 |
|
|
|
Regulatory Resource Links
|
|
|
|
|
FFIEC
IS Examination Handbook
Downloadable pdf format of the FFIEC IS Examination Handbook ,
Volume 1 and 2
Electronic
Banking Examination Procedures
(217Kb PDF file - PDF
help or hard
copy)
A supplement to the FDIC Manual of Examination Policies focusing
on banks' and savings institutions' ventures in electronic commerce,
to help financial institutions minimize risk for themselves and
for their depositors.
Federal
Financial Institutions Examination Councils (FFIEC)
Georgia
Department of Banking & Finance
FDIC
Newsroom
The FDIC, together with the other federal regulators of banks,
thrifts and credit unions, issued the attached joint guidance
on managing the risk exposure an institution faces when it uses
outside firms for technology
Information
Assurance Sites for Tracking IT Security Vulnerabilities and Threats
US
Dept. of the Treasury Search Page
Includes a link to download free viewers, so you don't have to
buy the software just to open the documents
<Back to Top>
|
|
|
|
Simple Network Management
Protocol Vulnerabilities Resources |
|
|
|
|
Source: FFIEC Simple Network Management Protocol Vulnerabilities
These sites listed on the FFIEC website are useful in reviewing
recently published information on potentially serious vulnerabilities
in the Simple Network Management Protocol (SNMP), a software protocol
widely used in internal networks and the Internet. The protocol
also is used in products and services provided by the telecommunications
industry. Financial institutions should be aware that these vulnerabilities
may be exploited to gain unauthorized access to information systems
or to cause denial of service attacks resulting in network disruptions.
The FFIEC recommends that information security personnel review
these or other credible sites and take appropriate steps to implement
the mitigation procedures to protect the integrity of information
systems and safeguard customer information. Financial institutions
also should contact their information technology service providers
and software vendors directly to ascertain that they are assessing
SNMP vulnerabilities in their products and taking steps to mitigate
risks.
Federal
Computer Incident Response Center (FedCIRC) Advisory on Simple
Network Management Protocols (SNMP)
CERT
Coordination Center Advisory on Simple Network Management Protocols
(SNMP) Vulnerabilities
System Administration,
Networking, and Security Institute (SANS)
<Back to Top>
Ask
Nichols, Cauley by E-mail,
phone, or our online
form about your questions.
|
