Over the last several years, at least 19 major banks have been hit by cyber attacks, according to a rash of published reports. For instance, a lot of nerves were rattled by a typical headline, “Cyber Attacks on US Banks Expose Computer Vulnerability,” appeared in Businessweek.
But this wasn’t a new security scare. For Citibank customers and millions of other consumers who enjoy the convenience of online banking, a headline was alarming. The Wall Street Journal headline: “FBI Probes Hack at Citibank – Russian Cyber Gang Suspected of Stealing Tens of Millions; Bank Denies Breach.”
The article on December 22, 2009 was the last we’ve seen about the Citibank situation. The reported multimillion dollar loss – a public relations nightmare for Citibank – was hushed up.
Many online security experts say online fraud is skyrocketing and there are FBI warnings about such fraud and related scams.
Such cybersecurity experts also cite another alarming trend – increasing sophistication in the methods used by cybercriminals.
About three weeks after the Citibank report, online-banking warnings were issued by the American Bankers Association and FBI (“Cybercrooks stalk small businesses that bank online”).
The warnings followed a wave of cybercrime afflicting small businesses, public-sector agencies, churches, schools, and other non-profits.
Many crooks have been using what are called “banking Trojans.” It’s true insurance companies offer insurance to reimburse business victims of cybercrime. But cybercrime is expensive.
A client once hired top security expert Stan Stahl, Ph.D., to investigate a $1 million loss from an online banking theft, and I reported the details in this column, “5 Safety Measures to Thwart Mounting Social-Network Attacks.” He says it resulted in an expensive legal struggle.
… cybersecurity experts also cite another alarming trend – increasing sophistication in the methods used by cybercriminals.
Despite what banks claim, mobile banking is dangerous.
Here’s the reason for the article: Identity fraud has escalated in smartphones and social media.
Personal online security tips
Here are some of his tips to enhance your personal online security:
- Review all privacy and policy information.
- Use unique and hard to guess login information.
- Protect your computer.
- Check your account balance regularly.
- Pay using credit cards.
- Do not access your account from public locations.
- Verify email correspondence from bank.
- If your account is compromised, take swift action.
Online management controls
For your company’s management controls:
- Don’t allow your employees to use your computers in social networking.
- Establish a list of allowable web-sites.
- Closely monitor your bank account.
- Train employees in social engineering awareness.
- Change the mindset of your managers and employees – if something seems odd, say no and call for Internet security.
- Strengthen your defenses.
Oh, don’t forget the danger in opening and responding to e-mails — to avoid cyber criminals from phishing — a tactic to get you to reveal sensitive information.
From the Coach’s Corner, if you’re a cyber victim, contact a noted security expert and then inform authorities (How to Report E-Scams and Hoaxes to the FBI).
Related security articles:
- Why Many Healthcare Workers Are Responsible for Alarming Trend: Medical ID Theft
- Lesson about Passwords after Theft of 16,000+ UCLA Patient Records
“Phishing is a major problem because there really is no patch for human stupidity.”