Cyber Threat Intelligence for Banking & Financial Services-FOLLOW THE MONEY
Contents
FOLLOW THE MONEY
Cyberthreat intelligence for Banking
& Financial services
1
Contents
Introduction
7
Why is the financial services sector targeted?
9
State of the Industry
11
Recent attacks
12
Capital One
12
Desjardins Group
13
UniCredit
13
HSBC
14
Scottrade Bank
15
Cyberthreats targeting the finance sector
2
17
Credential theft
17
Phishing
18
BEC
19
Banking Trojans
20
Malware infection
20
Webinjects
22
Ransomware
23
Mobile apps malware
24
Point of Sale malware
25
ATM malware
26
Pharming
26
Digital card skimmers
26
DDoS attacks
28
Cryptojacking
29
Data leakage
30
Third party exposure
31
Hacktivism
32
Threat Actors
33
Lazarus Group
33
Money Taker
34
Cobalt Gang
35
FIN7
36
FIN10
37
Dridex Gang
38
EmpireMonkey
39
TA505
40
How organizations in financial services can manage their cyber-risk
42
Executive level engagement
42
Effective fraud prevention
43
Company-wide training and education
43
Incident response readiness
44
Continuous monitoring
44
Third party security management
45
Regulation and Legislation
45
The role of threat intelligence
47
The benefits of real-time, dynamic threat intelligence
48
Fraud prevention
50
Spam campaign deployed against corporate emails
50
The consequences of a data leak
51
Eroding customer trust and non-compliance
52
Brand protection: VIPs at high risk of attack
53
Increasing efficiency, enriching intelligence
53
Conclusion
55
References
57
3
4
5
FOLLOW THE MONEY - Introduction
Introduction
Banks and other financial institutions handle some of the most
valuable information to cybercriminals, from account and credit
card data to sensitive PII (personally identifiable information).
As such, these organizations remain at the forefront for risk
as cybercriminals become increasingly sophisticated and
malicious …
Cyberthreat intelligence for Banking
& Financial services
1
Contents
Introduction
7
Why is the financial services sector targeted?
9
State of the Industry
11
Recent attacks
12
Capital One
12
Desjardins Group
13
UniCredit
13
HSBC
14
Scottrade Bank
15
Cyberthreats targeting the finance sector
2
17
Credential theft
17
Phishing
18
BEC
19
Banking Trojans
20
Malware infection
20
Webinjects
22
Ransomware
23
Mobile apps malware
24
Point of Sale malware
25
ATM malware
26
Pharming
26
Digital card skimmers
26
DDoS attacks
28
Cryptojacking
29
Data leakage
30
Third party exposure
31
Hacktivism
32
Threat Actors
33
Lazarus Group
33
Money Taker
34
Cobalt Gang
35
FIN7
36
FIN10
37
Dridex Gang
38
EmpireMonkey
39
TA505
40
How organizations in financial services can manage their cyber-risk
42
Executive level engagement
42
Effective fraud prevention
43
Company-wide training and education
43
Incident response readiness
44
Continuous monitoring
44
Third party security management
45
Regulation and Legislation
45
The role of threat intelligence
47
The benefits of real-time, dynamic threat intelligence
48
Fraud prevention
50
Spam campaign deployed against corporate emails
50
The consequences of a data leak
51
Eroding customer trust and non-compliance
52
Brand protection: VIPs at high risk of attack
53
Increasing efficiency, enriching intelligence
53
Conclusion
55
References
57
3
4
5
FOLLOW THE MONEY - Introduction
Introduction
Banks and other financial institutions handle some of the most
valuable information to cybercriminals, from account and credit
card data to sensitive PII (personally identifiable information).
As such, these organizations remain at the forefront for risk
as cybercriminals become increasingly sophisticated and
malicious …