StopRansomware.gov helps public and private organizations defend against the rise in ransomware cases. It is a whole-of-government approach that gives one central location for ransomware resources and alerts. Organizations are encouraged to use this website to understand the threat of ransomware, mitigate risk, and in the event of an attack, know what steps to take next.
The Financial Crimes Enforcement Network (FinCEN) analyzes Ransomware Trends in Bank Secrecy Act (BSA) Data. This report is issued pursuant to section 6206 of the Anti-Money Laundering Act of 2020, which requires FinCEN to periodically publish threat pattern and trend information derived from BSA filings.
Cybersecurity Awareness Technical Assistance Video Series
This video series is designed to assist bank directors with understanding cybersecurity risks and related risk management programs, and to elevate cybersecurity discussions from the server room to the board room.
- Evolution of Data Security, Cybersecurity, and Threat Environment
- Information Security Programs Refocused, Cybersecurity Assessment Tool, and Additional Resources
A Framework for Cybersecurity
This article from the Winter 2015 Supervisory Insights Journal discusses the cyber threat landscape and how financial institution's information security programs can be enhanced to address evolving cybersecurity risks. The article concludes with a discussion of actions taken by the federal banking agencies in response to the increase in cyber threats.
Cyber Challenge: A Community Bank Cyber Exercise
The Cyber Challenge is designed to help financial institution management and staff discuss events that may present operational risks and consider ways to mitigate them. It can provide useful information about an institution’s preparedness and identify opportunities to strengthen the bank’s resilience to operational risk.
FFIEC Cybersecurity Awareness Page
The FFIEC Cybersecurity Awareness page includes resources from the Federal Financial Institutions Examination Council (FFIEC) to help the management and directors of financial institutions understand supervisory expectations, increase awareness of cybersecurity risks, and assess and mitigate the risks facing their institution.
FDIC Financial Institution Letters (FILs)
- Business Continuity Management
- Information Technology (IT) and Cybersecurity
- Information Technology Examinations
- Outsourcing and Third-Party Providers (Vendor Management)
- Payment Systems
Cybersecurity and Financial System Resilience Report
The annual Cybersecurity and Financial System Resilience report provides Congress with an overview of measures the FDIC has taken to strengthen cybersecurity in the financial services sector and within the FDIC's internal operations. This report covers the FDIC's policies and procedures related to cybersecurity risk management; activities to address cybersecurity risks; and emerging cybersecurity threats.
Cybersecurity Resources for Consumers
The Consumer Protection Cybersecurity page features expanded cybersecurity information for consumers, including a special edition of FDIC Consumer News and cyber security guides for financial institution customers.