Pub. 4 2015 Issue 1

For Bank Network Administrators: Do not allow employees to install any personal software on a Bank computer without approval from your Network Administrators. Often, when new software is installed, it changes settings on the computer to allow it to operate. These changes can interfere with the operation of anti-virus software and create a gap in defenses. Do not allow employees to change the Internet Options settings on your browser. Internet options should be established by your Network Administrator to be compatible with various software programs used at the bank, including Internet filters and anti-virus software. Make sure bank employees are saving critical files on bank network drives, instead of a local hard-drive. Network drives should be backed up on a daily basis so they can be more easily recovered in case of a virus infection. Set the computers inside your network for automatic software and operating system updates. An unpatched machine is more likely to have software vulnerabilities that can be exploited. Backup, Backup, BACKUP! Backing up your network files regularly can protect you from the unexpected. Keep a few months' worth of backups and make sure the files can be retrieved if needed. Ask the kbs team Call KBS (785) 228-0000 to discuss this article, other loss prevention topics, or products to help protect your bottom line. For Bank Staff: Internet access from bank computers should be for business purposes, with limited personal Internet use. Where possible, you should use personal devices (e.g., smart-phone, tablet) for personal Internet activities. Avoid visiting unknown, untrusted , or inappropriate websites. Be wary of Internet search results and avoid links to sites that are obscure or with which you are unfamiliar. Never click on advertisements or pop-up windows. These are commonly used to redirect users to malicious websites or launch virus programs. In some recent examples, the simple act of hovering a mouse over an advertisement has downloaded viruses. Ignore unsolicited emails and be wary of attachments, links and forms in emails from any- one, even people you know. If you are unsure or uncomfortable about an email you have received, contact the sender. If you remain unsure about an email, it is best to delete it. Never open attachments in emails from unknown senders. Placing your mouse over a link, without clicking, will reveal the actual destination of a link. This should be consistent with the link shown. Never click on the link if there is a difference. computers were Compromised in 1 day 5700 165 $ users paid the ransom $ 394,400 per month 33,600 per day “ *Source: United States Computer Emergency Readiness Team /Source: Symantec * = CASE STUDY : How profitable is ransomware?