Mitigation

ICBA Resources

The following links will lead you to cybersecurity assessment tools to help you better understand where your bank stands.

Educate Your Customer

Share these cybersecurity resources with your customers to help them protect their businesses and data.

CISA Resources

Risk Assessments

Ransomware Resources

Cybersecurity Exercises and Training

Law Enforcement Contacts

Regulatory Resources

Vulnerabilities & Mitigation

Cybersecurity and data security vulnerabilities come in many forms. Use these resources to know what you are dealing with and how to stay one step ahead.

Name	Source	Date
MOVEit Transfer Exploit	US Department of the Treasury	06/04/2023
Lessons Learned from Russia-Ukraine 4	US Department of the Treasury	11/03/2022
Lessons Learned from Russia-Ukraine 3	US Department of the Treasury	10/20/2022
Lessons Learned from Russia-Ukraine 2	US Department of the Treasury	10/06/2022
Lessons Learned from Russia-Ukraine 1	US Department of the Treasury	09/13/2022
Snatch Ransomware Notice	FinCEN	07/14/2022
MedusaLocker Advisory	Joint Advisory	06/30/2022
People’s Republic of China State-Sponsored Cyber Actors Exploit Network Providers and Devices	CISA	06/08/2022
Apache Log4J Vulnerability Guidance	CISA	12/13/2021
Money Mule Awareness TLP AMBER	DOJ OIG	10/13/2021
Money Mule Awareness TLP WHITE	DOJ OIG	10/13/2021
Advisory on Ransomware Awareness for Holidays and Weekends	CISA and FBI	08/31/2021
CISA-FBI Guidance for MSPs and their Customers Affected by the Kaseya VSA Supply-Chain Ransomware Attack	CISA and FBI	07/07/2021
What We Urge You to do to Protect Against the Threat of Ransomware	White House	06/03/2021
Indicators of Compromise Associated with Darkside Ransomware	FBI	05/10/2021
Fact Sheet: Russian SVR Activities Related to Solar Winds	CISA	05/07/2021
Joint Cybersecurity Advisory on Russian Foreign Intelligence Service (SVR)	NCSC, CISA, FBI, NSA	05/07/2021
Analysis Report: FiveHands Ransomware	CISA	05/06/2021
Russian Foreign Intelligence Service Cyber Operations: Trends and Best Practices for Network Defenders	CISA and FBI	04/27/2021
Joint Advisory on Accellion File Transfer Appliance Vulnerabilities	CISA	02/24/2021
AppleJeus: Analysis of North Korea’s Cryptocurrency Malware	CISA	02/17/2021
North Korean Malicious Cyber Activity	CISA	02/17/2021
North Korea: Cyber Tactics and Tools Targeting Global Financial Sector	DHS	01/13/2021
PIN - Egregor Ransomware	FBI	01/07/2021
Money Mule Initiative and Education	DOJ	12/16/2020
CISA Alert: Active Exploitation of SolarWinds Software	CISA	12/13/2020
CISA Emergency Directive on SolarWinds Orion Code Compromise	CISA	12/13/2020
PIN: Cyber Criminals Exploit Email Rule Vulnerability to Increase the Likelihood of Successful Business Email Compromise	FBI	12/01/2020
Scam Awareness Materials for Groups and Organizations	SSA	11/02/2020
Security Alert Pandemic Related Fraud Chargeback Scheme	Visa	10/21/2020
Advisory on Unemployment Insurance Fraud During COVID-19	FINCEN	10/13/2020
Advisory on Ransomware and the Use of the Financial System to Facilitate Ransom Payments	OFAC	10/01/2020
Pandemic Response Portal		09/28/2020
Unemployment Insurance Fraud Consumer Protection Guide		09/28/2020
USSS SBA OIG Joint Alert - PPP EIDL Fraud - TLP Green		09/28/2020
Cyber Fraud Task Force Bulletin - September 2020	USSS	09/25/2020
Compromised Managed Service Providers	USSS	09/10/2020
Contact U.S. Department of Labor Cyber Fraud Task Forces	DOL	09/10/2020
Contact U.S. Secret Service Cyber Fraud Task Forces	USSS	09/10/2020
Cybersecurity: Ransomware Alert	OCIE	09/10/2020
FBI Alert: Increased use of Mobile Apps Could Lead to Exploitation	FBI	09/10/2020
FBI Sees Spike in Fraudulent Unemployment Insurance Claims Filed Using Stolen Identities	FBI	09/10/2020
FinCEN Advisory on Imposter Scams and Money Mule Schemes	FinCEN	09/10/2020
Indicators Associated with Netwalker Ransomware	FBI	09/10/2020
Malicious Cyber Actor Spoofing COVID-19 Loan Relief Webpage	CISA	09/10/2020
OCCIP Cybersecurity Alert 1 - Ransomware	OCCIP	09/10/2020
Selecting and Safely Using Collaboration Services for Telework	NSA	09/10/2020
State UI ACH ID List	USSS	09/10/2020
U.S. Secret Service Cyber Fraud Task Force Map	USSS	09/10/2020
USSS-DOL OIG UI Advisory	USSS	09/10/2020
Ransomware Guide	CISA	09/01/2020
SBA Information Notice	SBA	07/21/2020
SBA Lender Alert EIDL	SBA	07/14/2020
Tips to Defend Against Ransomware	FS-ISAC	05/01/2019

Alerts

Risk Management
The Benefits of a .BANK Domain
Risk Management
Protecting Your Customers and Bank with Sheltered Harbor

Cybersecurity and Technology News

CISA, NSA share Microsoft server security best practices

Oct 31, 2025 | NewsWatch Today

The Cybersecurity & Infrastructure Security Agency, National Security Agency, and international cybersecurity released Microsoft Exchange Server Security Best Practices, a guide to help network defenders harden on-premises Exchange servers against exploitation by malicious actors.

Federal agencies target transnational cybercrime networks

Oct 15, 2025 | NewsWatch Today

The Treasury and Justice departments announced several actions against criminal networks responsible for scams and money laundering, including an ICBA-supported final rule targeting the Cambodia-based Huione Group.

Independent Banker shares tips for tackling cyber threats

Oct 3, 2025 | NewsWatch Today

The latest Independent Banker magazine shares ways that community banks can fight cyber attacks that are being supercharged by AI and other technological capabilities.

ICBA shares Cybersecurity Awareness Month marketing tools

Oct 1, 2025 | NewsWatch Today

ICBA offers ready-to-use marketing tools that community bankers can use in October via its Marketing Resource Center.

Cybersecurity coordination law to lapse next week if Congress doesn’t act

Sep 25, 2025 | NewsWatch Today

ICBA continues working with Congress to advance an extension of a law that strengthens public-private cybersecurity coordination before the law expires next week.

ICBA, other groups call on Congress to renew cybersecurity law

Sep 5, 2025 | NewsWatch Today

ICBA and other groups called on Congress to extend the Cybersecurity Information Sharing Act before its Sept. 30 expiration date, saying that failure to do so would impede public-private sector coordination during cyberattacks and weaken the nation’s cyber defenses.

CYBER & DATA SECURITY

Mitigation

ICBA Resources

Educate Your Customer

CISA Resources

Risk Assessments

Ransomware Resources

Cybersecurity Exercises and Training

Law Enforcement Contacts

Regulatory Resources

Vulnerabilities & Mitigation

Alerts

The Benefits of a .BANK Domain

Protecting Your Customers and Bank with Sheltered Harbor

Cybersecurity and Technology News

CISA, NSA share Microsoft server security best practices

Federal agencies target transnational cybercrime networks

Independent Banker shares tips for tackling cyber threats

ICBA shares Cybersecurity Awareness Month marketing tools

Cybersecurity coordination law to lapse next week if Congress doesn’t act

ICBA, other groups call on Congress to renew cybersecurity law

Independent Community Bankers of America