Financial Services Cybersecurity Weekly Briefing 04-13-2018

Weekly FS Cybersecurity Blast

Weekly FS Cybersecurity Blast

ATMJackpot Malware Stealing Cash from ATMs
It has been dubbed as ATMJackpot (named after the technique called ATM jackpotting). Initial investigation revealed that the malware originated from Hong Kong while the time stamp binary is identified to be 28th March 2018. Apparently, the malware is in its developmental phase yet because, in comparison to other, previously discovered malware, ATMJackpot has limited features. Such as its graphical UI is quite basic and only displays the hostname and information about the service providers (e.g. PIN pad, card reader and cash dispenser service providers).

 

The CISO as an Internal Security Evangelist
In a video interview at Information Security Media Group’s recent New York City Fraud Summit, Petrie discusses:
·       Dealing with security budgeting and currency choice in a company with an international presence;
·       Articulating security priorities to the board;
·       Managing the security of a security company.

 

Bank of England to Publish New Cyber Standards by Summer to Protect Financial System Under “Almost Constant Attack”
The new standards could be published before the end of the first half of the year, although the timing has not been finalised. Writing in the PRA’s business plan for the next year, Woods said that “setting out clearly the level of operational resilience we expect of firms and how we will make sure it is delivered is a top priority for the PRA”, alongside preparations for leaving the EU. The business plan also provided for the reallocation of resources from “lower risk supervisory activity” to the Brexit preparations.

Stay up to date on the Financial Services Information Security news that you need to know by signing up for our Financial Cybersecurity Briefing Here.

====

Critical Informatics and the Critical Informatics logo are the trademarks of Critical Informatics, Inc. All other brand names, trademarks, service marks and copyrights are the property of their respective owners.  © 2017 Critical Informatics, Inc. All rights reserved.