Description: Bank robbery procedures: Step 1 - Wipe down all services to remove fingerprints, Step 2 – Delete data on digital video recorder, Step 3 - Inform staff that it's just a minor issue and there is nothing to worry about here. This sounds ridiculous doesn’t it? But it's happening today in a related scenario, digital robbery.
When notified of a malware infection on your system or a customer's system, it is the digital equivalent to being notified about a robbery situation. In a robbery situation, we would preserve evidence and investigate the crime. All too often in the digital word, we respond to the malware infections with intentions to remove it and get the system back into production immediately. When in reality, we should enact our incident response take actions, just like we have training to do in our incident response testing processes.
It's more difficult in a digital robbery to immediately identify if items were stolen. So we must do an investigation as to what was stolen and identify who stole it. Information must also be collected from the employees and clearly documented. Additional employee training and education is also likely needed to remediate future incidents. This discussion will talk about types of incidents that are increasing in frequency for financial institutions and how to prepare for them. Highlighting real procedures institutions can follow and how forensics is a requirement in modern cyber incidents.
This webinar is done in partnership with GSB.
SBS Presenter: Chad Knutson - President, SBS Institute
Date: May 18, 2017
Time: 2:00-3:30 p.m. CT
Hacker Hour webinars are a series of free webinars hosted by SBS CyberSecurity. Unlike paid webinars, Hacker Hours are aimed to meet on a monthly basis to discuss cybersecurity issues and trends in an open format. Attendees are encouraged to join the conversation and get their questions answered. SBS will also offer products and services to help financial institutions with these specific issues.