Resisting The DarkSide

May 17, 2021 at 9:20 am Leave a comment

The successful dark side ransomware attack in which hackers were able to disrupt a major pipeline providing gas to states throughout the east coast has once again brought the issue of cyber security to the forefront.  Here are some of the lessons your credit union can learn from this event:

Don’t forget the basics. These are highly sophisticated attacks that start with very basic mistakes. On Wednesday, the FBI and the CISA issued a joint memorandum. The first three steps it suggested companies take to mitigate the threat of ransomware are to require multi-factor authentication, enable strong spam filters, and implement a user training program and simulated attacks for spear phishing.

Expect insurance costs to spike. The attack comes as regulators and stakeholders debate the best way to deal with ransomware attacks and the role that the insurance should play. This past fall, FINCEN issued guidance warning financial institutions and insurance companies that they might be violating federal law if they help a company facilitate a ransomware payment. In addition, New York State’s Department of Financial Services recently reached a multi-million dollar settlement with an insurance company for violating the state’s cyber security regulations. The settlement has gotten the attention of the legal community since it included a stipulation that insurance proceeds would not be used to pay the settlement. 

The DarkSide may bring congress to its senses. Call me a cock-eyed optimist but if the ability of hackers to shut down a major energy pipeline affecting states throughout the country doesn’t jolt congress into passing comprehensive cyber security regulations then nothing will. This would seem like an issue that can overcome the great ideological divide but only time will tell. 

Entry filed under: New York State, Regulatory, technology. Tags: , , , .

Albany Moves On CU Priorities Three Things to Ponder As You Start Your Credit Union Day

Leave a Reply

Fill in your details below or click an icon to log in:

WordPress.com Logo

You are commenting using your WordPress.com account. Log Out /  Change )

Google photo

You are commenting using your Google account. Log Out /  Change )

Twitter picture

You are commenting using your Twitter account. Log Out /  Change )

Facebook photo

You are commenting using your Facebook account. Log Out /  Change )

Connecting to %s

Trackback this post  |  Subscribe to the comments via RSS Feed


Authored By:

Henry Meier, Esq., Senior Vice President, General Counsel, New York Credit Union Association.

The views Henry expresses are Henry’s alone and do not necessarily reflect the views of the Association. In addition, although Henry strives to give his readers useful and accurate information on a broad range of subjects, many of which involve legal disputes, his views are not a substitute for legal advise from retained counsel.

Enter your email address to subscribe to this blog and receive notifications of new posts by email.

Join 726 other followers

Archives