Skip Header

Federal Deposit
Insurance Corporation

Each depositor insured to at least $250,000 per insured bank

Directors' Resource Center

Regulatory Guidance: Risk Management Supervision

Cybersecurity and Information Security

FFIEC Cybersecurity Awareness (

FDIC Financial Institution Letters

FIL-72-2016 Cybersecurity Awareness Month — Industry Webinar
FIL-68-2016 FFIEC Cybersecurity Assessment Tool Frequently Asked Questions
FIL-37-2016 FFIEC Joint Statement on Cybersecurity of Interbank Messaging and Wholesale Payment Networks
FIL-13-2016 FDIC Announces Webinar for National Consumer Protection Week 2016:
Cybersecurity Resources for Financial Institution Customers
FIL-55-2015 Cybersecurity Awareness Resources
FIL-54-2015 Updated FFIEC Management Booklet Part of IT Examination Handbook Series
FIL-48-2015 Cybersecurity Awareness Month – Industry Teleconference
FIL-28-2015 Cybersecurity Assessment Tool
FIL-13-2015 FFIEC Joint Statements on Destructive Malware and Compromised Credentials
FIL-49-2014 Technology Alert GNU Bourne-Again Shell (Bash) Vulnerability
FIL-21-2014 Webinar on Senior Management's Role in Cybersecurity
FIL-16-2014 Technology Alert OpenSSL Heartbleed Vulnerability
FIL-11-2014 Distributed Denial of Service (DDoS) Attacks
FIL-10-2014 ATM and Card Authorization Systems
FIL-50-2011 FFIEC Supplement to Authentication in an Internet Banking Environment
FIL-56-2010 Guidance on Mitigating Risk Posed by Information Stored on Photocopiers, Fax Machines and Printers
FIL-30-2009 Identity Theft Red Flags, Address Discrepancies, And Change of Address Regulations Frequently Asked Questions
FIL-100-2007 Identity Theft Red Flags - Interagency Final Regulation and Guidelines
FIL-32-2007 FDIC's Supervisory Policy on Identity Theft  
FIL-77-2006 Authentication in an Internet Banking Environment Frequently Asked Questions
FIL-103-2005 FFIEC Guidance Authentication in an Internet Banking Environment
FIL-69-2005 Guidance on the Security Risks of Voice Over Internet Protocol (VoIP)
FIL-66-2005 Guidance on Mitigating Risks From Spyware
FIL-64-2005 Guidance on How Financial Institutions Can Protect Against Pharming Attacks
FIL-59-2005 Study Supplement on "Account-Hijacking" Identity Theft
FIL-27-2005 Guidance on Response Programs for Unauthorized Access to Customer Information and Customer Notice
FIL-132-2004 Study on "Account-Hijacking" Identity Theft and Suggestions for Reducing Online Fraud
FIL-121-2004 Guidance on Developing an Effective Computer Software Evaluation Program to Assure Quality and Regulatory Compliance
FIL-114-2004 Risk Management of Free and Open Source Software FFIEC Guidance
FIL-103-2004 Interagency Informational Brochure on Internet Phishing Scams
FIL-84-2004 Guidance on the Risks Associated With Instant Messaging
FIL-62-2004 Guidance on Developing an Effective Computer Virus Protection Program
FIL-27-2004 Guidance on Safeguarding Customers Against E-Mail and Internet-Related Fraudulent Schemes
FIL-43-2003 Guidance on Developing an Effective Software Patch Management Program
FIL-30-2003 Federal Bank and Credit Union Regulatory Agencies Jointly Issue Guidance on the Risks Associated With Weblinking
FIL-8-2002 Wireless Networks And Customer Access
FIL-69-2001 Authentication In An Electronic Banking Environment
FFIEC Guidance on Electronic Authentication
FIL-39-2001 Guidance on Identity Theft and Pretext Calling
FIL-22-2001 Guidelines Establishing Standards for Safeguarding Customer Information
FIL-77-2000 Bank Technology Bulletin
Protecting Internet Domain Names
FIL-63-2000 Tips for Safe Banking Over the Internet - An FDIC Brochure for Bank Customers
FIL-98-1998 Pretext Phone Calling
FIL-82-1996 Interagency Statement on the Risks to Financial Institutions Involving Client/Server Computer Systems
Skip Footer back to content