Thread Rating:
  • 0 Vote(s) - 0 Average
  • 1
  • 2
  • 3
  • 4
  • 5
Share Post: G+ Digg Delicious Reddit Facebook Twitter StumbleUpon

[-]
Tags
web vulnerable mobile big attacks banks

Big Banks Vulnerable to Web, Mobile Attacks
#1
Quote:Nearly all of the largest 100 banks are vulnerable to web and mobile attacks, which give hackers access to sensitive data, according to ImmuniWeb.

“We leveraged an enhanced methodology from our previous research that covered web and mobile application security of the world largest companies from the FT 500 list,” the report said. “For the purpose of this research, we carefully studied external web applications, APIs and mobile apps of the S&P Global list that contains the world's largest financial organizations from 22 countries.”

According to the findings, 85 e-banking web applications failed a GDPR compliance test and 49 failed a PCI DSS test. “Only three main websites (Credit Suisse, Danske Bank and Handelsbanken) out of 100 had the highest grades 'A+' both for SSL encryption and website security,” the report said.

“Given the non-intrusive nature of the research and formidable resources available to the top banks studied in the research, the findings urge financial institutions to revise their existing approaches to application security,” said Ilia Kolochenko, CEO and founder of ImmuniWeb.

“Most of the data breaches involve or start with insecure web and mobile apps that are too frequently under prioritized by future victims. Unfortunately, most cybersecurity teams today carry a burdensome duty to meet compliance and regulatory requirements as the first priority and simply lack available resources to tackle other essential tasks. Eventually, they become low-hanging fruits for cybercriminals.”

Researchers detected 29 active phishing campaigns targeting customers of the financial institutions. “Phishing websites either spread banking malware aimed to steal e-banking credentials or provide fraudulent login forms aimed to steal victim’s credentials. Most of the malicious websites were hosted in the US,” the report said.

[Image: vU5QDpw.png]
Reply
#2
Not really surprising
Reply


Possibly Related Threads...
Thread Author Replies Views Last Post
  Computers vulnerable to attack through USB ports, report Mohammad.Poorya 0 149 02-27-2019 , 07:00 PM
Last Post: Mohammad.Poorya
  Comodo not vulnerable to this AppVerifier injection. mrtrout 1 609 03-25-2017 , 12:32 AM
Last Post: baziroll
  Warning! Over 900 Million Android Phones Vulnerable to New 'QuadRooter' Attack gdant 0 518 08-09-2016 , 03:35 PM
Last Post: gdant
  LastPass users vulnerable to Phishing attacks Mohammad 2 1,032 01-18-2016 , 06:13 PM
Last Post: Harry

Forum Jump:


Users browsing this thread: 1 Guest(s)