90% of Financial Institutions Targeted By Ransomware in the Last Year

An anonymous reader shares a report: A new report from cloud security specialist Carbon Black, based on responses from CISOs at 40 major financial institutions -- including six of the top 10 global banks -- seeks to better understand the attack landscape. Among the findings are that 90 percent of financial institutions report being the subject of a ransomware attack in 2017. In addition one in 10 respondents report encountering destructive attacks unrelated to ransomware, such as application attacks and fileless malware. These potentially enable cybercriminals to move freely and laterally within an organization's network and often go completely overlooked until it's too late.

100% of all computers were targeted.

[jellomizer]

If ransom ware could find a way in, then it was successful.

Big organizations are easy picking because they have large existing networks, with decades of "Business Decisions" deems acceptable risks, vs paying to get it fixed, installed in the system. With delayed upgrades, because it may effect business flow, and legacy systems that are too critical to be upgraded.

The guys in IT try to warn them, but because they are cost center, such fixes are exceeding their budget.

Re:100% of all computers were targeted.

[AlanBDee]

That's funny. You do realize this is a very bad place to try and plug your crappy product right? Most the people on /. are the ones in IT waving our hands at upper management because they keep trying to cut costs. We know that your statement, "Not a single virus or ransomware infestation" is complete shit!

Go over to Forbes where the silly MBA's will believe that crap.

Re:100% of all computers were targeted.

[jellomizer]

Even if the product works, it doesn't matter because the higher ups doesn't want to invest in IT security.
It is cheaper to get hit, and fire the guy who had been complaining there was a problem for so long.
Because when ever a company gets hit, it is the IT Guy who's gross incompetence is to blame.

Re:100% of all computers were targeted.

An Amazon affiliate link would have worked better.

Re:100% of all computers were targeted.

I use APK's hosts file engine. Since staring it I haven't had any virus infections or malware on my system. The only side effect is that every time I attempt to view a website I either end up on slashdot or a man moose love site. This really isn't a problem because, like APK, I love me some man on moose or moose on man porn.

Re: When will Slashdot comply with the GDPR?

Fascinating, this very quickly ended up at -1. It appears the management may be suppressing efforts to insist that Slashdot comply with the GDPR. Is Slashdot management so hypocritical that they complain when others engage in poor privacy practices, but refuse to engage practice the same data protection practices they condemn others for ignoring?

Should be 100%

[AlanBDee]

Slackers! Looks like 4 of the 40 institutions are so incompetent they don't even know they're being attacked.

Re:Should be 100%

[rickb928]

Bingo.

Re:When will Slashdot comply with the GDPR?

Your post had been flagged and your IP logged, kamarad. We will be sending creimer to update your network to the latest government IT standards. Please prepare 500 pounds of snack bars or he might mistake your arm for food.

If you do not wish a visit from creimer, please build a wall out of fresh fruit and vegetables, it's like Kryptonite to creimer.

Re:When will Slashdot comply with the GDPR?

The butthurt is strong with this one.

Clickbait scare mongering at its finest.

Disclaimer: I work with financial institutions.

Maybe they were targeted, but in my experience we have had few problems, and I would be one of the FPOC if there was an issue.

Therefore the 90% number is scare mongering. Maybe, they were targeted, but I doubt those financial institutions even know they were unless it was successful, and like I said. It hasn't been that successful, at least among my clients.

Re:Clickbait scare mongering at its finest.

[Bob+the+Super+Hamste]

I always take these stories with a hug grain of salt considering that most places view being attacked or targeted as some idiot doing a random port scan or launching blind armitage attacks against some random machine. So the takeaway here is that 90% of firms are actually looking at their log data and misunderstanding it, about 9% aren't even doing that, and about 1% realize that what they are seeing is really just bullshit noise and that they aren't being directly targeted but are being hit by the random internet attacks that go after what ever they can find.

I know the score

90% reported being attacked and the other 10% lied about being attacked.

PC Matic is whitelisting

[tepples]

PC Matic is a software whitelisting utility. PC Matic users don't get ransomware for the same reason game console users don't get ransomware. It's similar to the AppLocker functionality in Windows Enterprise edition but does not require the Enterprise upgrade.

Backups

[PeeAitchPee]

Even before ransomware, it was always cheapest just to make and keep good backups and then when (not if) something happend on your network, you simply nuke the affected nodes to bare metal, reinstall, and restore. Seriously, fuck these guys.

the other 10%

The other 10% reported absolutely no problems have been detected, and that they have not had any breaches either. Sometimes a browser window pops up on its own or client information appears in a TXT file on the root directory but computers are weird like that.

Oh, great!

I just tried to imagine a cybercriminal moving laterally... and ruined my keyboard. Thanks!