Financial Services Cybersecurity Weekly Briefing 02-02-2018

Weekly FS Cybersecurity Blast

Weekly FS Cybersecurity Blast

First ‘Jackpotting’ Attacks Hit U.S. ATMs
On Jan. 26, NCR sent an advisory to its customers saying it had received reports from the Secret Service and other sources about jackpotting attacks against ATMs in the United States. “While at present these appear focused on non-NCR ATMs, logical attacks are an industry-wide issue,” the NCR alert reads. “This represents the first confirmed cases of losses due to logical attacks in the US. This should be treated as a call to action to take appropriate steps to protect their ATMs against these forms of attack and mitigate any consequences.”

 

Why So Few Women Work in Cyber Security (And How We Can Change It)
Women are often still paid less, promoted less, and deal with discrimination and harassment, prompting the pursuit of other career paths. Importantly, this doesn’t just extend to the workplace, but also professional conferences (cons), each of which has its own culture and vary in their degree of inclusivity.

 

Report: Number of Cyber Incidents Doubled in 2017, Yet 93 Percent Could Easily Have Been Prevented
Out of nearly 160,000 reported cyber incidents affecting businesses in 2017, 93 percent could have been prevented by following basic security measures such as regularly updating software, blocking fake email messages, using email authentication, and training employees, a new report claims.

 

Millions of Fortune 500 Email Credentials Found on the Dark Web
The VeriCloud report, which included data from a three-year period, that looked at 27 million Fortune 500 staffers and found about 2.7 million credentials among the eight billion stolen credentials found on the dark web. If that is not bad enough VeriCloud found that the stolen data was found in multiple locations thus increasing the possibility it is bought and used by malicious actors. The good news is the number represents a 7.5 percent decline from 2016.

 

Secret Service Warns of New Cyber Financial Threat
NBC News Cyber Security Analyst Shawn Henry said that “the types of ATMs being hit are typically these one-offs that you find in small convenience store …they can take out all the cash.” Machines that are older and run Windows XP are said to be among the easiest to hack because they are operated on a system that is no longer supported by Microsoft and no longer getting security patches.

 

DHS Invests in Securing Finance Infrastructure 
The Next Generation Cyber Infrastructure Apex was established last March by the Cyber Security Division of the department’s Science and Technology (S&T) Directorate. The program seeks to identify mostly mature technologies in five key areas identified by finance sector experts. Those areas are dynamic defense, network characterization, malware detection, software assurance and insider threat.

 

Dutch Banks, Tax Agency Under DDoS Attacks a Week After Big Russian Hack Reveal
Citing sources, Dutch security researcher Rickey Gevers claimed the attacks reached a peak of 40 Gbps in volume. He also said the attacks came mainly from IP addresses associated with home routers. A report by NL Times citing sources with antivirus vendor ESET claimed some of the DDoS attacks were also carried out using the Zbot malware, a known (desktop-based) banking trojan based on the old ZeuS banking trojan. The same report claimed the command and control servers for this botnet were based in Russia.

 

Stay up to date on the Financial Services Information Security news that you need to know by signing up for our Financial Cybersecurity Briefing Here.

====

Critical Informatics and the Critical Informatics logo are the trademarks of Critical Informatics, Inc. All other brand names, trademarks, service marks and copyrights are the property of their respective owners.  © 2017 Critical Informatics, Inc. All rights reserved.