BID Daily Newsletter
September 26, 2017

BID Daily Newsletter

September 26, 2017

Tattoo Ink and Small Business Cyber Toxins

New research in Scientific Reports indicates there may be a health hazard from tattoos that has not previously been observed. It seems researchers have found high levels of metals circulating in the body and concentrating in the lymph nodes that can be traced back to tattoos. Under the research, scientists observed stained lymph nodes in two tattooed cadavers and found heightened levels of several metals, including toxic mercury in one of them. The next step is to study the actual health effects of this residual ink from tattoos.
Community bankers don't need to get tattoos to feel the potentially toxic effects of cyber issues. Malware threats present a dual concern: bankers are concerned for their own security hygiene and they are also concerned for their business customers. In fact, small- and mid-sized businesses (SMBs) experienced as much as a 500% increase in ransomware in March 2017 alone (over the previous year), according to research from Malwarebytes.
Overall, SMBs experienced 165% more malware in 1Q 2017 than they did in 1Q 2016. Total malware incidents more than doubled in that time in 40 states, according to the same study. But, the massive surge in ransomware schemes alone did not account for all the SMB security attacks. Traditional adware attacks also continued, with 33 new adware variants emerging by 1Q 2017; and new variants of old malware replaced traditional adware, as cyber-criminals upped their game. According to the FBI, about 4000 ransomware attacks occurred every day in 2016.
This is disconcerting for community banks because SMB customers are more likely than their larger counterparts to be breached. A June 2016 study from Keeper Security and Ponemon finds more than 50% of SMBs were breached in the past year.
Why SMBs? According to research from Ponemon, 58% of such businesses still do not consider cybercrime a big risk to their organization. Further, 44% do not consider strong security a priority. This is despite the fact that the cost of a data breach jumped from $3.8mm in 2015 to $4.0mm in 2016.
Another reason cybercriminals target SMBs is that about 66% globally do not even have a data security policy, according to FireEye research. Many SMBs seem to believe they cannot afford the "layered... or defense in depth security."
Still another issue is that the United Nations Office on Drugs and Crime finds only about 10% of cybercrimes reported to police by SMBs result in a conviction.
Knowing this, community bankers should communicate regularly with business customers on the risks of malware and other cyberattacks. A clear and high level of communication not only helps them, but also your bank.
After all, an infected customer can spread viruses quickly. A FireEye white paper on the topic finds that "advanced malware typically resides in infected systems for weeks, even months, before common security tools detect it."
Maybe your grandparents were right when they told you an ounce of prevention is worth a pound of cure. Stay cyber-healthy out there and watch out for sharp needles along the way.