Financial Services - Information Sharing and Analysis Center
The only industry forum for collaboration on critical security threats facing the financial services sector.
When attacks occur, early warning and expert advice can mean the difference between business continuity and widespread business catastrophe. Members of the Financial Services Information Sharing and Analysis Center (FS-ISAC) receive timely notification and authoritative information specifically designed to help protect critical systems and assets from physical and cyber security threats.
Banking and Finance Sector
Extracted from the 7/3/2008 DHS Daily Open Source Infrastructure Report (Website)
8. July 1, Associated Press (National) Citibank ATM breach reveals PIN security problems. Hackers broke into Citibank's network of ATMs inside 7-Eleven stores and stole customers' PIN codes, according to recent court filings that revealed a disturbing security hole in the most sensitive part of a banking record. The scam netted the alleged identity thieves millions of dollars. It also indicates criminals were able to access personal identification numbers (PINs) by attacking the back-end computers responsible for approving the cash withdrawals. The case against three people in U.S. District Court for the Southern District of New York highlights a significant problem. Hackers are targeting the ATM system's infrastructure, which is increasingly built on Microsoft Corp.'s Windows operating system and allows machines to be remotely diagnosed and repaired over the Internet. Despite industry standards that call for protecting PINs with strong encryption some ATM operators apparently are not properly doing that. The PINs seem to be leaking while in transit between the ATMs and the computers that process the transactions. It is unclear how many Citibank customers were affected by the breach, which extended at least from October 2007 to March 2008 and was first reported by Wired.com. The bank has nearly 5,700 Citibank-branded ATMs inside 7-Eleven Inc. stores throughout the U.S., but it does not own or operate any of them.
Source
9. July 1, KBMT 12 Beaumont (Texas) BBB issues alert for phishing attack on area banks. The Better Business Bureau (BBB) in Southeast Texas warns all businesses andconsumers in the area of a spoofing scam using area banks to entice recipients to give personal information. Orange Savings Bank was targeted last month and the BBB has been flooded by calls today regarding Franklin Bank. Consumers are receiving automated phone calls, along with e-mails and even text messages, some late at night, asking for personal information.
Source
Current Financial Services Sector Threat Levels:
Last Reviewed: 2008-06-26 17:28:53 GMT
 Last Changed: 2008-05-29 17:24:33 GMT |
 Last Changed: 2008-05-29 17:24:33 GMT |
Current Partner Deals
| Partner | Deal Summary |
| VeriSign | The FS-ISAC has negotiated with VeriSign to offer... Read more |
| NC4 | FS-ISAC has negotiated with NC4 to offer Standard members and above... Read more |
| MessageOne | FS-ISAC members will receive a 7% discount Message One Products... Read more |
| CrimeDex | FS-ISAC members can participate at no cost... Read more |
| In The Zone Communications | In partnership with In The Zone Communications... Read more |
| SearchFinancial Security.com | FS-ISAC members can now receive complimentary membership... Read more |
21355 Ridgetop Circle
LS3-4
Dulles, Virgina 20166
888.732.2812