long-term institutional relevance.” For ...

Half of Credit Union & Bank CEOs are Now Older Than 65, Up From 20% Two Decades

NEW YORK — At a time when there are some generational changes in credit union leadership taking place, a new analysis has found the nation’s bank CEOs are getting older, with half of the chief executives leading banks now older than 65, compared with fewer than 20% two decades ago. The KBW Bank Index from Truist Securities found that the median age of bank CEOs has increased by 10 years since the early 2000s, mirroring a broader aging trend among corporate leaders across the United States. However, bank executives remain older on average than their counterparts in many other industries, according to the analysis by Truist Securities Managing Director John McDonald and associates Peter Nicolo and John Manahan. One reason is tenure. Bank CEOs typically remain in their positions longer than executives in many other sectors. According to data from CristKolder Associates cited in the report, financial-services CEOs average nine years in the role, compared with 5.4 years in the energy secto...

The Federal Open Market Committee (FOMC) voted to raise the target range for federal funds

WASHINGTON–Although debate has increased recently over whether it should do so, as expected, the Fed has moved to raise interest rates. The Federal Open Market Committee (FOMC) voted to raise the target range for the federal funds rate to 2%-2.25% to 2.25%-2.50%. “Information received since the Federal Open Market Committee met in November indicates that the labor market has continued to strengthen and that economic activity has been rising at a strong rate,” said the FOMC in a statement following today’s meeting. “Job gains have been strong, on average, in recent months, and the unemployment rate has remained low. Household spending has continued to grow strongly, while growth of business fixed investment has moderated from its rapid pace earlier in the year. On a 12-month basis, both overall inflation and inflation for items other than food and energy remain near 2%. Indicators of longer-term inflation expectations are little changed, on balance.” Fed watchers have bee...