• ENEN
    • IT IT
    • FR FR
    • DE DE
    • ES ES
PARTNER LOGIN
  • ENEN
    • IT IT
    • FR FR
    • DE DE
    • ES ES

Auriga

  • COMPANY

    • About Us

    • Auriga History

    • Group

    • Our Values

    • Our Network

      • Partnerships

      • Certifications

      • Suppliers

    • CSR (ethical code)

      • CSR – Corporate Social Responsibility

  • BANKING

    • Overview

    • Needs

      • Channel Integration

      • Monitoring network

      • Marketing & Customer Relations

      • Accessibility of banking service

      • Corporate Banking

      • Banking Data Analysis

      • Branch of the Future

    • Products and Solutions

      • Shared Services

        • WinWebServer Architecture

        • Proactive Network Monitoring

        • One to One Marketing

      • ATM / Kiosks

        • WWS ATM

      • Internet / PC

        • WWS PC

      • Mobile Banking and Payments

        • WWS Mobile

      • Electronic payments

        • MyBank

      • Bank Marketing & Digital Signage

        • WWS One to One OMNIA

        • WWS Signage

        • WWS Perfect

        • WWS RSS Feed

        • WWS Simply Feed

      • Network Monitoring & Fraud Management

        • WWS Proactive Monitoring Manager

        • WWS Fraud Management System

        • WWS Simply Check

      • Call Centre

        • WWS Help Desk

      • Cash Handling

        • WWS Cash Handling

        • WWS Cash Management

      • Digital Invoicing and Document Management

        • WWS e-Invoicing

      • Branch

        • WWS Fill4Me and Bank4Me

        • WWS Greæter

        • WWS Customer Management

      • Business Analytics

        • WWS Business Analytics Management

        • WWS Asset Management

      • Cyber Security Platform

        • Lookwise Device Manager

  • NEWS & MEDIA

    • News

    • Press Release

    • Press Review

    • Blog

    • Videos

    • Infographics

  • RESOURCES

    • White Papers

    • Customer stories

    • Research

    • Brochures

  • CONTACT

    • Contact us

  • CAREERS

    • Work for Us

    • Online application

    • Job vacancies

Blog

  • Home
  • News & Media
  • Blog
  • Putting Zero Trust into Self Service Banking Cybersecurity
cybersecurity-data-protection

Putting Zero Trust into Self Service Banking Cybersecurity

28 April 2022 / Blog

This month, European banks received a renewed warning about increased cyber threats from a top authority.

The European Banking Authority (EBA) issued this alert in its latest update to its risk dashboard following the Russian invasion of Ukraine. The EBA said exposure to Russian, Belarus or Ukrainian banks collapsing was less of a threat than “second- round” effects like cyber attacks that “may be more material from a financial stability perspective.”

Cybersecurity hasn’t been off the agenda for banks for many years now but the fears are even greater than before. There is an obvious business model for cybercriminal gangs to target banking services and especially ATMs – steal money and valuable financial information about customers and cause business continuity disruption and service interruptions. Attacks on financial institutions can generate serious cash returns and encourage cyber criminals to invest serious internal budgets into R&D to prepare attacks.

New risks for banking security

As banks have even greater focus on digitalisation there is a need to continually review cybersecurity strategies especially at a time of increased risks and threats.

There should be a particular concern about the rise in ransomware attacks that shut down critical systems, extort massive sums and lead to damaging data theft. One recent study by cyber security experts at Palo Alto Networks Unit 42 revealed the average ransom demand on cases they saw climbed 144% to $2.2 million, while the average payment rose 78% percent to $541,010.

Banks have tended to be prime targets for ransomware attack, For example, last year Trend Micro reported that the banking industry was disproportionately affected with a 1,318% year-on-year increase in ransomware attacks in the first half of 2021.

Banks can reduce the likelihood of attacks and mitigate the damage caused if they consider how cybersecurity goes hand in hand with their digital transformation programmes especially on the deployment of even the most advanced ATMs and assisted self-service terminals (ASSTs) now being used in next generation branches and digital banking hubs.

In their cybersecurity planning, banks also need to consider how new ways of both working and banking affect the balance of risks. While the lockdowns are ending, hybrid working patterns remain and include banking staff who aren’t always working out of their branch or office. Security leaders need to be considering whether employees working from home are inadvertently creating security vulnerabilities.

Similarly, the steep rise in customers doing online banking brings risks when so many of them who are new to digital banking services can be more susceptible to online scams or phishing attacks that could lead to serious breaches.

Fundamentally the goal has to include reducing the attack surface and having a greater visibility of what is happening and faster insight into anomalous activities that could be or are suspicious.

Zero trust approach to Self Service banking security

For banks, their endpoint devices ranging from workstations to ATMs to ASSTs are vulnerable to attack and a starting point for their cybersecurity review. The approach that is increasingly discussed is zero trust and this can be relevant to securing critical endpoints and the other parts of the banking service infrastructure.

First of all a quick definition. Zero trust means a cybersecurity system that minimises the level of implicit trust so that a system is only used and accessing software when stringent checks are done. This important concept can be successfully applied to ATMs and ASSTs as they comprise several software layers including an operating system, hardware vendor software layer, the multi-vendor layer, plus the different tools for operations, monitoring, security and so on.

The risks with these layers is how, unlike PCs, the software updating on these devices tends to be reactive not proactive. This means vulnerabilities can slip into software inadvertently, making the concept of zero trust critical in isolating a layer that’s unpatched.

The value of zero trust to securing digital self-service banking is you are not trusting the assumed security of mainstream software. This distrust is important because cyber attackers will hijack legitimate tools and software to launch an attack.

Additionally a zero trust strategy for banking endpoints should extend to the third party tools and services who have legitimate access to ATMs and ASSTs when servicing these devices. Again you need cybersecurity that interrogates whether their access at a specific time or place is correct or authorised.

To help you apply a modern approach to protecting fleets of ATMs and ASSTs, here’s a useful checklist:

  • Reduce the attack surface: anything will be allowed only if needed, and not just when it’s legitimate, only if they’ve been certified for proper operations.
  • Control whoever is going physically to manipulate the ATM. Standard solutions like antiviruses have the same level of protection at any time, but when we’re talking about critical devices, and a 3rd person is manipulating it, you must be able to control the level of protection and activate specific policies in that specific moment. The bank should be able to monitor what the technician is doing at a time of highest exposure to an exploit
  • Make the job of managing banking cybersecurity easier. Consolidate protection measures on a single platform such as application whitelisting, full encryption of all hard disks and media, file system integrity protection, hardware protection and a firewall to stop network attacks.

To find out more about how Auriga helps banks in protecting older and newer generations of ATMs, ASSTs and the rest of the systems used in next generation bank branch operations, check out here.

     
  • Tweet
Tagged under: cybersecurity, self-service banking
  • News
  • Press Release
  • Press Review
  • Blog
  • Videos
  • Infographics

SUBSCRIBE TO THE NEWSLETTER

Subscribe today and you will get:

  • News on software solutions
  • Customer stories
  • Invitations to industry events and conferences
  • Detailed reports
  • Market research
  • and much more!
CONTACT

HEADQUARTER - BARI
Via Don Luigi Guanella, 17
70124 Bari - Italy

TEL: +39.080.5692111

info@aurigaspa.com

Milan office
Rome office
Brussels office
London office
Madrid office
Pamplona office
Mexico City office

BUSINESS CONTACTS
Niccolo Garzelli - Auriga - Footer

Niccolò Garzelli Milan office
niccolo.garzelli@aurigaspa.com

MARK ALDRED London office
mark.aldred@aurigaspa.com

Stefano Cipollone Milan office
stefano.cipollone@aurigaspa.com

Daniela Azzolini Milan office
daniela.azzolini@aurigaspa.com

MARTIN ESPINELMexico City office
martin.espinel@aurigaspa.com

lukasz-feluch

ŁUKASZ FELUCHLondon office
lukasz.feluch@aurigaspa.com

RUDY DE WOLFBrussels office
rudolf.dewolf@aurigaspa.com

EXPLORE
  • About Us
  • WinWebServer
  • Blog
  • White Papers
  • Research
LATEST NEWS
  • Auriga-trends-2023-blog-ENG

    Banking and fintech trends to watch in 2023

    24/01/2023
  • f1-solutions-image-press-release

    AURIGA EXPANDS INTO CENTRAL & EASTERN EUROPE MARKET FOR DIGITAL SELF SERVICE BANKING TECHNOLOGY

    19/01/2023
  • atm-operation-at-bank-blog-ENG

    Protecting access to cash in a digital world

    20/12/2022

Connect with us

SUBSCRIBE TO THE NEWSLETTER

Auriga Spa - Copyright © 2022 - All rights reserved | Legal Notice | Privacy Policy
P.I. 05566820725 - Capital € 1.196.055 i.v. - R.E.A. 426675

TOP
We, and third party websites you may interact with via our site, use cookies to collect site usage data and improve your experience, this includes permanent and profiling cookies.
By clicking ‘Accept’ you agree to allow cookies, however you can disable this through your browser settings at anytime. If you opt to totally or partial disable cookies, this might compromise some features on the website.
For more information on our cookie policy, go to the Legal Notice page.
Accept

Privacy Overview

This website uses cookies to improve your experience while you navigate through the website. Out of these, the cookies that are categorized as necessary are stored on your browser as they are essential for the working of basic functionalities of the website. We also use third-party cookies that help us analyze and understand how you use this website. These cookies will be stored in your browser only with your consent. You also have the option to opt-out of these cookies. But opting out of some of these cookies may affect your browsing experience.
Necessary
Always Enabled
Necessary cookies are absolutely essential for the website to function properly. This category only includes cookies that ensures basic functionalities and security features of the website. These cookies do not store any personal information.
Non-necessary
Any cookies that may not be particularly necessary for the website to function and is used specifically to collect user personal data via analytics, ads, other embedded contents are termed as non-necessary cookies. It is mandatory to procure user consent prior to running these cookies on your website.
SAVE & ACCEPT