EDGE 2020 Goes Virtual
AUSTRALIA, Sydney. 22 March, 2017 – The financial services sector is likely to remain a top target for cybercriminals in 2017 due to the sensitive nature and value of financial data the industry holds, according to global leader in high-performance cyber security solutions Fortinet.
“The financial industry continues to be a prime target given the sensitive nature of its data that is extremely valuable on the online black market. Cybercriminals are also capitalising on new ways to exploit increasingly complex network environments in FSI and developing new techniques to bypass security and evade detection,” said Jon McGettigan, Senior Director, Australia, New Zealand and the Pacific Islands at Fortinet. “As the attacks grow in both number and complexity, financial services institutions will have to prepare to better detect and mitigate threats in order to protect their organisation.”
Fortinet offers the Top 5 Cybersecurity Threat Predictions for the financial services industry in 2017:
1. Further Securing the Cloud
For years, the financial services industry has trailed behind other industries when it comes to moving data to the cloud. Information security concerns remain but recently there have been moves by large FSI organisations to public cloud service providers like AWS and Rackspace. Today’s public clouds offer scalability, flexibility, and reliability, while also allowing organisations to only pay for the services being used. All of these factors can lead to increased savings and organisational effectiveness, but as always, security needs to remain at top of mind.
As cloud adoption grows across the industry in 2017, organisations need to ensure the data being passed to the cloud is put through the same scrutiny as all other data. Visibility into that data needs to be maintained, and security policies and enforcement must be applied consistently regardless of the location of that data. Expect to see cloud security solutions continue to evolve and make protection simpler and more effective.
2. Two-Factor Authentication (2FA)
There were a number of large banks that experienced data breaches in 2016. In a few different cases, cybercriminals stole traditional login and password information to conduct fraudulent transactions, which damaged the business’ reputation.
To better combat this existing problem, Fortinet expects 2FA to come to the forefront as an additional layer of defence in 2017. 2FA combines passwords, which the user already knows, with another type of authentication that is connected to something the user has, for instance a One-Time PIN (OTP) sent to their mobile phone.
This solution keeps traditional login and security measures in place while giving customers (and financial organisations) stronger security when managing sensitive financial transactions.
3. Securing the Internet of Things (IoT)
The IoT’s prowess is impossible to ignore with 24 billion IoT devices expected to be installed across the world by 2020, according to Gartner. The insurance industry in particular is already relying on IoT to align driving behaviour with premium rates by leveraging data from in-vehicle telecommunication devices in some countries. The banking industry is also expected to improve the experience for retail customers with IoT initiatives like personalised customer rewards.
Regardless of how the data is being accessed and shared, it must be secured in order to protect customers. Fortinet expects financial services organisations to control network access, segment traffic, and invest in solutions that can help them manage the complex nature of today’s cybersecurity landscape.
4. The Government Will Become More Involved
Late last year, various groups in the US called for cybersecurity regulations to be implemented, and pushed for cybercrime to be discussed at global forums, including the G20 Summit. Cybersecurity will remain a focal point for government action in 2017, and organisations will need to be ready to meet these standards. With failure to adhere to regulations resulting in costly penalties and damaged reputations, financial services institutions will likely look to investing in additional cybersecurity solutions to meet these increasing demands.
5. Smarter Attacks Will Call for Smarter Solutions
As cybersecurity solutions evolve, so too will the complexity of the attacks being developed. In 2017, financial services organisations should consider deploying a Security Fabric architecture that provides awareness and visibility into all security elements, integrates them into a single, operationalised defence and response system, and allows for centralised orchestration and automation through a single management platform. This Fabric should also provide open APIs (Application Program Interface) to enable seamless integration and intelligence sharing with other third-party network and security solutions.
About Fortinet Fortinet (NASDAQ: FTNT) secures the largest enterprise, service provider, and government organisations around the world. Fortinet empowers its customers with intelligent, seamless protection across the expanding attack surface and the power to take on ever-increasing performance requirements of the borderless network - today and into the future. Only the Fortinet Security Fabric architecture can deliver security without compromise to address the most critical security challenges, whether in networked, application, cloud or mobile environments. Fortinet ranks #1 in the most security appliances shipped worldwide and more than 300,000 customers trust Fortinet to protect their businesses. Learn more at http://www.fortinet.com, the Fortinet Blog, or FortiGuard Labs.
Copyright © 2017 Fortinet, Inc. All rights reserved. The symbols ® and ™ denote respectively federally registered trademarks and unregistered trademarks of Fortinet, Inc., its subsidiaries and affiliates. Fortinet's trademarks include, but are not limited to, the following: Fortinet, FortiGate, FortiGuard, FortiManager, FortiMail, FortiClient, FortiCloud, FortiCare, FortiAnalyzer, FortiReporter, FortiOS, FortiASIC, FortiWiFi, FortiSwitch, FortiVoIP, FortiBIOS, FortiLog, FortiResponse, FortiCarrier, FortiScan, FortiAP, FortiDB, FortiVoice and FortiWeb. Other trademarks belong to their respective owners. Fortinet has not independently verified statements or certifications herein attributed to third parties and Fortinet does not independently endorse such statements. Notwithstanding anything to the contrary herein, nothing herein constitutes a warranty, guarantee, binding specification or other binding commitment by Fortinet, and performance and other specification information herein may be unique to certain environments. This news release contains forward-looking statements that involve uncertainties and assumptions, such as statements regarding technology releases. Changes of circumstances, product release delays, or other risks as stated in our filings with the Securities and Exchange Commission, located at www.sec.gov, may cause results to differ materially from those expressed or implied in this press release. If the uncertainties materialize or the assumptions prove incorrect, results may differ materially from those expressed or implied by such forward-looking statements and assumptions. All statements other than statements of historical fact are statements that could be deemed forward-looking statements. Fortinet assumes no obligation to update any forward-looking statements, and expressly disclaims any obligation to update these forward-looking statements.