• ENEN
    • IT IT
    • FR FR
    • DE DE
    • ES ES
PARTNER LOGIN
  • ENEN
    • IT IT
    • FR FR
    • DE DE
    • ES ES

Auriga

  • COMPANY

    • About Us

    • Auriga History

    • Group

    • Our Values

    • Our Network

      • Partnerships

      • Certifications

      • Suppliers

    • CSR (ethical code)

      • CSR – Corporate Social Responsibility

  • BANKING

    • Overview

    • Needs

      • Channel Integration

      • Monitoring network

      • Marketing & Customer Relations

      • Accessibility of banking service

      • Corporate Banking

      • Banking Data Analysis

      • Branch of the Future

    • Products and Solutions

      • Shared Services

        • WinWebServer Architecture

        • Proactive Network Monitoring

        • One to One Marketing

      • ATM / Kiosks

        • WWS ATM

      • Internet / PC

        • WWS PC

      • Mobile Banking and Payments

        • WWS Mobile

      • Electronic payments

        • MyBank

      • Bank Marketing & Digital Signage

        • WWS One to One OMNIA

        • WWS Signage

        • WWS Perfect

        • WWS RSS Feed

        • WWS Simply Feed

      • Network Monitoring & Fraud Management

        • WWS Proactive Monitoring Manager

        • WWS Fraud Management System

        • WWS Simply Check

      • Call Centre

        • WWS Help Desk

      • Cash Handling

        • WWS Cash Handling

        • WWS Cash Management

      • Digital Invoicing and Document Management

        • WWS e-Invoicing

      • Branch

        • WWS Fill4Me and Bank4Me

        • WWS Greæter

        • WWS Customer Management

      • Business Analytics

        • WWS Business Analytics Management

        • WWS Asset Management

      • Cyber Security Platform

        • Lookwise Device Manager

  • NEWS & MEDIA

    • News

    • Press Release

    • Press Review

    • Blog

    • Videos

    • Infographics

  • RESOURCES

    • White Papers

    • Customer stories

    • Research

    • Brochures

  • CONTACT

    • Contact us

  • CAREERS

    • Work for Us

    • Online application

    • Job vacancies

Blog

  • Home
  • News & Media
  • Blog
  • Cybersecurity Awareness Month – How to tackle cyberattacks
cybersecurity awareness month

Cybersecurity Awareness Month – How to tackle cyberattacks

28 October 2021 / Blog

As October is National Cybersecurity Awareness Month (ECSM), it is important that key decision-makers in the financial services sector know the best strategies to ensure the security of banks’ assets as well as how to efficiently and reliably defend their networks.

This is especially true and important in the age of digitalisation, where the surge in remote working (boosted by the Covid-19 emergency) and IT budget constraints, IT vulnerabilities have intensified.

The increase in the number of security breaches is because the number of potential targets has expanded, from laptops to smartphones to Internet of Things (IoT) devices, which pose a constant security risk to both individuals and financial institutions. These act as ideal “entry points” for cybercriminals.

Of course, security breaches lead to loss of revenue, reputation, and customers for banking institutions, as well as interruptions to operations. For the first half of 2020, banks endured a 238% spike in cyberattacks and for five consecutive years, financial services have been the most targeted sector. Let’s explore this in more detail:

What are the main attacks?

There are different ways threat actors can gain access to your business network. Here are just some examples.

1. Phishing

It can be defined as the use of social engineering and technical subterfuge to defraud an online account holder of their financial personal information or login credentials by posing as a trusted identity.

Phishing attack can be executed through multiple means including phishing emails, phone calls, web link manipulation and website forgeries to convince users to divulge sensitive information or participate unknowingly in fraudulent transactions

2. DDoS attacks

They consist in launching an attack on a bank which can cause slow website response times and prevent customers from accessing their online banking and other financial applications.

This way attackers access sensitive customer data such as financial credentials and open fake accounts, access funds and continue their pattern of fraudulent activities. In 2020 a 30% increase in DDoS attacks was reportedly targeted at the financial services industry. Increases were seen in traffic volumes, attack duration and packets per second.

3. APTs

Advanced persistent threats are stealthy threat actors. They are typically a nation state or a state-sponsored group, which gain unauthorised access to a computer network and remains undetected for an extended period. The financial sector has been highly affected by APTs, and banks are particularly targeted.

These sophisticated threats combine advanced intrusion and spoofing techniques to allow hackers to gain access to account management applications, for example.

4. RaaS – Ransomware-as-a-Service

Ransomware has evolved into a ‘service offering’ known as Ransomware-as-a-Service (RaaS) that enables inexperienced cybercriminals to deploy an attack with relative ease.

Essentially, it is a subscription-based model that enables affiliates to use already-developed tools to carry out attacks and permits cybercriminals, that are unfamiliar with malware development, to outsource this skill and easily deploy an attack.

Cybersecurity for financial institutions

Standalone solutions are not enough to defend networks. Financial institutions need to consolidate a variety of protection mechanisms on a single platform such as application whitelisting, full encryption of all hard disks and media, file system integrity protection, hardware protection and a firewall to stop network attacks.

That said, organisations should also find innovative ways to use their existing resources more effectively. For instance:

  • Automating more processes to identify and respond to issues in real-time before they impact business operations.
  • Equalising workloads based on broader threat analysis with a particular focus on, for example, data leaks or introduced malware.
  • Breaking down silos by introducing advanced self-service platforms.
  • Consolidating activities such as combining effective cybersecurity strategy with proactive device monitoring to maintain service availability.

Overall, the pandemic and remote working drove a significant increase in cyberattacks and this appears to be a trend that is set to continue into the new year.

Cybersecurity is a long-term investment and organisations must teach customers and employees how to identify potential threats through training, education, and awareness programs. To circumvent such attacks, financial institutions must act now and enhance their operational resilience.

To learn more about cybersecurity in banking and how LDM can support financial institutions check out our infographic.

     
  • Tweet
  • News
  • Press Release
  • Press Review
  • Blog
  • Videos
  • Infographics

SUBSCRIBE TO THE NEWSLETTER

Subscribe today and you will get:

  • News on software solutions
  • Customer stories
  • Invitations to industry events and conferences
  • Detailed reports
  • Market research
  • and much more!
CONTACT

HEADQUARTER - BARI
Via Don Luigi Guanella, 17
70124 Bari - Italy

TEL: +39.080.5692111

info@aurigaspa.com

Milan office
Rome office
Brussels office
London office
Madrid office
Pamplona office
Mexico City office

BUSINESS CONTACTS
Niccolo Garzelli - Auriga - Footer

Niccolò Garzelli Milan office
niccolo.garzelli@aurigaspa.com

MARK ALDRED London office
mark.aldred@aurigaspa.com

Stefano Cipollone Milan office
stefano.cipollone@aurigaspa.com

Daniela Azzolini Milan office
daniela.azzolini@aurigaspa.com

MARTIN ESPINELMexico City office
martin.espinel@aurigaspa.com

lukasz-feluch

ŁUKASZ FELUCHLondon office
lukasz.feluch@aurigaspa.com

RUDY DE WOLFBrussels office
rudolf.dewolf@aurigaspa.com

EXPLORE
  • About Us
  • WinWebServer
  • Blog
  • White Papers
  • Research
LATEST NEWS
  • Auriga-trends-2023-blog-ENG

    Banking and fintech trends to watch in 2023

    24/01/2023
  • f1-solutions-image-press-release

    AURIGA EXPANDS INTO CENTRAL & EASTERN EUROPE MARKET FOR DIGITAL SELF SERVICE BANKING TECHNOLOGY

    19/01/2023
  • atm-operation-at-bank-blog-ENG

    Protecting access to cash in a digital world

    20/12/2022

Connect with us

SUBSCRIBE TO THE NEWSLETTER

Auriga Spa - Copyright © 2022 - All rights reserved | Legal Notice | Privacy Policy
P.I. 05566820725 - Capital € 1.196.055 i.v. - R.E.A. 426675

TOP
We, and third party websites you may interact with via our site, use cookies to collect site usage data and improve your experience, this includes permanent and profiling cookies.
By clicking ‘Accept’ you agree to allow cookies, however you can disable this through your browser settings at anytime. If you opt to totally or partial disable cookies, this might compromise some features on the website.
For more information on our cookie policy, go to the Legal Notice page.
Accept

Privacy Overview

This website uses cookies to improve your experience while you navigate through the website. Out of these, the cookies that are categorized as necessary are stored on your browser as they are essential for the working of basic functionalities of the website. We also use third-party cookies that help us analyze and understand how you use this website. These cookies will be stored in your browser only with your consent. You also have the option to opt-out of these cookies. But opting out of some of these cookies may affect your browsing experience.
Necessary
Always Enabled
Necessary cookies are absolutely essential for the website to function properly. This category only includes cookies that ensures basic functionalities and security features of the website. These cookies do not store any personal information.
Non-necessary
Any cookies that may not be particularly necessary for the website to function and is used specifically to collect user personal data via analytics, ads, other embedded contents are termed as non-necessary cookies. It is mandatory to procure user consent prior to running these cookies on your website.
SAVE & ACCEPT