News Center
  1. Covetrix responds to Fast Approaching Regulatory Deadlines
    (May 23rd, 2008) Covetrix Security Awareness training was just released in response to the top regulatory priority guidelines this year; the new IT Examiner Questionnaire and Identity Theft Red Flag Rules. Both requirements mandate new levels of documentation, training and awareness throughout institutions. The FDIC's purpose behind these new guidances is for insured depository institutions to have security programs that ensure the confidentiality of customer information, anticipate and protect against security threats and unauthorized access or use of customer information, and ensure proper disposal of customer information.
  2. Incident Respsonse Plans :: Why You need one!
    (May 20th, 2008) Why should financial institutions care about phishing attacks aimed at their customers? There are several reasons. First, phishing is a genuine threat, not only to their customers, but to their company as well. Financial institutions are targeted more often than any other business. It is estimated that over 90% of phishing attacks are aimed at customers of banks and credit card companies.
  3. Identification Theft
    (March 27, 2008) Does your organization have a written identity theft prevention program in place? Such a program involves educating your customers and members about the importance of identification theft and letting the stakeholders in your business know that you share their concerns about this growing problem.
  4. Data Leaks: The Silent Attacker
    (February 21, 2008) Data leaks are increasingly becoming a challenge in security concerns with the unprecedented rise in communication mediums. Most data leaks are unintentional rather than deliberate, but can nevertheless cause irreparable damage to a company’s clientele, reputation, or compliance requirements for maintaining confidentiality.
  5. Sophisticated Attacks on Community Financial Institutions Increasing!
    (January 3, 2008) Scammers are getting bolder and more brazen in their abilities to get personal information from banking customers as they aggressively target the smaller locally owned community financial institutions.
  6. Security Threats on the rise yet again!
    (August 30, 2007) Storm Worm pursues more members.The group responsible for propagating the malicious program commonly known as the Storm Worm changed tactics this week, using e-mail messages masquerading as verification announcements from online Web sites and clubs to lure victims.
  7. DST Changes affecting Time-based controls
    (February 1, 2007) New U.S. Daylight Savings Times rules go into effect in March 2007. Consequently, customers whose network components rely on the default U.S. "Summertime" clock settings will be affected and require update implementation. Covetrix Security Team has compiled the necessary implementations for various operating systems to accomodate the new DST changes.
  8. Covetrix Enhances its Security Solutions
    (June 27, 2006) To enhance our security solutions, Covetrix has integrated 2-factor authentication, E-mail encryption, and identity technology to provide our customers with the best solutions; offering total mobility with maximum flexibility.
  9. New Cisco Security Components
    (February 16, 2006) Covetrix was one of the only 2 Cisco Partners in the United States to Beta test the new Security Components released this week by Cisco. These products include the Cisco Security Management Suite (CSMS), an integrated security-event manager that includes the new Cisco Security Manager, and a revamped Cisco Security Monitoring, Analysis, and Response System (MARS). Cisco has also enhanced the SSL VPN and antimalware capabilities of its ASA 5500 security appliance.
  10. Windows WMF Exploit
    (January 6, 2006) Windows Operating Systems are the target of an attack. Hackers have been exploiting a flaw in a type of Windows graphics files, known as WMF, or Windows Meta File. What's especially dangerous about the attacks: Your computer could be infected with viruses, spyware or other malicious programs just by viewing a Web page, an e-mail, or an Instant Message that has one of these contaminated images.
  11. Major Identity Theft Ring Emerges
    (August 23, 2005) A major identity theft ring has been discovered that affected at least 50 banks. The operation, which is being investigated by the FBI, is gathering personal data from "thousands of machines" using keystroke-logging software.
  12. VoIP Security Risk Guidance
    (August 9,2005) The Federal Deposit Insurance Corporation(FDIC) is providing guidance on the security risks associated with voice over Internet protocol (VoIP). The same risks that can harm or infect Internet data networks can interfere with VoIP and cause significant operational risks to financial institutions, enterprise businesses, and government agencies.
  13. Spyware Guidance to Mitigate Risks
    (July 27,2005) The FDIC has issued a guidance to financial institutions recommending an effective spyware prevention and detection program based on an institution's risk profile. This guidance discusses the risks associated with spyware from both a bank and consumer perspective and provides recommendations to mitigate these risks.
  14. Social Engineering
    (July 19, 2005) Social engineering is evolving so rapidly that technology solutions, security policies, and operational procedures alone cannot protect critical information. Even with these safeguards, hackers commonly manipulate employees into compromising corporate security.
  15. Pharming Capitalizes on Phishing's Success
    (July 18, 2005) Pharming - so named because scammers plant seeds and then harvest their crops - is a scam that redirects internet traffic to a computer designed to steal passwords and other personal information. This scam is so sneaky that victims don't even know they've been hit until the bills start arriving about a month later.
  16. Putting an End to Account-Hijacking Identity Theft
    (July 6, 2005) Updated information presented by the FDIC to supplement the December 2004 findings in "Putting an End to Account Hijacking."
  17. 10 Ways to recognize fake (spoof) emails
    (June 28, 2005) Find out how to recognize the various types of fake emails that you might receive.

  1. Covetrix responds to Regulatory Deadlines: IT Examiner Questionnaire :: ID Theft Red Flag Rules
    May 20th, 2008 | Covetrix Security Awareness training was just released in response to the top regulatory priority guidelines this year; the new IT Examiner Questionnaire and Identity Theft Red Flag Rules. Both requirements mandate new levels of documentation, training and awareness throughout institutions.
  2. Incident Response Plans Why You Should have one
    May 20th, 2008 | Why should financial institutions care about phishing attacks aimed at their customers? There are several reasons. First, phishing is a genuine threat, not only to their customers, but to their company as well. Financial institutions are targeted more often than any other business. It is estimated that over 90% of phishing attacks are aimed at customers of banks and credit card companies.
  3. Covetrix Webwatch and Websense Partner
    April 29th, 2008 | By combining our network security testing expertise with Websense information protection legacy, our customers are secured from the inside out! Our customer pledge does not stop here. We provide continual security intelligence throughout the year to cover all facets of the security spectrum:
  4. Identification Theft
    April 1st, 2008 | Does your organization have a written identity theft prevention program in place? Such a program involves educating your customers and members about the importance of identification theft and letting the stakeholders in your business know that you share their concerns about this growing problem.
  5. Data Leaks: The Silent Attacker
    March 11th, 2008 | Data leaks are increasingly becoming a challenge in security concerns with the unprecedented rise in communication mediums. Most data leaks are unintentional rather than deliberate, but can nevertheless cause irreparable damage to a company’s clientele, reputation, or compliance requirements for maintaining confidentiality.
  6. Sophisticated Attacks on Community Financial Institutions Increasing!
    January 3rd, 2008 | In today’s high tech world, maintaining the privacy and protection of customers and employees’ information grows more and more difficult particularly for many financial institutions. These days’ scammers are getting bolder and more brazen in their abilities to get personal information from banking customers as they aggressively target the smaller locally owned community financial institutions.
  7. Why Using Non-Conventional Security Awareness Training is Crucial!
    January 3rd, 2008 | Financial Institutions can look to more in-depth examinations this year since the FDIC issued FIL-105-207, which updated the IT Examination Officer’s Questionnaire. The FDIC wants to make sure that insured depository institutions have security programs that guarantee the confidentiality of customer information in addition to anticipating and protecting against security threats and unauthorized access of customer information.