Monday, 16 May 2022

Global cyber threats accelerate as cybercriminals and nation-state actors converge and collaborate

5 min read

FS-ISAC, the only global cyber intelligence sharing community solely focused on financial services announced the findings of its annual Global Intelligence Office report, Navigating Cyber 2022.

The report found that the rapid digitisation of the financial services sector has led to a rise in global cyber threats in 2021, specifically the acceleration of high-profile cyber-attacks targeting third-party suppliers and critical zero-day vulnerabilities. This led FS-ISAC to increase its regional cyber threat levels an unprecedented three times in 2021.

Looking ahead to 2022, FS-ISAC expects the trifecta of third-party risk, the growth in zero-day vulnerabilities as an attack vector, and the ability of ransomware groups to adapt despite increased scrutiny by law enforcement to complicate an already challenging cyber threat environment.

Steven Silberstein, CEO of FS-ISAC said, “As the threat landscape continues to evolve at a rapid pace, cross-border intelligence sharing is critical to help defend financial institutions against cyber threats”.

“As the global fincyber utility, FS-ISAC enables industrywide cross-border sharing to pool resources, expertise, and capabilities to better manage cyber risks that the global financial industry faces on a daily basis.”

The report outlined top threats to the industry in 2022 and beyond, including:

Member financial firms reported high levels of phishing and business email compromise, which is the entry point for most attacks, as well as the persistence of notorious malware strains often used to drop ransomware.

Teresa Walsh, global head of intelligence at FS-ISAC said, “The macro-level cyber landscape translates into increased cyber threat activity on a daily basis, as cybercriminals are endlessly inventive in how they gain access and leverage to extort victims”.

“Phishing schemes continue to be one of the most popular tactics threat actors use to access networks. In fact, twenty-four percent of FS-ISAC member-reported incidents are phishing campaigns targeting employees.”

Re-disseminated by The Asian Banker

Diary of Activities