Banks Under Constant Hacker Attacks

Uploaded on 2015-10-28 in TECHNOLOGY--Hackers, NEWS-Cybersecurity News, FREE TO VIEW, BUSINESS-Services-Financial

 

It makes sense that hackers would go after banks. When you're looking to steal as much money as you can, as quickly as possible, why not go where the money is?

But the effort that hackers expend to break into financial institutions' computer systems every day is pretty staggering, according to a new report from information security firm Websense. The report found that companies in the finance sector encounter "security incidents" 300% more often than other industries.
 
"The financial services sector has been targeted for years now, as you know, and they do have more mature security practices than other industries," says Rajiv Motwani, director of security research at Websense Security Labs. "But still, they're a very lucrative target for attackers, and the numbers speak for themselves."

Searching for weakness
There's a surprising amount of preparation that goes into a successful cyberattack. Typically, criminals start by researching the company they're trying to breach -- learning employees' names, email addresses and roles within the company.
After that, the next step is what Motwani calls the "lure stage." That's where hackers try to fool employees into accidentally opening up a hole in their company's cyber defenses by, for instance, clicking a link or double clicking a virus-filled attachment in an email.
Last year alone, Websense recorded 4.9 million different "lure" attempts against financial institutions worldwide, representing a third of all lure attempts worldwide, according to the Websense report.
"Hackers are investing disproportionately in terms of financial services victims," Motwani says.

Why you should care
With this much attention from hackers, it's inevitable that some attempts will succeed, threatening customer privacy and financial assets, Motwani says. While customer funds lost because of security breaches are typically restored, it can take time for a bank to investigate and put money back in your account.
But even if your account or financial institution is never breached, you still pay a cost for cyberattacks. Keeping hackers at bay is extremely expensive -- banks can spend as much as $2,500 per employee on cybersecurity annually, according to a report from PricewaterhouseCoopers. Financial institutions also typically carry cybersecurity insurance to cover losses from hackers.
The money to pay for that doesn't materialize out of thin air -- those costs end up being reflected in higher fees for checking accounts and other bank services.
"It is more expensive today to maintain a higher security posture for banks," Motwani says. "Clearly somebody's paying the cost."
Of course, more than your money is at risk during a cyberattack. Hackers could take your personal information, too, and use it to compromise your credit.
Bankrate: http://http://bit.ly/1LR13aP

 

 

« Jobs Are Disappearing to the Digital Revolution
Apple Removes Spy Apps »

CyberSecurity Jobsite
Perimeter 81
Cyrin

Real Attacks. Real Tools. Real Scenarios.
Schedule a demo

Go Cyber

Training that transforms behaviours

Sign Up: Cyber Security Intelligence Newsletter

Directory of Suppliers

Practice Labs

Practice Labs

Practice Labs is an IT competency hub, where live-lab environments give access to real equipment for hands-on practice of essential cybersecurity skills.

Clayden Law

Clayden Law

Clayden Law advise global businesses that buy and sell technology products and services. We are experts in information technology, data privacy and cybersecurity law.

CSI Consulting Services

CSI Consulting Services

Get Advice From The Experts: * Training * Penetration Testing * Data Governance * GDPR Compliance. Connecting you to the best in the business.

DigitalStakeout

DigitalStakeout

DigitalStakeout enables cyber security professionals to reduce cyber risk to their organization with proactive security solutions, providing immediate improvement in security posture and ROI.

Syxsense

Syxsense

Syxsense brings together endpoint management and security for greater efficiency and collaboration between IT management and security teams.

Security Mentor

Security Mentor

Security Mentor provides innovative, online security awareness training designed for how people learn and work.

HUB International

HUB International

HUB is one of the largest insurance brokers in the world. HUB Risk Services provides the full range of expert consulting to identify risks, reduce exposure to loss and manage claims issues.

Cybereason

Cybereason

Cybereason provides attack protection with cutting edge EDR and XDR, and industry recognized consulting services to support organizations throughout any stage of the incident lifecycle.

CSA Events

CSA Events

Cloud Security Alliance conducts a series of conferences around the world. This listing provides a link to details of upcoming events.

MixMode

MixMode

MixMode's PacketSled platform delivers network monitoring, deep forensic analysis and incident response.

Jetico

Jetico

Jetico provides pure & simple data protection software for all sensitive information throughout the lifecycle. Solutions include data encryption and secure data erasure.

QuickLaunch

QuickLaunch

QuickLaunch transforms how cloud-savvy institutions and companies manage human and device authentication, authorization, access control and integration.

MicroEJ

MicroEJ

MicroEJ is a software vendor of cost-driven solutions for embedded and IoT devices.

Bace Cybersecurity Institute (BCI)

Bace Cybersecurity Institute (BCI)

Bace Cybersecurity Institute focuses on understanding, empowering and taking action across four critical areas driving continual improvement toward a safer, more secure cyber world.

ComoNExT Innovation Hub

ComoNExT Innovation Hub

ComoNExT is a Digital Innovation Hub and a startup incubator with a focus on the issues of digital transformation and Industry 4.0.

Splone

Splone

Splone is a Berlin-based IT security research team and consultancy. We help improve IT-security by offering red team assements, penetration tests, audits and customized consulting.

CliftonLarsonAllen (CLA)

CliftonLarsonAllen (CLA)

CLA exists to create opportunities for our clients through industry-focused advisory, outsourcing, audit, tax, and consulting services.

U2opia Technology

U2opia Technology

U2opia is a consortium with a proven track record of delivering groundbreaking technology, cybersecurity, and innovative business solutions.

UM6P Ventures

UM6P Ventures

UM6P Ventures is an African based early-stage ventures firm operating two funds; a Digital Transformation fund and a Deeptech Ventures fund.

COPA-DATA

COPA-DATA

COPA-DATA is the only independent software manufacturer to combine in-depth experience in automation with new possibilities of digital transformation – reliable, future-proof and operating worldwide.

Amyna Systems

Amyna Systems

Amyna has developed an IoT cybersecurity platform that prevents malignant attacks, helping users to protect themselves from cyberattacks.