Making Networks Work.

DataBP Continuous Data Protection
Complete Care Program
Firewall Management

    Enhanced Network Security Coming Soon!

    ATTENTION COMPLETE CARE CLIENTS AND ONLINE AND SELF-PROCESSING CREDIT UNIONS: Enhanced network security is coming soon!

    What will this enhanced security involve?

    To add an additional layer of security and help prevent the spread of malware, CU*Answers Network Services is deploying the following network security enhancements:

    • Botnet filtering
      • Botnets are computers infected with malicious software that are controlled by remote computers (called command-and-control computers) on the Internet without the owner’s knowledge. This protection will block network-connection attempts to known command-and-control computers, helping to prevent malware-infected PCs from being remotely controlled by an attacker.
    • Geo-IP filtering
      • Geo-IP filtering restricts access to and from certain international networks to your internal credit union network. When Geo-IP filtering is enabled, access to or from these global locations (such as Asia, Eastern Europe, etc.) will be blocked by the firewall. Many network attacks are launched from computers in these parts of the world, and the vast majority of credit union networks do not require access to systems in these locations.

    Who will be getting this enhanced security?

    These security upgrades will be deployed for all CU*Answers Network Services clients with a managed firewall and with a current Comprehensive Gateway Security Suite Bundle subscription.

    When will the enhanced security updates be deployed?

    We will be deploying them between now and March 13.

    How much does this enhanced security cost?

    There is no cost for this extra protection for CU*Answers Network Services clients with a managed firewall and with a current Comprehensive Gateway Security Suite Bundle subscription.

    What if I’m not a CU*Answers Network Services client?

    If you are not a CU*Answers Network Services client with a managed firewall or if you do not have a current Comprehensive Gateway Security Suite Bundle subscription, please contact us at
    helpdesk@cuanswers.com or 800.327.3478, ext. 266.

    From the Help Desk, brought to you by CU*Answers Network Services

    ATTENTION SGMS REPORT RECIPIENTS: Do you know how your firewall is set up?

    Recently, we have noticed an increased frequency of these questions to credit union staff during an examination. Given the increased focus on cybersecurity for credit unions, we’d like to help you prepare to answer this question with confidence the next time it’s asked.

    Schedule a FREE Firewall Review Today!
    This review, which we recommend be done annually, can be used to supplement your internal audit program and your IT vendor due diligence. During this 30-60 minute WebEx session, we’ll review your firewall settings with you, presenting the information in an easy-to-understand format and answering any questions you may have about your firewall setup.

    We’ll document any changes that we make during the review. While we won’t make any changes without your permission, we will bring to your attention any of your firewall configurations that may be outdated and in need of removal. For example, if you’ve upgraded a phone system or ATM, the old network configurations may no longer be needed.

    The best part is, the firewall review is absolutely FREE! Up to one hour of consultation per firewall is included at no charge for managed firewall clients.

    So contact Network Services to schedule a firewall review today and be prepared the next time an auditor asks you if you know how your firewall is set up!

    From the Help Desk – Brought to you by CU*Answers Network Services

    ATTENTION SGMS REPORT RECIPIENTS: Starting tomorrow, Network Services will be auditing all firewall reporting to standardize report recipients and categories. This process will be tracked through a Latitude ticket for your credit union and will ensure that you are getting the full complement of reports available. We will also be reviewing the recipients of these reports, so adjustments can be made for contact changes at the credit union. You may be contacted by one of our team members with questions or clarification on the new setup.

    In order to reduce the number of reports you’re receiving, all of your branch office reports will be consolidated into a single report.

    Additionally, we will be discontinuing the daily and monthly reports. If you need more frequent reporting or alerting, please contact the Help Desk for options.

    For Complete Care clients, you will be set up with a distribution group of “reports@yourcu.com” and will have members designated as recipients added to that group. In the coming weeks, we will also be directing RMM and backup reports to this group.

    From the Help Desk

    ATTENTION CU*ANSWERS NETWORK SERVICES COMPLETE CARE CLIENTS: Symantec and RMM Software – This message is a reminder to confirm that your workstations are equipped with Symantec Endpoint Protection and RMM Agent software. Please distribute to your staff to ensure all workstations are checked.  Symantec Endpoint Protection To ensure all of your workstations are equipped with Symantec Endpoint Protection for anti-virus, anti-malware, and DLP protection, we need you to confirm that the Symantec icon  is visible in your taskbar or system tray (lower right corner of your Windows desktop). If you do not see it or need assistance locating it, please contact the help desk.  RMM Agent If you have not already done so, please also check to see if the RMM Agent icon RMM agent icon is visible in your taskbar or system tray (lower right corner of your Windows desktop). The agent needs to be present to ensure we can provide remote assistance, monitoring, and patching to your workstation. If you do not see it or need assistance locating it, please contact the help desk.

    From the Help Desk

    ATTENTION CU*ANSWERS NETWORK SERVICES COMPLETE CARE CLIENTS: Symantec and RMM Software – This message is a reminder to confirm that your workstations are equipped with Symantec Endpoint Protection and RMM Agent software. Please distribute to your staff to ensure all workstations are checked.

     Symantec Endpoint Protection

    To ensure all of your workstations are equipped with Symantec Endpoint Protection for anti-virus, anti-malware, and DLP protection, we need you to confirm that the Symantec icon  is visible in your taskbar or system tray (lower right corner of your Windows desktop). If you do not see it or need assistance locating it, please contact the help desk.

     RMM Agent

    If you have not already done so, please also check to see if the RMM Agent icon RMM agent icon is visible in your taskbar or system tray (lower right corner of your Windows desktop). The agent needs to be present to ensure we can provide remote assistance, monitoring, and patching to your workstation. If you do not see it or need assistance locating it, please contact the help desk.

    CU*Answers Launches Technology Users Group

    CU*Answers Network Services has organized and launched a new peer networking group for credit union technology professionals on the CU*BASE® core platform known as the CUSO Technology Users Group. The group exists to provide an open forum for the discussion and research of technology topics facing senior tech leaders in the credit union industry.

    The first meeting was held November 20-21, 2014 in Grand Rapids, Mich. and discussed topics including responses to the recent cyber security guidelines issued by the NCUA, incident response tactics and lessons learned over the past year, responding to technology audits, and top technology initiatives for 2015. The group will meet two times per year at rotating venues with topics selected by participants.

    “This is a working panel where we’re each expected to bring a topic or research presentation to the table at each meeting,” explains David Wordhouse, VP Network Technologies at CU*Answers. “But we also bring questions, which result in great discussion. ‘How are you dealing with audit requirements? How did you respond to this question from the examiner? What are you doing for mobile device management? How can we save money as a group on technology investments?’ These are timely topics facing all credit unions.”

    The June 2015 meeting will be hosted by Honor Credit Union. For more information contact David Wordhouse at dwordhouse@cuanswers.com or Matt Sawtell at msawtell@cuanswers.com.

    Misfortune Cookie Leaves Millions of Home and Small Office Networks Vulnerable to Attack

    CU*Answers has recently become aware of a vulnerability that may affect home or small office networks and we wanted to pass the information on to our clients.

    Researchers from Check Point and Vulnerability Research Group recently discovered a critical vulnerability affecting millions of residential internet routers from various manufacturers. The vulnerability allows an attacker to remotely take over the device with administrator privileges and the attack is extremely simple to execute. The most recent estimates are that over 12 million devices in 189 countries are vulnerable. Most home networks use residential class internet routers, and some smaller credit union branches might as well.

    How does this affect me?

    If your device is compromised by an attacker, all connected devices including PCs, laptops, mobile devices, gaming consoles, smart TVs, and smart devices, are at increased risk of compromise. An attacker exploiting Misfortune Cookie can easily monitor your Internet connection, steal information, or attempt to directly infect devices in your network, from within your network.

    Is CU*Answers affected by Misfortune Cookie?

    No. CU*Answers does not use residential class equipment in our networks.

    How can I protect myself?

    • Check with the vendor of your equipment for firmware updates that address this issue. In some cases, updated firmware that fixes Misfortune Cookie has been available from vendors for several years, but are not being applied by customers.
    • Run up to date anti-virus software on your systems.
    • Keep all your devices up to date on firmware releases and software patches – not just PCs, but mobile devices, gaming consoles, smart TVs, etc.
    • Employ a firewall in your network and enable the firewall on PCs and Laptops.
    • Encrypt devices and data containing sensitive information.
    • Ensure browser connections always use HTTPS encrypted connections when logging on to web sites or sending confidential data.

    Resources

    CERT Vulnerability Note VU#56144

    Check Point information on Misfortune Cookie

    List of suspected vulnerable equipment

    Misfortune Cookie Leaves Millions of Home and Small Office Networks Vulnerable to Attack

    CU*Answers has recently become aware of a vulnerability that may affect home or small office networks and we wanted to pass the information on to our clients.

    Researchers from Check Point and Vulnerability Research Group recently discovered a critical vulnerability affecting millions of residential internet routers from various manufacturers. The vulnerability allows an attacker to remotely take over the device with administrator privileges and the attack is extremely simple to execute. The most recent estimates are that over 12 million devices in 189 countries are vulnerable. Most home networks use residential class internet routers, and some smaller credit union branches might as well.

    How does this affect me?

    If your device is compromised by an attacker, all connected devices including PCs, laptops, mobile devices, gaming consoles, smart TVs, and smart devices, are at increased risk of compromise. An attacker exploiting Misfortune Cookie can easily monitor your Internet connection, steal information, or attempt to directly infect devices in your network, from within your network.

    Is CU*Answers affected by Misfortune Cookie?

    No. CU*Answers does not use residential class equipment in our networks.

    How can I protect myself?

    • Check with the vendor of your equipment for firmware updates that address this issue. In some cases, updated firmware that fixes Misfortune Cookie has been available from vendors for several years, but are not being applied by customers.
    • Run up to date anti-virus software on your systems.
    • Keep all your devices up to date on firmware releases and software patches – not just PCs, but mobile devices, gaming consoles, smart TVs, etc.
    • Employ a firewall in your network and enable the firewall on PCs and Laptops.
    • Encrypt devices and data containing sensitive information.
    • Ensure browser connections always use HTTPS encrypted connections when logging on to web sites or sending confidential data.

    Resources

    CERT Vulnerability Note VU#56144

    Check Point information on Misfortune Cookie

    List of suspected vulnerable equipment

    Greensboro Municipal CU Selects CU*Answers Network Services

    Greensboro Municipal Credit Union, based in Greensboro, NC has chosen CU*Answers Network Services (CNS) as their managed technology partner, utilizing the Complete Care management services offering. The Complete Care service is specifically focused on the unique needs of credit unions and encompasses both day to day operational and strategic IT needs into a single unified technology management solution.

    “Making the decision to partner with CNS was an easy one and they are another great example of the CU*Answers Cooperative Model at work.” says Jerry Wise, CEO at Greensboro Municipal CU. “By partnering with CNS we gained the knowledge and expertise of someone that knows the CU*Answers network as well as ours ultimately makes for a more efficient network.”

    Additionally, says Mr. Wise “Knowing that I have a partner who is monitoring our network security and our regulatory IT requirements at all times allows me to reassure our membership with confidence that all of their financial information is safe.  The service they are providing me is one that I could not replicate through hiring or partnering with anyone else.”

    Greensboro Municipal Credit Union finished their migration to Complete Care in October 2014.

    From the Help Desk: Update on Recent RMM Deployment

    ATTENTION CU*ANSWERS NETWORK SERVICES COMPLETE CARE CLIENTS AND SGMS REPORT RECIPIENTS: As you may already know by the new icon  on your taskbar, CU*Answers Network Services recently deployed an RMM (remote monitoring and management) system to your managed servers and workstations.

    We Need Your Help!

    To ensure all of your workstations have the new RMM tool, we need you to confirm that the RMM Agent icon  is visible in the lower right corner of your Windows desktop (on your taskbar). If you do not see it or need assistance locating it, please contact the help desk.

    Features of the New RMM System

    • On-demand remote control of your workstations and servers: You no longer need to use WebEx. The new RMM offers one-click remote assistance, with prior notification from our team and only with your permission.
    • More user-friendly compliance reporting: From patch management to security, reports are now easier to read and have more of the information requested by credit unions and auditors.
    • Access to the RMM tool is available for client use: Contact our team if you are interested in a login to the same tool set we are using to manage your network.

    Third-Party Application Patching Coming Soon!

    Later this year, we will offer integrated patch management for third-party applications. With this feature, you will automatically receive patches providing you with seamless behind-the-scenes updates to software programs such as Adobe Acrobat, Java, QuickTime, Adobe Flash, and many more. We will provide further information on this new feature when it is available for deployment.

    Stay tuned in 2015 as we roll out additional features for your new RMM system including MDM (mobile device management), PC and laptop backups, and  client-enabled RMM access.

    CU*Answers Network Services is a full-service network technology solutions provider. We specialize in LAN/WAN design, implementation and management; network security; firewall management; IP telephony VOIP (voice-over-Internet protocol) solutions; records management; managed hosting solutions (facilities management), compliance and security audits (HIPAA/GLBA/SOX); high availability solutions; web site engineering, and hardware sales and support services. CU*Answers Network Services provides services to the education, retail, legal, medical, real estate, hospitality, and financial services industries as well as court systems and regional municipalities. Our financial services portfolio includes servicing over 150 credit unions across the country.

    Why CU*Answers Network Services?

    • Nationwide Network Reach: 24/7 real-time monitoring and management of thousands of devices and hundreds of networks across the U.S.
    • Compliance Expertise: policy development, implementation, and consulting for highly regulated industries
    • Proven high availability solutions for critical applications: hosted or on-premise
    • Custom, secure web application development by certified experts
    • Multiple state-of-the-art data centers
    More than just a service provider, we're an extension of your staff with the expertise to cut through the confusion and deliver the solutions you need at a price you can afford. Rest assured that if our team can deliver to the exacting standards required by highly regulated industries, CU*Answers Network Services can meet your needs too.
    www.cuasterisk.com | Phone: 616.285.5711 | Toll Free: 800.327.3478 x167 | Fax: 616.285.5735