Archive Links

Consumer Archive
CU System Archive
Market Archive
Products Archive
Washington Archive
150x172_CUEffect.jpg
Contacts
LISA MCCUEVICE PRESIDENT OF COMMUNICATIONS
EDITOR-IN-CHIEF
MICHELLE WILLITSManaging Editor
RON JOOSSASSISTANT EDITOR
ALEX MCVEIGHSTAFF NEWSWRITER
TOM SAKASHSTAFF NEWSWRITER

News Now

CU System
CMG Visa alert Hackers a risk to e-business systems
MADISON, Wis., and SAN FRANCISCO (2/5/08)--CUNA Mutual Group (CMG) issued a security alert yesterday morning identifying potential risks to financial institutions’ e-business systems after Visa told the company financial institutions are being targeted by hackers seeking cardholder information. Credit unions should use the alert to validate and confirm the security of their Web-facing systems, CMG said. CMG recommends that credit unions examine whether they have:
* Failed to use a network-based intrusion detection system; * Failed to use a host-based intrusion detection system; * Improperly segmented network environment; * Poorly configured ingress and egress firewall rules; and * Experienced structured query language (SQL) injection.
Visa also issued a second alert regarding SQL injection, stating it recently detected SQL attack methods targeted against websites and Web applications that were not properly designed or resided on unpatched systems. The latest SQL injection attacks pose serious additional risks to cardholder data stored or transmitted with systems and networks connected to the affected environment, the company said. Visa recommended that credit unions:
* Leverage an independent third party to conduct security assessments; * Assess and monitor the ongoing performance of security practices at key suppliers, especially those handling sensitive information; and * Develop a framework to assess partners, based on ISO-17799.
Credit unions also should validate and confirm Payment Card Industry Data Security Standards and Payment Card Industry Personal Identification Number Security Standards, CMG said in the alert. Credit unions that have experienced losses should contact CMG’s Credit Union Protection Response Center. For more information, use the links.
Other Resources

RSS





print
News Now LiveWire
CUNA: CUNA offices closed through Friday, News Now returns Monday http://t.co/a5xbLzQKDj
1 hours ago
Reminder: @CUNA's Madison, D.C. offices will be closed through Friday, open again on Monday. #NewsNow will publish Monday.
20 hours ago
MI dentist to match @CUDirect's $20K to @HurleyMedical as a result of #20for20 online voting http://t.co/hqmIc9LpK1 @CMNHospitals
21 hours ago
New #creditunion chartered in St. Louis - #LutheranFCU - by @TheNCUA http://t.co/faPfANGS0P. Only 3rd new FCU charter this year.
22 hours ago
Don't get hacked during the holidays-use these tips from @CUNA http://t.co/jEqxni6NhO #StoptheDataBreaches http://t.co/woIxPOIyys
22 hours ago