Web linking Identifying Risks Risk Management Techniques

03-CU-08 / April 2003
Web linking Identifying Risks Risk Management Techniques
To
All Federally-Insured Credit Unions
Subject
Cybersecurity
Status
Active
To
All Federally-Insured Credit Unions
Subj
Weblinking Identifying Risks Risk Management Techniques

The purpose of this letter is to assist credit unions in identifying risks posed by the use of “weblinks” on their websites and suggest a variety of risk management techniques to mitigate these risks.

A large number of credit unions maintain sites on the World Wide Web. Virtually every website contains weblinks. A weblink is a word, phrase, or image that contains coding that will transport the viewer to a different part of the website or a completely different website by clicking on it. While weblinks are a convenient and accepted tool in website design, their use can present certain risks. The primary risk posed by weblinking is viewer confusion about whose website they are viewing and who is responsible for information, products, and services available through that website.

Credit unions using weblinks are encouraged to review the enclosed guidance that was developed jointly with other federal regulatory agencies. This guidance applies to credit unions that develop and maintain their own websites, as well as those using service providers for these functions.

This letter supercedes NCUA Letter 02-FCU-04. If you have any questions, please contact your NCUA Regional Office or State Supervisory Authority.

Sincerely,

/S/

Dennis Dollar

Chairman