The Federal Financial Institutions Examination Council (FFIEC) on behalf of its members issued a statement to notify financial institutions of the growing trend of cyber attacks for the purpose of obtaining online credentials for theft, fraud, or business disruption. These attacks include the users’ credentials, such as passwords, user names and e-mail addresses, as well as other forms of identification. The FFIEC is urging financial institutions to address this threat by reviewing their risk management and controls over information technology networks.
The FFIEC also issued a joint statement to notify financial institutions of the threat of cyber attacks involving destructive malware and to recommend risk mitigation techniques.
Read more on compromised credentials and destructive malware.