In This Issue:
- Beltway Report
- Bureau Report
- Mobile Payments
- Mortgage and Fair Lending Report
- Operations Report
- Preemption Report
- Privacy Report
- Arbitration Report
- TCPA Report
- Excerpt from BELTWAY REPORT:
FFIEC Issues the Alert on Heartblee -
On April 10, 2014, the Federal Financial Institutions Examination Council (FFIEC) issued its “OpenSSL ‘Heartbleed’ Vulnerability Alert.” The alert warned financial institutions that systems using the OpenSSL encryption method were at risk for cyberattacks. Specifically, the alert explained that an attacker could exploit a material security vulnerability in the OpenSSL cryptographic library, dubbed “Heartbleed,” to decrypt, spoof, or perform attacks on network communications. To address the vulnerability, the FFIEC urged financial institutions to immediately incorporate patched versions of OpenSSL into their systems and to ensure that the financial institutions’ third-party vendors also take risk mitigation steps.
Please see full publication below for more information.