Bank of England Testing Banks' Cyber Resilience

Britain's banks will have to show they could recover from a cyber-attack within hours to avoid customer payments being delayed to the next day, the Bank of England has announced 

The BoE said it would hold a pilot cyber stress test of lenders mid-2019 but individual results won't be published. The "severe but plausible" test will look at how banks' could withstand a cyber-attack and how quickly they would recover so that payments can continue.

The pilot test will look at the payments system of a bank going down, but future tests would also likely include data being corrupted, the BoE's Financial Policy Committee (FPC) said.

Banks, which the BoE did not name, will have to show that payments made on the day of the theoretical cyber-attack are completed that day.

"The pilot exercise would be launched in the summer. Ahead of that the Bank would engage with firms to arrange appropriate and proportionate coverage of the pilot exercise," the FPC said.

It also said that this year's annual stress test of major banks for resilience to market and economic shocks would be largely in line with the 2018 exercise, a nod to the Bank's view that lenders hold enough capital in general.

There would also be no major change to the thresholds that banks must stay above to pass the test without having to find more capital. The results are published in the fourth quarter. Next year's stress test will include CYBG bank, and the standalone ring-fenced arms of the main lenders.

Euronews:            Image: Nick Youngson

You Might Also Read:

Banks Attacks Up Sixfold Last Year:

Barclays Fights Off Cyber-Attacks Daily:

« Qbot Banking Malware Can Infect Cybersecurity Firms
WordPress Comprises 90% Of Hacked Sites »

CyberSecurity Jobsite
Perimeter 81

Directory of Suppliers

NordLayer

NordLayer

NordLayer is an adaptive network access security solution for modern businesses — from the world’s most trusted cybersecurity brand, Nord Security. 

North Infosec Testing (North IT)

North Infosec Testing (North IT)

North IT (North Infosec Testing) are an award-winning provider of web, software, and application penetration testing.

Practice Labs

Practice Labs

Practice Labs is an IT competency hub, where live-lab environments give access to real equipment for hands-on practice of essential cybersecurity skills.

Clayden Law

Clayden Law

Clayden Law advise global businesses that buy and sell technology products and services. We are experts in information technology, data privacy and cybersecurity law.

LockLizard

LockLizard

Locklizard provides PDF DRM software that protects PDF documents from unauthorized access and misuse. Share and sell documents securely - prevent document leakage, sharing and piracy.

IASME Consortium

IASME Consortium

IASME is one of five companies appointed as Accreditation Bodies for assessing and certifying against the UK Government's Cyber Essentials Scheme.

Zscaler

Zscaler

Zscaler enables the world’s leading organizations to securely transform their networks and applications for a mobile and cloud first world.

Cognizant

Cognizant

Cognizant offer services and solutions for IT Infrastructure Security, Enterprise Mobility and Internet of Things.

Viasat

Viasat

Viasat is a provider of high-speed satellite broadband services and secure networking systems covering military and commercial markets.

Plurilock Security Solutions

Plurilock Security Solutions

Plurilock is a real-time cybersecurity solution that uses artificial intelligence to identify, prevent, and eliminate insider threats.

Physec

Physec

Physec offers innovative security products and solutions for the Internet of Things ecosystem.

Defence Intelligence

Defence Intelligence

Defence Intelligence is an information security firm specializing in advanced malware protection.

US Secret Service

US Secret Service

The US Secret Service has a pivotal role in securing the nation’s critical infrastructures, specifically in the areas of cyber, banking and finance.

Krypsis

Krypsis

Krypsys is an information security company with a focus on helping you defend your information and data against emerging security threats.

IoTeX

IoTeX

Building the connected world. IoTeX is a fast, secure, and decentralized platform that connects real world devices/data to the blockchain.

Ostendio

Ostendio

Ostendio is a cybersecurity and information management solutions provider that develops affordable compliance solutions for digital health companies and other regulated entities.

Trace3

Trace3

Trace3 is a pioneer in business transformation solutions, empowering organizations to keep pace with the rapid changes in IT innovations and maximize organizational health.

Nudge Security

Nudge Security

Nudge Security offer the world's first-ever SaaS security solution to discover shadow IT and curb SaaS sprawl across any device or location and nudges employees towards optimal security behavior.

Project Cypher

Project Cypher

Project Cypher leverages the latest cybersecurity developments, a world class team of hackers and constant R&D to provide you with unparalleled cybersecurity offerings.

Databarracks

Databarracks

Databarracks deliver award winning IT resilience and continuity services. We help organisations get the most out of the cloud and protect their data, wherever it lives.

SecureDNE

SecureDNE

SecureDNE are a leading provider of cutting-edge Fractional CISO, Managed Cybersecurity Services, and Cybersecurity Engineering Solutions.