Trustwave details financial sector cyberthreats


By Dylan Bushell-Embling
Tuesday, 17 October, 2023
Trustwave details financial sector cyberthreats

Cybersecurity and managed services provider Trustwave has published a new report detailing critical cybersecurity threats facing the financial services industry.

According to the report, the sector is facing persistent threats ranging from email-borne malicious attachments to abuse of valid accounts, with one of the major threats to the industry being ransomware.

Analysis from Trustwave SpiderLabs suggests that one single group, the Clop threat group, accounts for 39% of ransomware incidents targeting the sector. Other prevalent threat actors operating across the sector include LockBit, BlackCat, Black Basta, 8Base, Akira and Royal.

Common threat tactics aimed at the sector also include business email compromise, brute forcing of credentials, and malware.

Unique challenges faced by the sector include the requirement to hold a vast amount of sensitive customer data (painting a big target on the sector) as well as the industry’s heavy regulation and the importance of the need to maintain trust as a currency.

Trustwave CISO Kory Daniels said in the competitive financial services industry, the role of security in earning and sustaining consumer trust is paramount.

“For financial institutions, it isn’t just about protecting data, it’s about safeguarding the financial wellbeing and peace of mind of customers, partners and investors,” he said.

“Our latest threat briefing is a valuable resource for business leaders and cyber defenders within the financial services sector, providing a comprehensive view of the threats observed by our SpiderLabs team, along with specific mitigation strategies to help organisations protect extremely sensitive data and assets.”

In terms of targets, 51% of targeted companies reporting a breach are from the US, with India (9%) coming in a distant second, followed by Russia and Mexico (7% each), the report found.

Meanwhile HTML attachments make up 78% of file types being used for email-borne malware attachments, with 33% of these employing obfuscation as a means of defence evasion.

Image credit: iStock.com/aislan13

Related News

CrowdStrike to buy Adaptive Shield

CrowdStrike is augmenting its SaaS security capabilities through the acquisition of Israeli-based...

LockBit named nastiest malware of 2024

LockBit, a ransomware malware known to have been used to attack Australian targets, has been...

Extreme Networks launches ZTNA solution

Extreme Networks' new ExtremeCloud Universal ZTNA solution combines cloud network access...

Content from other channels on our network

Powering data centres in the age of AI

Bringing geospatial tools to infrastructure planning

CICCADA project to analyse Australia's consumer energy

NSW EV charging network expands

When bus depots become energy hubs

Building secure AI: a critical guardrail for Australian policymakers

Streamlining ITSM does not require more staff: report

Shoalhaven City Council strengthens disaster recovery and security with Azure

DVA enlists TechnologyOne for digital transformation upgrade

Meeting modern citizens' needs with AI-powered government services

Communication interoperability is vital to silo-free public safety comms

Nokia selected to deploy 4G and 5G equipment in India

Optimising RF connector selection: technical considerations for signal integrity

Govt funds mobile coverage boost for regional Vic, NSW

ARCIA update: that's a wrap for 2024

  • All content Copyright © 2024 Westwick-Farrow Pty Ltd