DEFENSESTORM

Cyber Security RESOURCES

Thought leadership and customer testimonials are some of the many ways we build a community of trust. These cyber security resources highlight our recent research and success stories.

Cyber security risk management solutions from DefenseStorm.
AT&T Unlawful Access of Customer Data Incident

Threat Alerts

AT&T Unlawful Access of Customer Data Incident

News is emerging about AT&T’s disclosure of what they term as ‘Unlawful Access of Customer Data.’  The majority of AT&T customer data was illegally downloaded from their workspace on a third-party cloud platform from May 2022 through October 31, 2022 and on January 2, 2023.

Cyber Risk Readiness in GRID Active

Insights

Cyber Risk Readiness in GRID Active

GRID Active now offers customer a view into their state of Cyber Risk Readiness and demonstrates the positive impact an integrated cyber risk management platform can have in managing cyber risk.

Evolve Bank and Trust Breach

Threat Alerts

Evolve Bank and Trust Breach

In late June 2024, LockBit cybercriminal group claimed responsibility for having breached a government agency with plans to release the stolen data. It was revealed that the group actually breached Evolve Bank and Trust.

GRID Active Reporting

Datasheets

GRID Active Reporting

GRID Active Reporting enables financial institutions to exercise informed decision-making through consistent metrics and ensures confidence in the execution of their cyber risk management program and strategic objectives.

“I Have Your Mom…”

Fraud Squad

“I Have Your Mom…”

What would you do if you got a frantic call from a loved one because they were in danger? Or what if an unknown caller told you that someone dear to your heart would be harmed if you didn’t comply, as the shrieks of a familiar voice begged for help in the background? Would you hang up, or would you pay up? While many people would say they wouldn’t fall for something like that, it’s becoming harder than ever to tell the difference between a scammer posing as a loved one and a genuine cry for help. And as quickly as it begins, it’s over, leaving you with emotional trauma and an empty bank account.

Risk Assessment and Governance Package

Datasheets

Risk Assessment and Governance Package

DefenseStorm offers the only built for banking cyber risk management  solution tailored to the unique needs of financial institutions while aligning risk management and governance.

Fraud Fusion Centers: The NEW Way to Stop Cyber Fraud

Insights

Fraud Fusion Centers: The NEW Way to Stop Cyber Fraud

With a resolute effort to unite against the threat of cyber fraud, Fraud Fusion Centers are being embraced across all industries to effectively combat cyber fraud.

Creating a Proactive Cybersecurity Risk Management Plan

Insights

Creating a Proactive Cybersecurity Risk Management Plan

Cybersecurity risk management is a critical component of risk for banks and credit unions and by taking a proactive approach to risk, you can identify, mitigate, and even prevent risk before it’s too late. Learn how DefenseStorm’s built for banking approach can help you tackle cybersecurity risk and keep your institution cyber risk ready.

Our Community Credit Union

Case Studies

Our Community Credit Union

Our Community Credit Union was seeking a cyber risk management solution that would leverage DefenseStorm’s existing 24/7 monitoring and compliance tasks. The credit union also had an extremely short timeline to implement the tool to support its strategic initiatives.

Cybercriminals Love the Olympics Too, but for Different Reasons.

Insights

Cybercriminals Love the Olympics Too, but for Different Reasons.

The Olympic Games begin July 26, 2024, and end August 11, 2024. I, like most people around the globe, will be watching and cheering on our nation’s athletes as they achieve their goals and live out their Olympic dreams. Unlike most of the audience, though, I will also be thinking about the unseen but expected threats and attacks that will be occurring from cybercriminals and bad threat actors taking advantage of such a major event.

Lone Star Credit Union

Case Studies

Lone Star Credit Union

In 2020, Pure IT deployed DefenseStorm to ensure optimal levels of security for Lone Star Credit Union through improved monitoring, detection, and prevention of cyber threats.

“I Handed Over $50,000 in a Shoe Box”

Fraud Squad

“I Handed Over $50,000 in a Shoe Box”

With cybercriminals always devising new methods to target consumers, cybersecurity experts emphasize the importance of security awareness in preventing fraud. However, despite being an acclaimed financial-advice columnist, Charlotte Cowles [Brooklyn, NY] fell victim to a manipulative scam that cost her $50,000.

Live Oak Bank and DefenseStorm Testimonial

Webinars & Videos

Live Oak Bank and DefenseStorm Testimonial

Learn about how Rich Friedberg, CISO, at Live Oak Bank works with DefenseStorm to face challenges in managing cyber risk & steps he is taking to protect his customers against threats.

Cybersecurity Risk 2024: Keeping Pace with Evolving Standards

Insights

Cybersecurity Risk 2024: Keeping Pace with Evolving Standards

A proposed rule from the Federal Deposit Insurance Corporation (FDIC) will establish new regulatory standards and increase the focus of cybersecurity risk management and governance while bringing an expectation of faster response times and real-time remediation of deficiencies.

Everything You Need to Know About the Alleged AT&T Data Leak

Threat Alerts

Everything You Need to Know About the Alleged AT&T Data Leak

Reports of a massive AT&T data leak have surfaced, with around seventy million customers potentially affected. The data is reportedly for sale on a leak forum or website.

New Account Takeover Fraud Prevention Functionality – Community Watchlists

Insights

New Account Takeover Fraud Prevention Functionality – Community Watchlists

DefenseStorm has updated its Account Takeover Fraud Prevention further enhancing its capabilities as a powerful cyber risk management solution.  Organizations can now join the Community Watchlists within Account Takeover Fraud Prevention, where they not only receive alerts of new threats, but can add a threat to the watchlist directly from the Alert view.

Hi, It’s Your Financial Institution…or is it?

Fraud Squad

Hi, It’s Your Financial Institution…or is it?

New and innovative applications are touted as a fun way to make prank calls, but they aren’t just being used by teenagers to pull a fast one on a friend. Fraudsters are using these apps to mimic legitimate business numbers and send text messages or calls that appear to be from the victim’s trusted financial institution (FI) in a scam called bank spoofing. Scammers on the other end of the call attempt to acquire sensitive information such as bank account numbers, passwords, personal identification numbers (PINs), and authentication codes that allow money transfers or access to the account.

New Guidance for Managing Cybersecurity Risks with NIST CSF 2.0

Insights

New Guidance for Managing Cybersecurity Risks with NIST CSF 2.0

NIST’s Cybersecurity Framework (CSF) is designed to help institutions of all sizes and sophistication levels manage and reduce their unique cybersecurity risks. With the release of CSF 2.0, the guidance provided by NIST has expanded the practice and controls that institutions can use to best understand, assess, prioritize, and communicate its cybersecurity efforts.

Romance Scam to Money Mule

Fraud Squad

Romance Scam to Money Mule

Romance scams continue to gain prevalence as scammers use online dating platforms and social media to prey on vulnerable individuals looking for love.  Continue reading to learn how a man nearly fell victim to a romance scam where the perpetrator intended to use him as a money mule, but the scam was stopped before any transactions occurred, thanks to a concerned bank employee.

AnyDesk Threat Alert

Threat Alerts

AnyDesk Threat Alert

DefenseStorm is aware of an incident involving  AnyDesk and the compromise of some of their production systems.  The incident was reported by AnyDesk on 2/2/2024.  We have not been able to locate any usable technical details or IOCs at this time.  AnyDesk is a widely used remote desktop software that allows users to access and control computers from anywhere in the world.

Love, Lies and Deception: A Romance Scam

Fraud Squad

Love, Lies and Deception: A Romance Scam

With the rise of online dating and social media, millions of people flock to digital platforms to find love. But from behind the protection of a computer screen, scammers exploit the most vulnerable people seeking romance and relationships, ultimately leaving the unsuspecting victim with a broken heart and an empty bank account.

Cyber Scams and the Election: What You Need to Know

Insights

Cyber Scams and the Election: What You Need to Know

Cyber scams and election season just go together, and as election season begins to ramp up, so will cyber scams and the variety of tactics that bad actors will deploy in the attempt to obtain your personal information.

The Rise of Banking Trojans in Rogue Mobile Apps

Insights

The Rise of Banking Trojans in Rogue Mobile Apps

Banking trojans continue to evolve and succeed due to their ability to persist, bypass security, and evade detection on mobile devices. As investment from fast-moving threat actors continues to increase, traditional security practices are unable to keep up.

Pasadena Federal Credit Union Testimonial

Case Studies

Pasadena Federal Credit Union Testimonial

Pasadena Federal Credit Union was consistently disappointed in their previous IT vendors, so they began the daunting task of shopping around for a cyber risk management solution. The wanted a relationship- a partner, and DefenseStorm was the obvious choice for them. Within a few months of signing, a simple phone call from DefenseStorm proved a real return on investment in their new partnership.

Cyber Security Software: GRID Active Governance Reporting Functionality

Insights

Cyber Security Software: GRID Active Governance Reporting Functionality

DefenseStorm has made a cyber security software update to our GRID Active Governance Program with new functionalities, further enhancing its capabilities as a powerful cyber risk management solution.  Organizations now can link dashboards to task schedules for scheduling and documenting report reviews.

The Tech Support Scam That Cost a Senior Citizen Her Life Savings

Fraud Squad

The Tech Support Scam That Cost a Senior Citizen Her Life Savings

Technology is advancing at an unprecedented pace, and even the most tech-savvy individuals can find themselves in need of assistance to remain connected and productive. Unfortunately, with the increased demand for tech support comes a rise in fraudulent activity exploiting this important service. Senior citizens are the most vulnerable group because they are more likely to seek help in navigating the complexities of technology.

Venture Tech 2023 Podcast: Interview with DefenseStorm CEO, Steve Soukup

Webinars & Videos

Venture Tech 2023 Podcast: Interview with DefenseStorm CEO, Steve Soukup

Learn how DefenseStorm helps your credit union drive change, and enable growth without compromising safety, by approaching cybersecurity with the same risk management disciplines you use in other areas of business.

 

Cyber Risk Assessment Functionality: Exception Tracking and Reporting

Insights

Cyber Risk Assessment Functionality: Exception Tracking and Reporting

DefenseStorm’s cyber risk assessment solution has recently been updated with new functionalities, further enhancing its capabilities as a powerful cyber risk management solution with GRID Active Risk Assessment Exceptions.

Safeguarding Credit Unions with Threat Intelligence with Elizabeth Houser and James Bruhl

Webinars & Videos

Safeguarding Credit Unions with Threat Intelligence with Elizabeth Houser and James Bruhl

Listen to Director of Cyber Defense, Elizabeth Houser, and Director of Cyber Threat Intelligence, James Bruhl discuss with NAFCU about what threat intelligence is and why is it important to Financial Institutions.

Cyber Security Alerts: Apple’s Name Drop Feature

Insights

Cyber Security Alerts: Apple’s Name Drop Feature

Keeping up with cyber security alerts is important and Apple just rolled out a new default feature for iPhone and Apple watch that allows nearby users to share contact information with one another. This feature has sparked some concern in online social communities and even prompted law enforcement agencies to release statements and privacy warnings over the last few days due to the concern that people could “drop” information on another user’s phone at random, which seems scary.