NCUA has observed a rise in cyberattacks against credit unions, credit union service organizations (CUSOs), and other third-party vendors supplying financial services products.
These attacks include incidents directly related to critical vulnerabilities in the MOVEit Transfer web application, as well as other attacks unrelated to MOVEit.
The critical vulnerabilities in the MOVEit Transfer web application are:
NCUA is asking credit unions to be vigilant in protecting their data and operations from all threats, including ransomware, phishing or social engineering leading to business email compromises, and distributed denial-of-service (DDoS) attacks.
continue reading »