member Login

MINNESOTA CREDIT UNION NETWORK

  • Advocacy
    • Advocacy Programs >
      • GAC >
        • GAC Home Address Form
      • Impact 25
      • Hike the Hill
    • Grassroots Action Center >
      • GREAT
      • Grassroots Coordinator Program
      • Project Zip Code
    • Support CU Advocacy >
      • Advocacy Fund
    • Regulatory Affairs
    • Political Publications
  • Professional Development
    • Calendar >
      • Event Policies
    • GAC
    • Accelerate 25: Annual Conference >
      • Accelerate 25 Awards
      • ACCELERATE 25 | Attendee Information
      • Sponsors and Exhibitors
    • CEO Conference
    • Tristate Leadership Conference
    • Directors Conference
    • CU Connect
    • MnCUN Mobile App
    • Chapters
    • Committees >
      • Committee Applications
    • Trailblazers >
      • Trailblazers Application
    • Tristate Mentorship Match
    • The CREW >
      • CREW Spotlight
    • Women's Leadership Network
  • Member Resources
    • 100 Year Celebration
    • Member Benefits
    • CU Law
    • Online Member Tools
    • MN CU Employee Benefits Plan >
      • Benefits Plan | Requesting a Quote
      • Guardian Life
    • Compliance >
      • Compliance and Audit Services
      • Submit a Compliance Question
      • PolicyAid
      • Elder Financial Abuse Prevention
    • CU FORWARD
    • DEI >
      • CDFI Resources
    • News
    • Publications
    • The Pulse
    • Awareness Campaign
    • Awards >
      • Professional and Director of the Year >
        • Professional of the Year Form
        • Director of the Year Form
      • Marketing Awards
      • National Awards
  • About
    • About MnCUN >
      • Contact Us
      • Our Team
      • Board of Directors
      • Partner With Us
    • About MN Credit Unions >
      • High Yield Pale Ale
      • Impact Report
    • CU Green
  • Jobs
  • Solutions
    • Partner with Us
    • TriState Product & Services
    • TruLync Medicare Advisors >
      • TruLync Medicare & Pilot Program Results
    • WINcentive Savings/PLS
    • Strategic Planning and Consulting
  • Foundation
    • De Novo Credit Unions
    • Contribute
    • Apply for a Grant >
      • Technology Assistance Grant Application
      • Financial Inclusion Grant Application
      • Financial Education Grant Application
    • Financial Education Resources
    • CU Builder >
      • CU Builder - Previous
    • Foundation Programs >
      • Enhanced FiCEP Program
    • CU4Kids
    • Scholarship Council
  • Advocacy
    • Advocacy Programs >
      • GAC >
        • GAC Home Address Form
      • Impact 25
      • Hike the Hill
    • Grassroots Action Center >
      • GREAT
      • Grassroots Coordinator Program
      • Project Zip Code
    • Support CU Advocacy >
      • Advocacy Fund
    • Regulatory Affairs
    • Political Publications
  • Professional Development
    • Calendar >
      • Event Policies
    • GAC
    • Accelerate 25: Annual Conference >
      • Accelerate 25 Awards
      • ACCELERATE 25 | Attendee Information
      • Sponsors and Exhibitors
    • CEO Conference
    • Tristate Leadership Conference
    • Directors Conference
    • CU Connect
    • MnCUN Mobile App
    • Chapters
    • Committees >
      • Committee Applications
    • Trailblazers >
      • Trailblazers Application
    • Tristate Mentorship Match
    • The CREW >
      • CREW Spotlight
    • Women's Leadership Network
  • Member Resources
    • 100 Year Celebration
    • Member Benefits
    • CU Law
    • Online Member Tools
    • MN CU Employee Benefits Plan >
      • Benefits Plan | Requesting a Quote
      • Guardian Life
    • Compliance >
      • Compliance and Audit Services
      • Submit a Compliance Question
      • PolicyAid
      • Elder Financial Abuse Prevention
    • CU FORWARD
    • DEI >
      • CDFI Resources
    • News
    • Publications
    • The Pulse
    • Awareness Campaign
    • Awards >
      • Professional and Director of the Year >
        • Professional of the Year Form
        • Director of the Year Form
      • Marketing Awards
      • National Awards
  • About
    • About MnCUN >
      • Contact Us
      • Our Team
      • Board of Directors
      • Partner With Us
    • About MN Credit Unions >
      • High Yield Pale Ale
      • Impact Report
    • CU Green
  • Jobs
  • Solutions
    • Partner with Us
    • TriState Product & Services
    • TruLync Medicare Advisors >
      • TruLync Medicare & Pilot Program Results
    • WINcentive Savings/PLS
    • Strategic Planning and Consulting
  • Foundation
    • De Novo Credit Unions
    • Contribute
    • Apply for a Grant >
      • Technology Assistance Grant Application
      • Financial Inclusion Grant Application
      • Financial Education Grant Application
    • Financial Education Resources
    • CU Builder >
      • CU Builder - Previous
    • Foundation Programs >
      • Enhanced FiCEP Program
    • CU4Kids
    • Scholarship Council

The Pulse

Ransomware Attacks Extorting Sizable Ransoms Continue as Predominant Cyber Issue

2/16/2021

 
Ransomware developers and affiliates have been telling victims they must pay the ransom or stolen data and internal company secrets will be publicly released. Unfortunately, not everyone has been a believer. Six and seven-figure demands have become routine among ransomware attacks with the average ransom payment in quarter two of 2020 reaching $178,254, a 60% leap from the $111,605 average in quarter one according to the Coveware Quarterly Ransomware Report. [1]

“Credit unions need to be looking out for ransomware techniques. These cyber attacks have no boundaries and are truly a global issue,” reports Carlos Molina, Senior Risk Consultant at CUNA Mutual Group. “Ransomware has grown in frequency and severity significantly. The average ransom payments have climbed exponentially in the last few years.”

Ransomware payments in 2019 were three times as large as 2018 payments and four times as many extortion demands  were paid in 2019 versus 2018, according to incidents reported to Beazley. In fact, ransomware claims increased 239% and the total cost of ransomware payments has increased by 228% from 2018 to 2019. [2] 

According to Derek Laczniak, Director of Cyber Liability at M3 Insurance, “Ransomware developers threatened to release stolen data in the past. However, now with the actual release of confidential information, credit unions need to treat these attacks more like data breaches. Business interruption from these events has become a regular occurrence leaving both reputational and financial impacts.”

​How does Ransomware work?
Ransomware is a malicious software that restricts access to an infected machine, usually by systematically encrypting files on the system’s hard drive. Then the cyber-criminal demands payment of a ransom in exchange for the key or keys to decrypt the data. Ransomware can be devastating.
The most identified infection points used to deploy ransomware:
  • Phishing emails
  • Corrupt attachments
  • Weak or poorly secured remote desktop protocols (RDP)
  • Unpatched system vulnerabilities and untimely anti-virus updates
  • Extensive reuse of passwords
  • Lack of multi-factor authentication
Molina points out more criminal effort is being placed towards remaining undetected on a breached network. The time that exists between the first execution of malware and its discovery inside the network is commonly referred to as dwell time. “Increased dwell time provides threat actors with opportunities to escalate hijacked privileges while searching for data caches of sensitive information that can be exploited,” said Molina. The average dwell time is 43 days for ransomware according to an Infocyte report. [3]

There has also been a significant increase in criminals who purchase ransomware kits on the dark web, launch attacks in the hope of getting some payment, and care little about the data restoration experience of their victims.
​“Ransomware code on a reseller distribution network is a very lucrative business for cybercriminals. The availability of free, do-it-yourself ransomware-as-a-service (RaaS) kits, and cheap attack ingredients has pushed the barrier to entry extremely low and deep technical expertise is no longer really needed.” according to M3’s Laczniak. “It is also possible that the increase of RaaS usage is related to the economic impact of the pandemic driving more financially-stressed individuals towards a career in cybercrime.”
“There’s no foolproof way of preventing ransomware attacks from occurring; however, all too often ransomware can be avoided with the right IT security and risk management procedures,” adds Molina. “Proactive prevention is the most effective for credit unions.”
Key Prevention Tips
  • Keep all systems including hardware, mobile devices, operating systems, software, cloud locations, and content management systems (CMS), patched and up to date. If possible, a centralized patch management system should be used. 
  • Activate two-factor / multi-factor authentication (2FA/MFA) on all systems — including managed service provider software platforms, administrator systems, and end-user systems wherever possible. 
  • Backup data regularly and verify the integrity – ensure backups are not connected to the computer or networks that are being backed up (i.e. securing backups in the cloud or physically storing offline).
  • Apply the principles of least privilege and network segmentation in which an end user should be given only the privileges necessary to completes tasks related to their role in the credit union. If an employee does not need an access right, the employee should not have that access right.
  • Provide frequent social engineering and phishing training to employees so they are your first line-of-defense. Reminders to not to open suspicious emails, not click on links or open attachments contained in such emails, and to be cautious before visiting unknown websites should be made regularly.
  • Vet and monitor third parties that have remote access to the credit union network and connections to third parties. Ensure they are diligent with cybersecurity best practices.
  • Credit unions who may facilitate ransomware payments for commercial or consumer members should familiarize themselves with FinCEN’s Advisory (October 1, 2020) and list of 10 financial red flag indicators to assist in detecting, preventing, and reporting suspicious transactions associated with ransomware attacks.


Security experts are reporting a potential increase in ransomware attacks for the foreseeable future. Molina emphasizes, “As ransomware tools and deployment methods advance, criminal groups will continue to launch more targeted attack campaigns resulting in increased paid ransom demands and more negative impact to credit unions’ reputation and bottom-line.”

Need More Info?
To learn more about ransomware, cyber risks, and insurance, go to the Protection Resource Center at cunamutual.com/prc for additional resources and RISK Alerts or contact a Risk Consultant at 800.637.2676 or [email protected]. 

Beazley cyber insurance policyholders can also access additional resources at www.beazleybreachsolutions.com (User ID / Password required). In addition, Beazley offers many loss mitigation services at a discount for credit unions.
  1. Coveware, “Ransomware Attacks Fracture Between Enterprise and Ransomware-as-a-Service in Q2 as Demands Increase”, August 3, 2020,
  2. Beazley, “Beazley’s 360° approach to ransomware protection” 2018 - 2019,
  3. Infocyte, “2019 Mid-Market Threat and Incident Response Report”, Q2, 2019
​
CUNA Mutual Group is the marketing name for CUNA Mutual Holding Company, a mutual insurance holding company, its subsidiaries and affiliates. Insurance products offered to financial institutions and their affiliates are underwritten by CUMIS Insurance Society, Inc. or CUMIS Specialty Insurance Company, members of the CUNA Mutual Group. Some coverages may not be available in all states. If a coverage is not available from one of our member companies, CUNA Mutual Insurance Agency, Inc., our insurance producer affiliate, may assist us in placing coverage with other insurance carriers in order to serve our customers’ needs. CUMIS Specialty Insurance Company, our excess and surplus lines carrier, underwrites coverages that are not available in the admitted market. Cyber policies are underwritten by Beazley Insurance Group or other nonaffiliated admitted carriers. © CUNA Mutual Group, 2021. All rights reserved. CUPRM-3364141.1-1220-0123

Comments are closed.

    The Pulse

    The Pulse is MnCUN's newsletter that keeps credit union professionals and board members updated on current news and information. 

    ​The publication is delivered to credit unions weekly and offers timely and relevant credit union news, compliance updates and political information.

    You can subscribe to the Pulse by updating your subscriptions in the Member Portal

    Archives

    June 2025
    May 2025
    April 2025
    March 2025
    February 2025
    January 2025
    December 2024
    November 2024
    October 2024
    September 2024
    August 2024
    July 2024
    June 2024
    May 2024
    April 2024
    March 2024
    February 2024
    January 2024
    December 2023
    November 2023
    October 2023
    September 2023
    August 2023
    July 2023
    June 2023
    May 2023
    April 2023
    March 2023
    February 2023
    January 2023
    December 2022
    November 2022
    October 2022
    September 2022
    August 2022
    July 2022
    June 2022
    May 2022
    April 2022
    March 2022
    February 2022
    January 2022
    December 2021
    November 2021
    October 2021
    September 2021
    August 2021
    July 2021
    June 2021
    May 2021
    April 2021
    March 2021
    February 2021
    January 2021
    December 2020
    November 2020
    October 2020
    September 2020
    August 2020
    July 2020
    June 2020

    Categories

    All
    Awareness
    Chapters
    COVID 19
    COVID-19
    Credit Unions In The News
    DEI
    Foundation
    Governmental Affairs
    Network News
    Products & Solutions
    Professional Development
    Regulatory & Compliance

    RSS Feed

Partner with Us
Contact Us
Request login credentials
About MnCUN
​
About Credit Unions
America's Credit Unions
Picture
Copyright Minnesota Credit Union Network.  All Rights Reserved.


555 Wabasha Street North, Suite 200 | Saint Paul, MN 55102
[email protected] | Privacy Notice

If you are using a screen reader and are having problems using this website email [email protected] for assistance.


Picture