Banks Under Constant Hacker Attacks

Uploaded on 2015-10-28 in TECHNOLOGY--Hackers, NEWS-Cybersecurity News, FREE TO VIEW, BUSINESS-Services-Financial

 

It makes sense that hackers would go after banks. When you're looking to steal as much money as you can, as quickly as possible, why not go where the money is?

But the effort that hackers expend to break into financial institutions' computer systems every day is pretty staggering, according to a new report from information security firm Websense. The report found that companies in the finance sector encounter "security incidents" 300% more often than other industries.
 
"The financial services sector has been targeted for years now, as you know, and they do have more mature security practices than other industries," says Rajiv Motwani, director of security research at Websense Security Labs. "But still, they're a very lucrative target for attackers, and the numbers speak for themselves."

Searching for weakness
There's a surprising amount of preparation that goes into a successful cyberattack. Typically, criminals start by researching the company they're trying to breach -- learning employees' names, email addresses and roles within the company.
After that, the next step is what Motwani calls the "lure stage." That's where hackers try to fool employees into accidentally opening up a hole in their company's cyber defenses by, for instance, clicking a link or double clicking a virus-filled attachment in an email.
Last year alone, Websense recorded 4.9 million different "lure" attempts against financial institutions worldwide, representing a third of all lure attempts worldwide, according to the Websense report.
"Hackers are investing disproportionately in terms of financial services victims," Motwani says.

Why you should care
With this much attention from hackers, it's inevitable that some attempts will succeed, threatening customer privacy and financial assets, Motwani says. While customer funds lost because of security breaches are typically restored, it can take time for a bank to investigate and put money back in your account.
But even if your account or financial institution is never breached, you still pay a cost for cyberattacks. Keeping hackers at bay is extremely expensive -- banks can spend as much as $2,500 per employee on cybersecurity annually, according to a report from PricewaterhouseCoopers. Financial institutions also typically carry cybersecurity insurance to cover losses from hackers.
The money to pay for that doesn't materialize out of thin air -- those costs end up being reflected in higher fees for checking accounts and other bank services.
"It is more expensive today to maintain a higher security posture for banks," Motwani says. "Clearly somebody's paying the cost."
Of course, more than your money is at risk during a cyberattack. Hackers could take your personal information, too, and use it to compromise your credit.
Bankrate: http://http://bit.ly/1LR13aP

 

 

« Jobs Are Disappearing to the Digital Revolution
Apple Removes Spy Apps »

ManageEngine
CyberSecurity Jobsite
Check Point
Cyrin

Real Attacks. Real Tools. Real Scenarios.
Schedule a demo

Sign Up: Cyber Security Intelligence Newsletter

Directory of Suppliers

NordLayer

NordLayer

NordLayer is an adaptive network access security solution for modern businesses — from the world’s most trusted cybersecurity brand, Nord Security. 

ZenGRC

ZenGRC

ZenGRC (formerly Reciprocity) is a leader in the GRC SaaS landscape, offering robust and intuitive products designed to make compliance straightforward and efficient.

Clayden Law

Clayden Law

Clayden Law advise global businesses that buy and sell technology products and services. We are experts in information technology, data privacy and cybersecurity law.

XYPRO Technology

XYPRO Technology

XYPRO is the market leader in HPE Non-Stop Security, Risk Management and Compliance.

Practice Labs

Practice Labs

Practice Labs is an IT competency hub, where live-lab environments give access to real equipment for hands-on practice of essential cybersecurity skills.

DTEX Systems

DTEX Systems

DTEX Systems is the global leader for insider risk management. We empower organizations to prevent data loss by proactively stopping insider risks from becoming insider threats.

Certification Europe

Certification Europe

Certification Europe (now Amtivo Ireland) is an accredited certification body which provides ISO management system certification, including ISO 27001.

SecureNinja

SecureNinja

SecureNinja provides professional training, certifications & professional services related to all facets of Information Technology and Cyber Security.

Inspirria Cloudtech

Inspirria Cloudtech

Inspirria Cloudtech is a specialized Cloud Technologies Services provider and Cloud Aggregator focused on executing cloud models for clients.

Council for Information & Communication Technologies (CTIC)

Council for Information & Communication Technologies (CTIC)

CTIC was set up to address specific issues in the field of ICT relevant to the implementation of electronic government.

Unit21

Unit21

Unit21 helps protect businesses against adversaries through a simple API and dashboard for detecting and managing money laundering, fraud, and other sophisticated risks across multiple industries.

Nucleon Security

Nucleon Security

Nucleon Endpoint Detection and Response EDR is the most effective way to protect the value created by your organization against any threat.

Kontex

Kontex

Kontex is a Cyber Security consultancy creating resilient solutions. From Strategy, Advisory and Implementation to Management and everything in between.

Opus

Opus

Opus dramatically reduces cloud security risks by enabling teams to define, orchestrate, automate and measure remediation processes across the entire distributed organization.

Eurotech

Eurotech

Eurotech provides Edge Computers and IoT solutions. We help to connect your assets and make them smarter through secure and agnostic hardware and software technologies.

Sekoia.io

Sekoia.io

Sekoia.io is a European cybersecurity company whose mission is to develop the best protection capabilities against cyber-attacks.

Acclaim Technical Services (ATS)

Acclaim Technical Services (ATS)

ATS provide operational products, services and solutions to the defense and intelligence communities for all types of critical mission needs.

IDCARE

IDCARE

IDCARE is Australia and New Zealand’s national identity & cyber support service. Our service is the only one of its type in the world.

Xantaro

Xantaro

Xantaro specializes in technologies, software and services for Carriers, ISPs, Hosting and Cloud Providers as well as for Operators of Data Centres and Campus Networks.

CyberMass

CyberMass

CyberMass provides Cyber Advisory/Consulting, Professional and Managed Services offering complete cybersecurity as a service protection to businesses.

Sciber

Sciber

Sciber - data-driven cybersecurity. Strengthen your cyber defence with proactive, science-based and improvement-driven services.