From the Trenches: Current Status of Security and Risk in the Financial Sector

Bethesda, Md. – The financial services industry is under a barrage of ransomware and spearphishing attacks, according to a new survey gauging the state of risk and security in the financial sector. Results will be released by the SANS Institute in a two-part webcast on Wednesday, October 19 and Thursday, October 20.

Ransomware, identified by 55% of respondents, has eclipsed spearphishing (50%) as the top attack vector for the first time. Such attacks have caused considerable damage, with 32% of survey respondents citing losses between $100,001 and $500,000 as a result of their breaches.

"Ransomware has rocketed to No. 1 on the charts of attacks against financial institutions in 2016, followed by phishing," says SANS Analyst and author of the survey report, G. Mark Hardy. "Such attacks are resulting in significant losses."

Both of these attack vectors prey on the vulnerabilities associated with users, who often click on links unwittingly that unleash vicious attacks on their organization's assets.

For that reason, organizations are focusing on time-tested controls such as email monitoring and security awareness training to reduce the potential for employee actions that unleash malware on their devices. They are also employing perimeter defenses, endpoint protections and log management techniques to identify, stop and remediate threats.

"Although some respondents told us they were experiencing fewer significant events, it is unclear whether they are prepared to defend against such occurrences," says Hardy. "Just over half of our survey sample felt prepared or very prepared to fend off attacks, and that will only be tested further as new alternative payment systems come online."

Although only 29% of respondents' organizations are using alternative payment systems today, many companies will be adding them in the near future, driven by customer demand, the need for a competitive advantage and potential cost reductions.

After careful analysis of the current status of cyber security in the financial sector, Hardy concludes, "Increasing user awareness, information and intelligence sharing, as well as improving overall risk posture, will be key issues that IT security teams must face sooner rather than later."

Full results will be shared during a two-part webcast at 1 PM EDT on both Wednesday, October 19 and Thursday, October 20, sponsored by Arbor Networks, ForeScout, Guidance Software, NSFOCUS, and WhiteHat Security, and hosted by SANS. Register to attend the webcasts at (October 19) and (October 20).

Those who register for the webcast will also receive access to the published results paper developed by SANS Analyst and cyber security expert, G. Mark Hardy.

Tweet This

"From the Trenches" SANS 2016 Survey on Security and Risk in the Financial Sector | Oct 19 & 20 | Register:

"Ransomware has rocketed to No. 1 on the charts of attacks against financial institutions in 2016" |Oct 19 & 20|

About SANS Institute

The SANS Institute was established in 1989 as a cooperative research and education organization. Today, SANS is the most trusted and, by far, the largest provider of cyber security training and certification to professionals in government and commercial institutions world-wide. Renowned SANS instructors teach more than 60 courses at in-person and virtual cyber security training events and on demand. GIAC, an affiliate of the SANS Institute, validates practitioner skills through more than 35 hands-on, technical certifications in cyber security. The SANS Technology Institute, a regionally accredited independent subsidiary, offers a master’s degree, graduate certificates, and an undergraduate certificate in cyber security. SANS Security Awareness, a division of SANS, provides organizations with a complete and comprehensive security awareness solution, enabling them to easily and effectively manage their ‘human’ cybersecurity risk. SANS also delivers a wide variety of free resources to the InfoSec community including consensus projects, research reports, webcasts, podcasts, and newsletters; it also operates the Internet's early warning system–the Internet Storm Center. At the heart of SANS are the many security practitioners, representing varied global organizations from corporations to universities, working together to support and educate the global information security community. (