Cyber Security Europe IT-SA 2022

orderForm.title

orderForm.productCode

orderForm.description

orderForm.quantity

orderForm.itemPrice

orderForm.price

orderForm.totalPrice

orderForm.deliveryDetails.name

orderForm.deliveryDetails.accountNumber

orderForm.deliveryDetails.phone

orderForm.deliveryDetails.poNumber

orderForm.deliveryDetails.email

orderForm.deliveryDetails.companyName

orderForm.deliveryDetails.billingAddress

orderForm.deliveryDetails.deliveryAddress

orderForm.deliveryDetails.deliveryDetailsDeliveryAddressSameAsBillingAddress

orderForm.deliveryDetails.address1

orderForm.deliveryDetails.address2

orderForm.deliveryDetails.city

orderForm.deliveryDetails.state

orderForm.deliveryDetails.postCode

orderForm.deliveryDetails.country

orderForm.deliveryDetails.additionalInformation

orderForm.noItems

fi nancial statements. But it is not all used as one may expect. The hackers target fi nancial services have also come to understand

that monetary information will not give them the economic benefi ts they want. Instead, ransomware gangs are targeting customer data and leaking fi nancial institution employee details such as Personally Identifi able Information

(PII) and Human Resource (HR) data.

Rapid7 found that since April 2020, 82% of disclosures from fi nancial services organisations included customer data while employee PII and HR data was found in 59% of disclosures. It also found that in almost a third of cases, data disclosures included reconnaissance details that hackers could use to further victimise the victimised institution. The hacking itself furthers hacks. Refl ecting Menlo Security’s survey that found respondents feared their employees were the most vulnerable link in the security chain, Rapid7 has seen ransomware groups target individual people and threaten to leak personal information, probably because the gangs are aware that people are the weakest link. One basic protection against ransomware is to backup data, so it exists in more than one location, beyond the reach of hackers’ code. Where ransomware was once simply an extortion operation, money for the return of data, this malware’s use in the fi nancial sector is evolving into the exploitation of employees and leveraging of fi scal data disclosure. The above only deals with conventional fi nancial institutions, cryptocurrency is another world. The fi nancial instrument of choice for hackers and the currency that ransoms are to be paid in, the attack on blockchain fi rm Harmony that saw USD$100 million in crypto stolen raises the question of how long before it is a crypto account that is locked up by ransomware?

NEXT PAGE: GLOBAL CYBER STRIKES MAPPED LIVE

ACCREDITATION Words | Rob Coppinger Photography | Shutterstock

DEUTSCHE VORSCROLLEN

IT-SA 2022 PREVIEW

BACK TO CONTENTS

Page 1 | Page 2 | Page 3 | Page 4 | Page 5 | Page 6 | Page 7 | Page 8 | Page 9 | Page 10 | Page 11 | Page 12 | Page 13 | Page 14 | Page 15 | Page 16 | Page 17 | Page 18 | Page 19 | Page 20 | Page 21 | Page 22 | Page 23 | Page 24 | Page 25 | Page 26 | Page 27 | Page 28 | Page 29 | Page 30 | Page 31 | Page 32 | Page 33 | Page 34 | Page 35 | Page 36 | Page 37 | Page 38 | Page 39 | Page 40 | Page 41 | Page 42 | Page 43 | Page 44 | Page 45 | Page 46 | Page 47 | Page 48 | Page 49 | Page 50 | Page 51 | Page 52 | Page 53 | Page 54