Foreign Cyber Actors Target Home and Office Routers and Networked Devices Worldwide
The FBI recommends any owner of small office and home office routers power cycle (reboot) the devices. Foreign cyber actors have compromised hundreds of thousands of home and office routers and other networked devices worldwide. The actors used VPNFilter malware to target small office and home office routers. The malware is able to perform multiple functions, including possible information collection, device exploitation, and blocking network traffic.
The size and scope of the infrastructure impacted by VPNFilter malware is significant. The malware targets routers produced by several manufacturers and network-attached storage devices by at least one manufacturer. The initial infection vector for this malware is currently unknown.
VPNFilter is able to render small office and home office routers inoperable. The malware can potentially also collect information passing through the router. Detection and analysis of the malware’s network activity is complicated by its use of encryption and misattributable networks.
The FBI recommends any owner of small office and home office routers reboot the devices to temporarily disrupt the malware and aid the potential identification of infected devices. Owners are advised to consider disabling remote management settings on devices and secure with strong passwords and encryption when enabled. Network devices should be upgraded to the latest available versions of firmware.
Published by the Federal Bureau of Investigation. You can view the article above in it’s original format via the following link.
(Notice: This link leads outside of Catahoula LaSalle Bank’s website.) https://www.ic3.gov/media/2018/180525.aspx
September 21, 2017
Dear Valued Customers:
Recently, Equifax, one of the three national consumer credit reporting agencies, announced a major data breach. This breach affects approximately 143 million Americans. This is what we know according to Equifax: the data breach occurred May – July 2017, and the information stolen includes consumers’ personally identifiable information, including names, Social Security numbers, dates of birth, addresses and, in some cases, driver’s license numbers. Approximately 209,000 credit card numbers and dispute documents with personally identifiable information for approximately 182,000 consumers were also stolen. There is no evidence of unauthorized access to consumers’ credit reporting databases.
To be clear, Catahoula LaSalle Bank was not compromised and your information was not stolen from our bank. However, Catahoula LaSalle Bank takes the security of our customer information very seriously, and we are providing you with the information we know about this massive breach and the steps you can take to protect your personally identifiable information if you so desire. Following this unprecedented breach, we are also asking our customers to be extra vigilant and report any suspicious activity in your Catahoula LaSalle Bank accounts to Catahoula LaSalle Bank by calling 318-339-8571 or visiting our website at www.catlabank.com.
Equifax has established a website that informs consumers if they may be affected by the breach, provides additional information on the breach, and offers complimentary identity theft protection and credit file monitoring. This information is available at www.equifaxsecurity2017.com. To protect your identity and personal information, Catahoula LaSalle Bank strongly encourages our customers to take the actions noted below.
- Review your account statements to spot any suspicious transactions. You can also monitor your account activity via our mobile app or online at any time at www.catlabank.com.
- If you spot any suspicious transactions, please contact us immediately at 1-318-339-8571.
- Consider if you should place an initial fraud alert on your credit report (see https://www.consumer.ftc.gov/articles/0275-place-fraud-alert).
- Consider if you should freeze your credit file (see https://www.consumer.ftc.gov/articles/0497-credit-freeze-faqs).
- Review your credit reports for accuracy. Call any one of the three credit reporting agencies to receive your free annual credit report or visit annualcreditreport.gov.
Experian ® TransUnion® Equifax®
P.O. Box 9554 P.O. Box 2000 P.O. Box 740241
Allen, TX 75013 Chester, PA 19016 Atlanta, GA 30374
888-397-3742 800-680-7289 866-349-5191
www.experian.com www.transunion.com www.equifax.com
- You should also contact the credit reporting agencies to notify them of any suspected fraud or identity theft.
If you believe you are the victim of identity theft, contact your local law enforcement office and/or your state attorney general. Finally, you may also want to consider reviewing information about recovering from identity theft, which is available from the Federal Trade Commission (FTC) at https://www.identitytheft.gov/ or by calling 1-877-IDTHEFT (1-877-438-4338). The FTC also offers general information to protect your online presence at https://www.consumer.ftc.gov/topics/privacy-identity-online-security.
Equifax has established a dedicated toll-free number to answer questions you may have about the Equifax data breach and its effect on your personally identifiable information. You may call them at 866-447-7559.
President & CEO
Catahoula LaSalle Bank
To: Catahoula-LaSalle Bank Customers
Subject: Phishing Attempts
We have had reports of individuals calling customers claiming to be from Catahoula-LaSalle Bank and requesting their card information, PIN, and security code. They state that there has been fraudulent activity on the customer’s card and that they need your card information to assist you. If you receive a call please DO NOT give out any information to anyone.
We at Catahoula-LaSalle Bank would never call and ask you for that information over the phone. Never give out your PIN to anyone. We would never have a need for your PIN. If you have any questions please give us a call here at the bank or visit our Security Page at http://www.catlabank.com/index.cfm/id-theft we will be more than happy to help.