British Banks Are Hiding Cyber Attacks

Uploaded on 2017-12-14 in NEWS-Cybersecurity News, FREE TO VIEW, BUSINESS-Services-Financial

UK banks still aren’t telling regulators about all the cyber-attacks on the financial services industry despite a ten-fold increase in reports to the Financial Conduct Authority over the last four years.

"Our suspicion is that there’s currently a material under-reporting of successful cyber-attacks,” Megan Butler, the FCA’s director of supervision, has said. “The number of breaches relayed back to us looks modest when you set it against the number of attacks on the industry,” she said.

The number of material attacks reported by firms to the FCA has grown to 49 this year from five in 2014, as hacks become one of the biggest threats to the safety of the financial services industry. 

The type of hacks is also increasingly concerning for regulators and firms with ransomware making up 17% of attacks reported to the regulator, according to Ms. Butler.

The FCA opened an investigation in October into the hack of credit reporting company Equifax that saw personal data stolen from at least 143m people.

Outside of the FCA’s supervision, Uber Technologies paid hackers $100,000 (€84,770) to delete data taken from 2.7m UK customers in a 2016 security breach.

Ms. Butler emphasised the need for incidents to be reported to the regulator as they’re happening. She told the ICI global capital markets conference in London that the FCA had recently spent time with a number of US agencies looking at how they could better co-ordinate cyber supervision against the global threat. One of the challenges facing firms and regulators is the growing use of cryptocurrencies such as bitcoin in cyber-attacks.

Rob Wainwright, the director of Europol, said at a London conference last week that cryptocurrencies were a “great enabler for ransomware” because they allow people to act anonymously. 

He also highlighted the problem of cybercrime and fraud divisions in banks working separately when common actors could be better pursued together. The growing sophistication of technology is also a positive for banks though when it comes to crime.

Irish Examiner

You Might Also Read: 

RBS Bank Warns Of Increased Cybercrime:

Bank Data Breaches Are Up And It's An Inside Job:

UK Bank Fraud Landmark: TSB Repays Victim & Admits Giving Criminals Bank Accounts:

 

« 10 Things About The Network and Information Security Directive (NIS)
Bitcoin Exchanges Under Siege »

CyberSecurity Jobsite
Perimeter 81
Cyrin

Real Attacks. Real Tools. Real Scenarios.
Schedule a demo

Go Cyber

Training that transforms behaviours

Sign Up: Cyber Security Intelligence Newsletter

Directory of Suppliers

CYRIN

CYRIN

CYRIN® Cyber Range. Real Tools, Real Attacks, Real Scenarios. See why leading educational institutions and companies in the U.S. have begun to adopt the CYRIN® system.

Directory of Cyber Security Suppliers

Directory of Cyber Security Suppliers

Our Supplier Directory lists 7,000+ specialist cyber security service providers in 128 countries worldwide. IS YOUR ORGANISATION LISTED?

NordLayer

NordLayer

NordLayer is an adaptive network access security solution for modern businesses — from the world’s most trusted cybersecurity brand, Nord Security. 

IT Governance

IT Governance

IT Governance is a leading global provider of information security solutions. Download our free guide and find out how ISO 27001 can help protect your organisation's information.

Authentic8

Authentic8

Authentic8 transforms how organizations secure and control the use of the web with Silo, its patented cloud browser.

Cyberwatch

Cyberwatch

Cyberwatch is a Vulnerability Scanner & Fixer software that helps you to detect and fix the vulnerabilities of your Information System.

42Gears

42Gears

42Gears is a leading Unified Endpoint Management provider. Secure, monitor and manage tablets, phones, desktops and wearables.

Corelight

Corelight

Corelight is the most powerful network visibility solution for information security professionals.

US-Africa Cybersecurity Group (USAFCG)

US-Africa Cybersecurity Group (USAFCG)

USAFCG provides cybersecurity consulting services and delivers training programs for capacity building in Africa.

Cyber Command - Estonian Defence Forces

Cyber Command - Estonian Defence Forces

The main mission of the Cyber Command is to carry out operations in cyberspace in order to provide command support for Ministry of Defence’s area of responsibility.

Cyber Risk Aware

Cyber Risk Aware

Cyber Risk Aware provide a security awareness and phishing simulation platform that focuses on real threats and educates and empowers employees to be the first line of defence.

Berkeley Varitronic Systems (BVS)

Berkeley Varitronic Systems (BVS)

Berkeley Varitronics Systems is an engineering think tank delivering custom wireless RF engineering products and solutions including cyber security.

Hazy

Hazy

Hazy specialises in financial services, helping some of the world’s top banks and insurance companies reduce compliance risk.

ACSG Corp

ACSG Corp

ACSG Corp is a Critical Infrastructure Protection Company with a multi-disciplinary focus on building analytics software for various industry sectors.

Forta

Forta

Forta is a real-time detection network for security & operational monitoring of blockchain activity.

Axiata Digital Labs

Axiata Digital Labs

Axiata Digital Labs is the technology hub of Axiata Group Berhad Malaysia which is one of the leading groups in telecommunication in Asia.

Turk Telekom

Turk Telekom

Turk Telekom is the first integrated telecommunications operator in Turkey.

Closed Door Security

Closed Door Security

Closed Door Security is the only cybersecurity team in the north of Scotland offering everything from IASME Certification to CREST-Accredited penetration testing.

Systems Engineering

Systems Engineering

Systems Engineering is a SOC 2, Type 2-certified IT strategy and managed technology services provider.

Redcoat AI

Redcoat AI

Redcoat AI provide a comprehensive security platform that continuously evolves with the threats and opportunities presented by AI.

Intraframe US

Intraframe US

Intraframe US is a cybersecurity company in Memphis, specializing in Digital Forensics Incident Response and Managed IT services. We provide SMBs with a 24/7 SOC for proactive Cyber Threat Management.