June 29,2004 This is a Special Tech Alert. It addresses FDIC guidance on virus protection Tips for safe computing in the wake of a new Trojan threat One wrong click -- and how to keep your customers from making it Microsoft's Internet Information Server (IIS) is allowing a JavaScript to be added as a footer to certain files. This is taking advantage of unpatched software, and the JavaScript in this case is malicious in nature. It has been reported that this "Trojan" program could allow an infected user's computer to be operated remotely, unknown to the owner. Those using Internet Explorer may be exposed and Microsoft says it is important to have your browser security settings on High -- but there is a downside to such settings. It is important that the financial institution, its employees and customers are aware of safe-computing practices, updating software and the proper use of anti-virus programs and firewalls to mitigate the risks inherent to everyday Web surfing. Prevention is easier than cleansing. Know what to do and what to look for. Mitigate your risks and reduce your exposure to reputational risk. Technology works in nanoseconds; you have to be fast. FDIC Guidance on Virus Protection As you inform your customers and employees of this latest threat, be aware the FDIC issued guidance and recommends a strong anti-virus protection being incorporated into your information security program. Read our recap here on BOL. Practicing Safe Computing in the Age of "TTCD" Trojan Transmitted Computer Diseases The latest nasty trojan (JS.Scob.Trojan), discovered June 24, 2004, affects Microsoft's Internet Information Server (IIS). The risks, however, are not restricted only to these web servers. This is a Trojan, after all, and the curious end-users who unknowingly click on a web page delivered by one of these infected servers can quickly become infected as well. The fix, according to Microsoft is to tighten your email and Internet Browser security settings. Read the article and learn how to apply the antidote to this Trojan Transmitted Computer Disease One Wrong Click One phony email can catch you! It illustrates the sad truth that scammers are getting smarter and slicker, and that means the likelihood of your customers falling prey to their tricks grows higher every day. Much has changed since the early days when phishers could barely string together a coherent sentence and their emails were chock full of misspelled words. Read about specific things to look for and how PayPal is dealing with this problem. One Wrong Click Attend the Security Officers' Workshop this September in Philadelphia The world of security and especially IT security has changed and in many instances the practices haven't - and they need to change in order to keep your customers confident and secure. The Internet can be the source of valuable information when used for investigations and as an anti-money laundering due-diligence tool. Attend this Workshop to learn how to take advantage of searching the "invisible web," the "historical web" and other little-known sources of information. If new technology processes can help, you need to know about them. In this workshop you will learn how to uncover information that will help you to stay on top of the changing measures. Plan to attend the Security Officers' Workshop and learn how to get your financial institution up to speed. Register Now!  TECH RELATED ITEMS IN THE BANKER STORE Suspicious Activity Reporting   $269.00  Job Description - Electronic Banking Officer   $30.00  Pro-Active Approaches to Fraud Prevention   $269.00