NIBA - Celebrating 35 Years
Back to Journal
Uncategorized

NIBA COVID Cyber Security Update by vSEC LLC

N
Written by
NIBA
Published
Reading time
3 min
The COVID crisis is providing cover and distraction for many cyber attacks. Threats include criminals impersonating the CDC and other official groups to get people to click on links that automatically download malware, fraud attacks that take advantage of market disruptions and ‘Work From Home’ confusion to steal personal information or money, and a general risk that home computers and networks often have fewer security protections than those at work. Here are some suggestions for each. Impersonation Risks You may recognize the person sending you a message (but their email may have been hacked or spoofed), you may recognize the name of the organization (the name may be spoofed), or you may recognize the topic (“emergency credit line request”, “covid test results”). But - be suspicious and be careful. Rather than click on an attachment or link, for public information try to find it yourself via a Google search. Examine the email address in detail before you hit Reply. Notice tone and details - is that what they usually call you, do they normally use your or their title, have they ever been that friendly before? Don’t be lulled by accurate supporting details - great, you know that person really is working from their vacation home, which anyone can find out by checking their Facebook profile. Better to be skeptical than to be sorry. Payment Fraud Successful payment fraud attacks have common features including a sense of urgency and a change in payment procedures or details. Unfortunately, that describes most work days over the past few weeks. If in doubt, especially for payment requests or requests for personal or financial data - call the person to confirm it came from them. These types of frauds are very profitable for criminals, and once money is transferred it usually is gone for good. Consider adopting a general policy that any non-standard payment instructions should be verbally confirmed. Work From Home Risks You may be using a company supported laptop to work from home, and safely connecting only to work systems using a secure VPN. Nice. Or, you may be using a personal computer (shared with family members) to get your work done from a home network you set up in … what year was that? It is important to understand that your home computer and network likely do not have the same security protections you get at work. To improve the security of your personal laptops and desktops:
  • Ensure your anti-virus is up to date. Run it.
  • Make sure your operating system and program patches are up to date.
  • If you can, make sure you have a firewall installed and running.
  • Use a different logon to do work than your family members use.
  • Do not give regular user accounts Administrator authority on a shared PC.
  • Talk to family members about security issues if you share a computer.
  • Do not use the same password across multiple accounts.
If you do not have security software installed, do a quick google search of professional review sites, then select, install and run some recommended programs. As a tip, yes, it is worth the few dollars a month to run professional security software, but freeware versions can be effective too. Note, you will not be the first person to run CCleaner and see a message that it found and removed thousands of software trackers on your computer. Stay Home. Be Safe. Save Lives. ____________________ vSEC, LLC is a cyber security consulting company that specializes in the futures industry. For more information email info@vsecllc.com or visit www.vsecllc.com

Stay Informed

Subscribe to the NIBA Journal for the latest insights and industry updates

Related Articles

View All
Uncategorized

Marketing Strategy: Customer Segmentation

When I am talking with a friend or colleague who wants to kickstart their marketing efforts, my approach is “simpler is better”. It’s a lot like getting off the couch and back into the gym. Often the best way is to start simple and then build up from there. So, what I’d like to suggest to you as a NIBA member firm is to get started with SEGMENTATION of your contacts and customers. Imagine the difference in experience for a commodities trader who receives an email promoting opening an account. In the first email, it has a general header that seems to focus on equity indexes and has several forex symbols shown. In the second example, the entire header is...

Uncategorized

NFA Celebrates NIBA's 30th Anniversary

Congratulations to the NIBA on its 30th anniversary! As the self-regulatory organization for the derivatives industry, a critical element of NFA's mission is to ensure that all NFA Members understand their regulatory obligations. During the past few decades, NFA and the NIBA have often collaborated to develop educational materials, draft notices and deliver programs specifically customized for the NIBA's membership. NIBA Chairman and Founder Melinda Schramm and her team work tirelessly to identify these educational opportunities and ensure that each program successfully addresses the needs of derivatives professionals. For example, NFA and the NIBA recently delivered a webinar entitled "Navigating Regulatory Requirements in a Hybrid Environment." Feel free to access this informative webinar on NFA's website. NFA looks forward to...

Member Announcements

Ascent Capital Management Congratulates NIBA's 30th Anniversary

Ascent Capital Management has been an active member of the NIBA since we were established in 2011. The NIBA provides several tools to assist firms to maintain compliance with many of the regulatory changes that have become commonplace in our industry. Semi-annual meetings with various speakers on many diverse topics are just some ways that the NIBA helps keep its members up to speed and avoid regulatory issues. New products, changes to AML requirements and Cyber-Security have been some examples of past areas of education. Of course, attendees are encouraged to ask questions at the conclusion of the panel discussion to help their understanding of the topics at hand. Often the NFA participates and are always very accommodating to answer...