Home Resources Blog Are Financial Services the Golden Goose for Cybercriminals?

Are Financial Services the Golden Goose for Cybercriminals?

Admin Globaldots
01.08.2018
image 3 Min read

Paradoxically, these new digital platforms, along with a more competitive landscape where we are seeing lower costs and a lower barrier to entry, are making it even easier for cybercriminals to exploit customers. Indeed, with more and more people turning to online banking and using 3rd party apps, cybercriminals are now able to target an even larger pool of victims.

 

We have already seen in the UK, customers banking with the likes of Barclays, HSBC and Lloyds Bank to name but a few, being targeted by criminals via the malicious use of banking trojans.

Open Banking is a great illustration of all of this. Essentially Open Banking is a series of reforms that deal with how banks deal with consumer financial information. What it will effectively do is break the monopoly that banks once had over their customer’s account information. By doing so it will allow a new ‘generation’ of 3rd party businesses to compete with financial services organizations to be able to access customer data. All well and good you might think but there are new security challenges to face with these new organizations suddenly being able to access all of this consumer financial data. Where you now have sensitive data passing via an open interface, it becomes extremely vulnerable to cyberattack.

We have already seen in the UK, customers banking with the likes of Barclays, HSBC and Lloyds Bank to name but a few, being targeted by criminals via the malicious use of banking trojans. Such activity targets customers by spamming them with emails containing a type of virus essentially – clicking on a link within the email effectively allows the hackers in and then they are free to do what they want.

{% module “module_15761623471821293″ path=”/GlobalDots_June2019 Theme/Custom Modules/Blog_Download”, label=”Blog_Download”, link=”https://www.globaldots.com/bad-bot-report-2019″ %}

So what do the statistics on financial services cybercrime tell us? Well, for example, a very recent report by ZeroFOX suggested a 56% year-over-year increase in digital threats targeting the financial space. As part of the report, researchers scanned 2.9 billion pieces of content and found more than 8.9 million security events in a 12-month period. Interestingly, the report showed that financial services firms are more prone to corporate social media account takeover. Unsurprisingly, fraud made up 40% of all cyberattack activity against financial services including money-flipping schemes, customer giveaway scams and scams related to cryptocurrency; fake mobile apps also made an appearance.

Another report by Fortinet illustrates the impact that cyber threats have had on several industries, including financial services. It highlighted the massive growth in one particular threat, Coinhive which focuses on Monero cryptocurrency – cybercriminals were able to install JavaScript files onto compromised websites and make illicit gains. And even though the cybercriminals were eventually thwarted by the dismantling of Coinhive, those behind the attacks will be developing new ways of launching successful attacks.

And let us not forget that financial services firms are also under the regulatory microscope; here in the UK, the FCA is able to levy fines on those organizations that are found to be wanting if their customers suffer due to a cyber attack.

There are practices that organizations can put into action, especially those that promote governance and put cyber risk on the board agenda. How many big fines need to be paid before the C-suite understands the importance of proper investment in solutions and training that can help to defend from attack? Organizations need to be identifying and protecting information assets, they need to be alert for emerging threats and they need to be ready to respond. Also, keep testing and refining defenses – cybercrime techniques advance at a rapid pace.

Ultimately, there is no silver bullet to defend against all of these growing and ever-more sophisticated attacks. The potential rewards for cybercriminals targeting financial institutions can be potentially staggering and so those organizations in this industry must rely on threat intelligence in order to identify threats and understand the impact that a cyberattack could have on network security and customer confidence. Such threat intelligence highlights those threats that are perhaps no longer active but where there is still a cycle of risk development; just like a medusa, when one threat is vanquished another quickly fills the void.

If you have any questions about how we can help you optimize you protect your business against cyberattacks, contact us today to help you out with your performance and security needs.

Learn More

You’ll Need Zero Trust, But You Won’t Get It with a VPN
SD-WAN and SASE
Eyal Webber Zvik, Cato Networks 12.01.23

Properly implemented, a zero trust architecture provides much more granular and effective security than legacy security models. However, this is only true if a zero trust initiative is supported with the right tools. Legacy solutions, such as virtual private networks (VPNs), lack the capabilities necessary to implement a zero trust security strategy. Zero Trust Security is […]

Read more
4 Ways Where Remote Access VPNs Fall Short
SD-WAN and SASE
Eyal Webber Zvik, Cato Networks 09.01.23

The Global Content Delivery Network (CDN) market is expected to grow by $42.4 billion between now and 2032.

Read more
slider item
Content Delivery Network (CDN)
Francesco Altomare, Southern Europe Regional Manager @ GlobalDots 04.01.23

A Content Delivery Network (CDN) is a globally distributed network of web servers or Points of Presence (PoP) whose purpose is to provide faster content delivery. The content is replicated and stored throughout the CDN so the user can access the data that is stored at a location that is geographically closest to the user. […]

Read more
Unlock Your Cloud Potential
Schedule a call with our experts. Discover new technology and get recommendations to improve your performance.
Book a Demo