NEW CYBER THREATS TO CHALLENGE FINANCIAL SERVICES SECTOR IN 2024

March 27, 2024 06:00 AM PDT | By Cision

Google News:

NEW CYBER THREATS TO CHALLENGE FINANCIAL SERVICES SECTOR IN 2024 — Image source: Kalkine Media

Recent News

DoubleVerify Sees Update in Digital Ad Tech Sector Russell 1000

Pagaya Technologies PGY Gains Support Nasdaq Index Stocks Watch

Oceaneering International OII Sees Institutional Growth on NYSE Compos...

GAMMA Expands Stake in Valvoline Inc Amid Market Movements S&P 500

Annual FS-ISAC report predicts increased misinformation campaigns and other cyber threats during a "Super Election" year

RESTON, Va., March 27, 2024 /PRNewswire/ -- FS-ISAC, the member-driven, not-for-profit organization that advances cybersecurity and resilience in the global financial system, today announced the findings of its annual Global Intelligence Office report, Navigating Cyber 2024.

The report details the increasing sophistication of adversarial tactics, techniques, and procedures leveraged by threat actors, such as social engineering, SEO poisoning, malvertising, and QR code phishing. It also focuses on the use of evolving technology by threat actors, as they look to leverage generative AI for increased scale and automation of attacks and effectiveness of lures, as well as to poison, manipulate, and exploit generative AI tools themselves.

"Each year, a new set of threats comes to light, requiring the financial services sector's mitigation strategies to advance at an equal if not faster pace than threat actors' tactics," said Steven Silberstein, CEO of FS-ISAC. "As we look ahead to a critical year marked by emerging technology and heightened geopolitical tensions, the best way to maintain the integrity, security, and trust of the sector is through global information sharing."

In addition to long-standing threat vectors, new threats are continuing to emerge that will have disruptive implications for the sector. These include:

Increased geopolitical hacktivism: Threat actors are expected to launch misinformation campaigns and DDoS attacks against critical infrastructure, capitalizing on ongoing geopolitical conflicts and a "super election" year, as five national elections take place across the globe. DDoS attacks are continuing to increase in size, scope, and sophistication, with 35% of all DDoS attacks targeting the financial services sector in 2023.
New extortion tactics in response to global regulations: Threat actors have noted the implementation of key legislation in 2023 and are monitoring pending global regulations in 2024 and 2025, adjusting their tactics accordingly. Cybercriminals may weaponize new disclosure requirements, pushing companies to fulfill extortion demands ahead of the required reporting deadline.
Intensified focus on establishing cryptographic agility: Recent quantum computing and AI advancements are expected to challenge established cryptographic algorithms. In response, the financial services sector must have an increased focus on developing new encryption methods that can be rapidly adopted without altering the bottom-line system infrastructure.
Improvement of supply chain's cybersecurity posture: Zero-day vulnerabilities in the supply chain continue to leave the sector unprotected, as attacks on providers disrupt various systems across the sector, such as those of clearing, trading, payments, and back-office service operations. In response, the sector should work closely with suppliers to establish communication channels for incident response and bolster suppliers' greater cybersecurity posture.

"Threat actors will exploit vulnerabilities in critical infrastructure and will leverage any tool available to destroy trust in the security of our systems," said Teresa Walsh, Chief Intelligence Officer and Managing Director, EMEA, of FS-ISAC. "The financial services sector operates in a cyber landscape that is endlessly dynamic, as cybercrime and fraud converge, and emerging technologies create additional opportunities for exposure. In order to maintain trust in the sector, companies must prioritize proactive cyber hygiene to ensure operational resilience in the face of an attack."

Methodology
The Navigating Cyber 2024 report is sourced from FS-ISAC's thousands of member financial firms in 75 countries and further augmented by analysis by the Global Intelligence Office. Multiple streams of intelligence were leveraged for the curation of the round-up, which examined data from January 2023 to January 2024. The publicly accessible version of the report can be found here. The full report is only available to member financial institutions.

About FS-ISAC
FS-ISAC is the member-driven, not-for-profit organization that advances cybersecurity and resilience in the global financial system, protecting the financial institutions and the people they serve. Founded in 1999, the organization's real-time information-sharing network amplifies the intelligence, knowledge, and practices of its members for the financial sector's collective security and defenses. Member financial firms represent $100 trillion in assets in 75 countries.

Contacts for Media
[email protected]

Disclaimer

The content, including but not limited to any articles, news, quotes, information, data, text, reports, ratings, opinions, images, photos, graphics, graphs, charts, animations, and video (Content) is a service of Kalkine Media LLC., having Delaware File No. 4697309 (“Kalkine Media, we or us”) and is available for personal and non-commercial use only. The principal purpose of the Content is to educate and inform. The Content does not contain or imply any recommendation or opinion intended to influence your financial decisions and must not be relied upon by you as such. Some of the Content on this website may be sponsored/non-sponsored, as applicable, but is NOT a solicitation or recommendation to buy, sell or hold the stocks of the company(s) or engage in any investment activity under discussion. Kalkine Media is neither licensed nor qualified to provide investment advice through this platform. Users should make their own enquiries about any investments and Kalkine Media strongly suggests the users to seek advice from a financial adviser, stockbroker or other professional (including taxation and legal advice), as necessary. Kalkine Media hereby disclaims any and all the liabilities to any user for any direct, indirect, implied, punitive, special, incidental or other consequential damages arising from any use of the Content on this website, which is provided without warranties. The views expressed in the Content by the guests, if any, are their own and do not necessarily represent the views or opinions of Kalkine Media.
The content published on Kalkine Media also includes feeds sourced from third-party providers. Kalkine does not assert any ownership rights over the content provided by these third-party sources. The inclusion of such feeds on the Website is for informational purposes only. Kalkine does not guarantee the accuracy, completeness, or reliability of the content obtained from third-party feeds. Furthermore, Kalkine Media shall not be held liable for any errors, omissions, or inaccuracies in the content obtained from third-party feeds, nor for any damages or losses arising from the use of such content. Some of the images/music that may be used on this website are copyrighted to their respective owner(s). Kalkine Media does not claim ownership of any of the pictures/music displayed/used on this website unless stated otherwise. The images/music that may be used on this website are taken from various sources on the internet, including paid subscriptions or are believed to be in public domain. We have used reasonable efforts to accredit the source (public domain/CC0 status) to where it was found and indicated it, as necessary.
This disclaimer is subject to change without notice. Users are advised to review this disclaimer periodically for any updates or modifications.