• Home
  • News
  • Big Data & Analytics
  • DevOps
  • Security
  • GDPR
  • AI & ML
  • Women in Tech
  • Cloud & Infrastructure
  • CIO
  • Deskflix
  • Events
  • Whitepapers
  • Spotlights
  • IT Leaders 250
  • Research
  • Delta
  • Tech Marketing Hub
  • About Us
  • Newsletters
  • Sign in
  •  
      • Newsletters
      • Account details
      • Contact support
      • Sign out
     
     
    • You are currently accessing Computing via your Enterprise account.

      If you already have an account please use the link below to sign in.

      If you have any problems with your access or would like to request an individual access account please contact our customer service team.

      Phone: +44 (0) 1858 438800

      Email: customerservices@incisivemedia.com

      • Sign in
     
  • Follow us
    • Twitter
    • LinkedIn
    • Newsletters
    • Facebook
    • YouTube
  • Register
  • Events
    • Upcoming events
      event logo
      Deskflix Financial Services

      oin us for this episode of Deskflix to hear from industry experts and peers on their 2020 best practices, what they’ve learnt for 2021 and how they plan to overcome the next wave of disruption.

      • Date: 03 Mar 2021
      event logo
      Good listeners: Why conversational interfaces are now a must-have

      This webinar, featuring dedicated research, will explore how conversational interfaces can add value to your digital initiatives today. We discuss the benefits of putting the AI to work and the value of the conversational channel itself.

      • Date: 17 Mar 2021
      • Virtual Event,
      event logo
      Deskflix IT Leader's Summit

      Six months on from our inaugural IT Leaders’ Festival, Deskflix IT Leaders’ Summit is a chance to take stock and reflect on the first quarter of 2021. How did you overcome the obstacles of 2020? Was progression as expected? What were your biggest threats and biggest growth opportunities?

      • Date: 24 Mar 2021
      event logo
      Architect for the unknown: Is your database built for a crisis?

      This webinar, in which we’ll reveal Computing’s latest research in this area, reflects on how prepared our respondents’ data architecture was going into the pandemic and the role databases have to play in the ability to react and pivot in a crisis.

      • Date: 25 Mar 2021
      View all events
  • Whitepapers
    • LATEST WHITEPAPERS
      Darktrace 120x194
      Cyber AI Response: Threat Report 2019

      This white paper details 7 case studies of attacks that were intercepted and neutralised by Darktrace cyber defense AI, including a zero-day trojan in a manufacturing company's network. Learn how Darktrace Antigena AI Response modules fight back autonomously, no matter where a threat may emerge, extending to the Cloud, Email and SaaS.

      Download
      Darktrace 120x194
      Cyber AI & Darktrace Cloud

      This white paper explores how cloud is a security blind spot for many organisations who struggle with the limited visibility and control in this new environment, where their existing security tools are often not applicable.

      Download
      Find whitepapers
      Search by title or subject area
      View all whitepapers
  • Spotlights
    • Spotlights

      Welcome to Computing's Spotlight section, where we focus in on particularly important themes and topics of enterprise IT.

      Intel logo

       

      Endpoint Management and Security Hub

  • IT Leaders 250
  • Research
  • Delta
  • Tech Marketing Hub
  • About Us
Computing
Computing
  • Home
  • News
  • Big Data & Analytics
  • DevOps
  • Security
  • GDPR
  • AI & ML
  • Women in Tech
  • Cloud & Infrastructure
  • CIO
  • Deskflix
 
    • Newsletters
    • Account details
    • Contact support
    • Sign out
 
 
  • You are currently accessing Computing via your Enterprise account.

    If you already have an account please use the link below to sign in.

    If you have any problems with your access or would like to request an individual access account please contact our customer service team.

    Phone: +44 (0) 1858 438800

    Email: customerservices@incisivemedia.com

    • Sign in
 
  • Threats and Risks

Forty per cent of financial firms have suffered data breaches in 2017

And half the world's financial firms have been subjected to a cyber attack in the past year, claims Thales

Forty per cent of financial firms have suffered data breaches in 2017
  • Nicholas Fearn
  • 17 October 2017
  • Tweet  
  • Facebook  
  • LinkedIn  
  • Send to  
0 Comments

More than half of global financial services firms have been hit by a cyber attack in the past year.

That's according to the 2017 Thales Data Threat Report, Financial Edition. It suggests that financial organisations face unprecedented data security challenges as they invest in new digital transformation technologies.

Issued in conjunction with analyst firm 451 Research, the report shows that businesses in the financial sector are struggling with evolving regulations, new technical demands and rising cyber crime - all leading to an increase in data breaches.

As well as finding that 40 per cent of financial firms have been hit by data breaches in 2017, it also revealed that 21 per cent have been targeted on several occasions. And 90 per cent feel more vulnerable to attacks, mainly to a lack of appropriate protection.

That said, there's a changing tide in cyber security investment within the financial world. A majority of firms (78 per cent) are upping investment in suitable cyber security solutions to protect critical data.

Financial firms are also upgrading from legacy platforms to more up-to-date systems reflecting changes in consumer and marketplace preferences. However, many of these changes are resulting in new data security problems.

Almost all respondents (92 per cent) said they plan to deploy advanced technologies - such as Internet of Things devices, cloud, and big data, while shifting to containerisation - this year. But three quarters of them will do so in advance of having the right data security mechanisms in place.

Of this, 53 per cent will invest in network security and 64 per cent in endpoint security. Meanwhile, only 43 per cent will spend on data-in-motion and 40 per cent on rest defences. That's despite being a credible defence solution for data breaches.

In terms of threats, many respondents felt that privileged users pose the biggest insider threats, while executive staff (48 per cent) and contractors (38 per cent) follow.

Cyber criminals are at the top of the list of external threat actors, along with nation-states (18 per cent), hacktivists (16 per cent) and business competitors (13 per cent).

The upcoming GDPR law is another important factor here. Around three-quarters of firms (72 per cent) are affected by data privacy regulations, and 66 per cent listed encryption as a top control to conform to these requirements.

Garrett Bekker, principal analyst for information security at 451 Research, said: "While the financial sector has made substantial technological advances, it's still tied to security solutions that worked in the past but aren't necessarily the most effective at stopping modern attacks.

"There are a number of data security technologies - such as encryption and key management solutions - that could arguably do a better job of protecting data, particularly data being used in cloud, big data and IoT environments."

Peter Galvin, vice president of strategy at Thales e-Security, added: "Data breaches continue to hit the headlines and, as recently illustrated by the Equifax breach, the financial services industry is a prime target for hackers.

"As digitisation continues to transform the industry's online infrastructures it is critical organizations implement data security solutions that follow the data - wherever it is created, shared or stored."

Nik Whitfield, who previously BAE Systems Detica and is now CEO of data analytics firm Panaseer, said banks are facing many of the threats here.

"Many attacks on banks succeed because of the challenge that banks face in maintaining perfect cyber hygiene - they have tens of thousands of computers and they have tens of thousands of employees using those machines," he said.

" And much like in the field of counter terrorism, the adversary only needs to succeed once, whereas defenders have to get it right every single time, making this an asymmetric relationship.

"This is further complicated by the myriad of IT systems and security technologies that have been deployed over the years to protect the bank. Often they do not talk to each other and those responsible for security understandably find it hard to see a joined up picture of what's going on."

Further reading

'We are losing the cyber war' says Oracle's Larry Ellison as he introduces automated security
  • Security
  • 04 October 2017
How enterprises are using cloud access security brokers (CASB) to take back control
  • Cloud and Infrastructure
  • 21 September 2017
Darktrace: Security teams are too busy battling internal complexity to fight off hackers
  • Security
  • 20 September 2017
Security is important - so why aren't SMBs doing anything about it?
  • Strategy
  • 29 August 2017
The market can't - and won't - deal with IT security, it must be regulated, argues Bruce Schneier
  • Security
  • 15 September 2017
Computing's IT Leaders' Forum tackles cloud security
  • Cloud and Infrastructure
  • 26 September 2017
  • Tweet  
  • Facebook  
  • LinkedIn  
  • Send to  
  • Topics
  • Threats and Risks
  • data security
  • Cyber security

More on Threats and Risks

GCHQ will use AI to combat child abuse and human trafficking
GCHQ will use AI to combat child abuse and human trafficking

GCHQ has committed to using AI in a 'fair and transparent' way

  • Threats and Risks
  • 26 February 2021
Code of China-linked Jian spyware was copied from America's NSA, researchers
China-linked Jian spyware was copied from NSA code, researchers

The APT31 group cloned a cyber-offensive tool developed by the NSA to create Jian, which was then used against a US target

  • Threats and Risks
  • 23 February 2021
'Silent stealing' sees cyber fraudsters targeting people for as little as £10
'Silent stealing': cyber fraudsters expand mass, low-return operations in the pandemic

Criminals are targeting hundreds of thousands of individuals for as little as £10, reasoning that such thefts are less likely to be reported

  • Threats and Risks
  • 22 February 2021
'Silver Sparrow' malware infects about 30,000 Macs worldwide
'Silver Sparrow' malware infects about 30,000 Macs worldwide

But so far the new attack does...nothing

  • Threats and Risks
  • 22 February 2021
Credential spills have doubled in the last four years
Credential spills have doubled in the last four years

'Credential spills are like an oil spill: once leaked, they are very hard to clean up'

  • Threats and Risks
  • 12 February 2021
blog comments powered by Disqus
Back to Top

Most read

NHS faces legal challenge over Palantir contract
NHS faces legal challenge over Palantir contract
Critical vulnerability found in Snow Software's Inventory Agent
Critical vulnerability found in Snow Software's Inventory Agent
Facebook ordered to pay $650m to settle facial recognition lawsuit
Facebook ordered to pay $650m to settle facial recognition lawsuit
Oxford University confirms breach of its Covid-19 lab
Oxford University confirms breach of its Covid-19 lab
Npower shuts down mobile app following data breach
Npower shuts down mobile app following data breach
  • Contact
  • Delta
  • Marketing solutions
  • Enterprise IT Events
  • Incisive Media
  • Terms & conditions
  • Policies
  • Careers
  • Privacy Settings
  • Twitter
  • LinkedIn
  • Newsletters
  • Facebook
  • YouTube

im_logo

© Incisive Business Media (IP) Limited, Published by Incisive Business Media Limited, New London House, 172 Drury Lane, London WC2B 5QR, registered in England and Wales with company registration numbers 09177174 & 09178013

Digital publisher of the year
Digital publisher of the year 2010, 2013, 2016 & 2017
Loading