The Financial Services Industry
Key Financial Services Challenges
INCREASE IN ATTACK SURFACES WITH EMERGING TECHNOLOGIES
Customers expect 24/7 availability of services from any device, anywhere. Threat actors disrupt the flow of business with Distributed-Denial-of-Service (DDoS) attacks. These campaigns are relatively easy to execute using third-party tools and services and are among the costliest attack type for firms to address. Increasingly, threat actors also target the social and mobile networks firms use to engage and support customers and run business operations.
ATTRACTIVE TARGET FOR FINANCIALLY MOTIVATED ACTORS
Cybercriminals target financial institutions because that’s where the money is and there are many ways to profit. They are actively exploiting vulnerabilities in ATMs, while networks like SWIFT (Society for Worldwide Interbank Financial Telecommunication) provide a means for criminal groups to steal directly from banks or surreptitiously shift money stolen from other sources.
WEB APPLICATION ATTACKS
ThreatQ Brings Order to the Financial Services Industry
all sources of external (e.g., FS-ISAC) and internal (e.g., SIEM) threat intelligence and vulnerability data in a central repository.
noise and easily navigate through vast amounts of threat data to focus on critical assets and vulnerabilities .
what matters most for your environment.
only relevant indicators into your security policies.
for malicious activity which may signal bank account data compromise, payment card fraud, DDoS attacks and other harm to consumers and merchants.
on known security vulnerabilities in currently active exploits which may impact regulatory status and security posture.
and response to attacks against multiple targets including ATM systems, SWIFT network, web applications, new digital channels and supporting infrastructure.
push threat intelligence to detection and response tools.
“We now have IOC data from trusted sources being sent proactively to detection-only watch lists in various internal security controls without daily oversight required by the team’s personnel. What’s more, because we’re selectively exporting data to the tool specifically designed to consume it, we aren’t pushing massive amounts of data across the network and slowing things down.”
— Director of Threat Response, Fortune 500 Financial Services Company
ThreatQ Cyber Forum: Evolution of Sharing CTI in the Finance Industry
Sharing threat intelligence in the financial industry
The Power of ThreatQ
The ThreatQ Platform has taken a threat-centric approach to security operations. This approach allows security teams to prioritize based on threat and risk, collaborate across teams, automate actions and workflows and integrate point products into a single security infrastructure.