Connect with us

Banking

Cyber-Attacks Top of Banks’ Concerns

Published

on

Leon-Ward

By Leon Ward, Director of Product Management, Sourcefire

Leon-WardEarlier this month the Bank of England’s Andrew Haldane revealed that four of the six top UK banks have listed cyber-attacks as their number one concern. In addition, for the first time, one of the top US banking regulators has named cyber-threats as a major factor heightening banks’ operational risk. And banking security experts say this is a sign that great regulatory scrutiny will come.

For any organisation a breach in security is a major issue. But for banks in particular, where consumer confidence is of paramount importance, a brand may suffer such irreparable damage, there could be no going back. Just last month Zeus, cyber criminals remodeled an old virus called Zeus and used it to obtain banking credentials and hack into bank accounts; it managed to steal $70 million.

From whichever vantage point you view it, the cyber-security landscape has changed. It is now about preparing for the worst and mitigating the risk to protect critical data and infrastructures. When it comes to IT security, there is no silver bullet. It’s a fact that for many banks it’s not “if” but “when” a breach will happen. They should start by asking themselves “what would I do differently if I knew I was going to be compromised?” and then build their security strategy to address this scenario.  Furthermore, banks shouldn’t obsess on “who” is attacking them from “where”, but keep focused on the threats themselves along with their effective remediation.  This way they can better protect themselves when the inevitable happens.

One challenge for banks is that information security has traditionally been the remit of the IT department alone, with little executive or board level engagement. This has to change. Banks must challenge their traditional approach to information security by ensuring that cybercrime is on the corporate risk management agenda at the same level as credit and market risks. Only by giving it this level of priority will information security be effective across the whole organisation.

The key issue for IT security defenders, whether working for a bank, retail organisation or a utility company is that today’s hackers have become increasingly sophisticated and their attacks are ever more innovative. The good news, though, is that the technology and processes exist to effectively protect today’s increasingly complex IT environments against sophisticated attacks. Here are a few pointers:

Shore up your defences -Any advanced malware response strategy must start with detection and blocking. In order to have effective detection and blocking, without a lot of “noise,” you need a baseline of information about what’s on your network in order to defend it – devices, operating systems, services, applications, users, content and potential vulnerabilities. Malware detection, the ability to identify files as malware at the point of entry and remediate accordingly, combined with implementing access control over applications and users, is also important. Not only do these measures help you to take steps to reduce the surface area of attack, but with the right informational context, detection may also indicate that your organization is in the bull’s-eye of a targeted attack.

Identifying the Target(s) – The best threat detection and blocking only goes so far. When an attack does happen you need to be able to identify ‘Patient Zero’, the malware origination point. From there, visibility to identify affected systems, the application that introduced the malware, the files that are causing it to spread and which systems are affected enables you to address the infection at the root and avoid re-infection.

Enemy Reconnaissance – When an attacker successfully circumvents traditional security technologies, your incident response plan kicks in. At that point, chances are you’re in firefighter mode without the time, nor a PhD in forensics, to delve into volumes of data and sophisticated analytics. Use of Big Data analytics to identify fundamental behavioral characteristics of the malware will help you to quickly understand the threat. Visibility into how the malware affects other files it has either interacted with or dropped on the system is also essential.

Gaining the Upper Hand – With greater visibility and better protection, you can start to gain control and remediate. Detection and blocking combined with identifying affected systems ensures you start from a position of strength, eradicating the malware so you don’t lose ground. Updating protections based on the latest threat intelligence as well as constraining and eliminating attack vectors with application control enables you to further reduce risk. Understanding file behaviour and its path can help you minimize the impact of an attack and recover.

Effective advanced malware response requires visibility and control across the entire IT environment and along the full threat lifecycle, to not only identify and stop the spread of malware but also minimize the risk of reinfection. With the ability to detect and eradicate malware quickly and effectively you can be confident your security and incident response strategy is up to today’s challenge.

 

 

 

Banking

RegTech 2020: The rise of Open Banking

Published

on

RegTech 2020: The rise of Open Banking 1

This month on the RegTech 20:20 podcast, host Alex Ford is joined by industry experts Gavin Littlejohn, Chairman of The Financial Data and Technology Association (FDATA) and Jamie Leach, Regional Director of FDATA ANZ and Founder of Open Data Australia, to discuss developments in Open Banking, and the place of RegTech.

Today, the focus is on the digital customer experience and the insight offered indicates that there has been a major shift in the FinTech ecosystem as a source of potential innovation for banks, rather than being a direct competitive challenge.

In the podcast, Alex quizzes Jamie on the concept of sharing data and the impact of the introduction of Open Banking rules under the Consumer Data Right (CDR) in Australia. Jamie shares that it is an exciting time to be involved in the sector:

“…what we really need to consider is that Open Banking in Australia is very different to Open Banking in the UK. Really, what has spurred Open Banking in Australia under the Consumer Data Right is the pursuit of creating greater competition and greater innovation, while allowing consumers to do more with their data.”

Gavin, who has many years of experience in the industry and, as well as his role with FDATA is also a key member of the UK Open Banking Implementation Entity, speaks on the theme of advocating Open Finance in the UK.,’

Delving deeper into Open Banking, he highlights the fact that it has been an interesting journey and states that “the important thing to understand is the difference between the UK’s Open Banking order and the wider payment services directive.”

Not only concentrating on Australia, Jamie also works across the sector in the UK and, also looking at its evolvement here, she suggests that the people creating the rules are now taking notice, adding: “We are just getting started – the UK has been at it for nearly three years and it is still gaining momentum.” 

With regards to future predictions, Jamie believes “It’s going to take 12, 18 or 24 months before we see any mainstream major adoption and where the potential of Open Banking can go in this market”

Moving to the  differences between Open Finance and Open Banking. Gavin defines the latter  as “payment initiation and access to payment data, which enables a third-party provider or fintech with a customer relationship to initiate a payment and get access to the data relating to transactions.”

“…the concept of Open Banking is a bit like electricity – you don’t use it directly; you use an appliance that uses it. This could mean loans, money management apps, or cloud accounting platforms, which all use Open Banking.” 

Throughout the episode, both guests provide interesting insights and hint at the significant potential of Open Banking.and the connection to RegTech within this domain.

It is clear that what we see today is only the beginning. Despite the industry still being in the early stages of implementation in almost all cases, there is increasing interest in moving beyond this to include a far broader spread of financial products.

You can listen to the full episode at https://www.encompasscorporation.com/regtech2020-podcast/ or across all major platforms, including Apple Podcasts, Google and Spotify.

Continue Reading

Banking

New digital first bank – Monument – announces its key technology providers

Published

on

New digital first bank - Monument - announces its key technology providers 2
  • Monument selects Mambu, Salesforce, Amazon Web Services, Persistent Systems and Accenture as key providers for its technology build
  • Monument is the first challenger bank in the UK to service the unmet demands of more than 3.5 million mass affluent clients: professionals, property investors and entrepreneurs
  • It is building a modern, unique, lego-like technology platform which takes best of breed SaaS providers and integrates them in a cloud based microservices architecture

  • This will deliver an exceptional client experience and enable Monument to innovate and to introduce new components on a frequent basis
  • Monument today announces that Mambu will be the central core banking engine in the platform alongside Salesforce for CRM, and AWS for cloud services
  • Monument has also engaged Persistent Systems and Accenture Interactive to support the platform build

Following receipt of its banking licence with restriction on 6 October 2020, Monument has now signed agreements with a number of key technology providers to enable the build of its bespoke technology platform.

Monument wants to deliver exceptional client experiences by using technology solutions that are modern, flexible, easy to integrate and ultimately, if necessary, able to be replaced should the need arise. The design of its lego-like technology platform is Monument’s solution to the huge challenges faced by the legacy systems of established banks. Having assessed the market over many months, Monument concluded that no appropriate single solution existed in the market for the products and services that Monument will launch in 2021.

In addition, Monument only wishes to develop its own technology where it can deliver significant competitive advantage, for example in the mobile and web services to be used by clients. Much of   the technology platform is therefore based on best of breed solutions from modern, cloud-based providers.

Mambu has developed the leading cloud banking engine which is an excellent fit for the platform that Monument is building.  Similarly, Salesforce provides an industry leading CRM (customer relationship management) solution which can easily be integrated with Mambu and other solutions. AWS, as a leading provider of cloud-based infrastructure, provides a range of components to ensure the platform is reliable, scalable, secure and flexible.

To support Monument in building and integrating a platform with more than 18 different components/providers, Monument has chosen to work with Persistent Systems, a leading global solutions provider specializing in digital with extensive experience in software as a service (SaaS) solutions. To support Monument in rapidly building its mobile app and web-based channels, Monument has chosen to work with Accenture Interactive, which has significant expertise in building innovative digital experiences in both the financial and non-financial sectors.

Steve Britain, Monument’s Chief Operating Officer said:

“We have been working closely with our chosen providers for some months now, to lay the foundations for the build of our platform. We are delighted at how much we have already achieved, particularly as much of the work has been done by a highly distributed team because of COVID-19.  We are now focused on completing the work to build a unique configuration of best in class software components that will make us highly flexible for the future and deliver market leading client service.”

More announcements will be made shortly as other key components of the architecture are confirmed.

Sudip Dasgupta, Monument’s Chief Technology Officer added:

“It was essential to me that we selected the strongest providers available. Those that offer us modern technology solutions with the best degree of integration that we need, together with flexibility for the future and proven operational reliability. In Mambu, Salesforce and AWS we have certainly achieved that objective and we are excited about our future engagement with them. Equally, as we rapidly build our platform for launching with clients in early 2021, we wanted support from providers  who have been on this journey before and in Persistent and Accenture Interactive, I am delighted to say we have found that.”

Monument will be the only bank to offer its clients an entirely digital journey for buy-to-let and property investment lending of up to £2million. It will offer market leading, top quartile savings rates and its model is designed to reward loyalty. So, if a saver deposits money for a subsequent fixed term, they will get a better rate than a new customer. And a borrower who renews their loan will also be offered a favourable rate.

Continue Reading

Banking

UKRSIBBANK, part of BNP Paribas Group, announces a strategic partnership with financial wellbeing startup Dreams, to enhance the digital user experience of its 2 million customers in Ukraine

Published

on

UKRSIBBANK, part of BNP Paribas Group, announces a strategic partnership with financial wellbeing startup Dreams, to enhance the digital user experience of its 2 million customers in Ukraine 3
  • The technology powering popular consumer app, Dreams – which has helped 460,000 users save over 440M EUR – will be made available to UKRSIBBANK’s users in Ukraine.
  • Through the integration of the Dreams platform within UKRSIBBANK’s own digital tools, customers of the bank can set and achieve money-saving goals, track and improve their financial lives.

Dreams (https://www.getdreams.com/en/b2b/), the Stockholm-born fintech empowering millennials to save and feel better about their money, today announces a strategic partnership with Ukrainian commercial bank UKRSIBBANK, a subsidiary of French international bank BNP Paribas Group.

This partnership follows the announcement earlier this year of Dreams’ first enterprise partnership with banking software provider Silverlake Symmetri, and the recent unveiling of a new department in Stockholm dedicated to the development of Dreams’ B2B partnerships. The announcement marks an expansion of the company’s business model as it consolidates its B2B offering and evolves its services as a provider of white label solutions for financial institutions.

Through the integration within UKRSIBBANK’s own digital tools of the Dreams Platform – which is rooted in scientific principles – customers can set and achieve money-saving goals through clever, automated saving features, in addition to nudges and saving hacks.

The Dreams Platform will be included as part of UKRSIBBANK’s digital banking offering for its 2 million+ customers, and is set to grant millions of potential consumers across Ukraine access to products which will help keep their finances on track and improve their financial lives.

The rise in digital self-help tools has long been anticipated by Dreams and forward-thinking financial institutions. The current global economic uncertainty brought about by the COVID-19 pandemic has also placed significant strains on people’s finances, and the demand for better personal finance tools has only accelerated. The partnership with Dreams is welcomed by UKRSIBBANK which is currently striving to equip its customers with the best possible banking solutions whilst helping them achieve a more sustainable lifestyle.

Dreams is firmly established as an authority in its industry, having launched its consumer-facing app in its native Sweden in 2016 and Norway in 2018 – where it has already achieved a 16% market share of all 20-39 year olds.

Henrik Rosvall, CEO and founder of Dreams, comments: “It’s a true honour to be partnering with UKRSIBBANK and BNP Paribas Group, and we’re incredibly excited to be introducing the Dreams solution to UKRSIBBANK’s customers and the wider Ukrainian market.

“Dreams and UKRSIBBANK can now lead the charge, with BNP Paribas Group’s corporate strategy having shifted in recent years to focus on guiding customers towards responsible consumption and sustainable personal finance management. I’m confident that our mission of helping millennials save more and feel better about their money makes us the ideal partners.

“Our financial wellbeing platform – which is built upon behavioural science and personal finance management principles – will provide the perfect tool for UKRSIBBANK to help its customers make better financial choices and become more sustainable in the way they handle their finances. This partnership will also help UKRSIBBANK safeguard the loyalty of its customers and futureproof its digital banking offering against a growing number of challenger banks and fintechs.”

Konstantin Lezhnin, Head of Retail at UKRSIBBANK BNP Paribas Group, comments: “I believe that banks have a role to improve their customers’ lives. Planning and saving for important life events improves our quality of life by reducing stress levels, and we wish to make our customers feel more confident and in-control of their lives.

“UKRSIBBANK has always applied innovative ways to assist our customers in financial planning, so we are very happy to now be working with Dreams, the best European player in behavioural savings. They have an extremely solid track record in Sweden and Norway based on scientific research, so we are confident that this partnership will work positively for our customers in Ukraine. This also demonstrates our strategy to cooperate with startups and innovative companies that seek ways to expand their operations.”

Continue Reading
Editorial & Advertiser disclosureOur website provides you with information, news, press releases, Opinion and advertorials on various financial products and services. This is not to be considered as financial advice and should be considered only for information purposes. We cannot guarantee the accuracy or applicability of any information provided with respect to your individual or personal circumstances. Please seek Professional advice from a qualified professional before making any financial decisions. We link to various third party websites, affiliate sales networks, and may link to our advertising partners websites. Though we are tied up with various advertising and affiliate networks, this does not affect our analysis or opinion. When you view or click on certain links available on our articles, our partners may compensate us for displaying the content to you, or make a purchase or fill a form. This will not incur any additional charges to you. To make things simpler for you to identity or distinguish sponsored articles or links, you may consider all articles or links hosted on our site as a partner endorsed link.

Call For Entries

Global Banking and Finance Review Awards Nominations 2020
2020 Global Banking & Finance Awards now open. Click Here

Latest Articles

Beyond Transactions: The Payment Revolution 4 Beyond Transactions: The Payment Revolution 5
Finance6 hours ago

Beyond Transactions: The Payment Revolution

By Marwan Forzley, CEO of Veem  The uninterrupted disruption brought on by the pandemic accelerated the need for robust, digital-first...

The UK’s hidden payments crisis: why businesses should rethink their payments strategy 6 The UK’s hidden payments crisis: why businesses should rethink their payments strategy 7
Finance7 hours ago

The UK’s hidden payments crisis: why businesses should rethink their payments strategy

By Edwin Abl, Chief Marketing Officer at Modulr. As the economic conditions imposed by the Coronavirus endure, businesses are facing a...

Investing into a more sustainable future: changing businesses from the inside out 8 Investing into a more sustainable future: changing businesses from the inside out 9
Top Stories7 hours ago

Investing into a more sustainable future: changing businesses from the inside out

By Shawn Welch, Vice President and General Manager of Hi-Cone Worldwide As industries across the world are facing unprecedented uncertainty...

Securing Information Throughout the Supply Chain – Preventing Supplier Vulnerabilities  10 Securing Information Throughout the Supply Chain – Preventing Supplier Vulnerabilities  11
Top Stories8 hours ago

Securing Information Throughout the Supply Chain – Preventing Supplier Vulnerabilities 

By Adam Strange, Data Classification Specialist, HelpSystems  The financial services sector is experiencing extreme disruption coupled with rapid innovation as...

RegTech 2020: The rise of Open Banking 12 RegTech 2020: The rise of Open Banking 13
Banking9 hours ago

RegTech 2020: The rise of Open Banking

This month on the RegTech 20:20 podcast, host Alex Ford is joined by industry experts Gavin Littlejohn, Chairman of The...

The case for AI technology adoption in financial back-office roles to improve efficiency 14 The case for AI technology adoption in financial back-office roles to improve efficiency 15
Technology10 hours ago

The case for AI technology adoption in financial back-office roles to improve efficiency

By Tomas Gogar, AI CEO, Rossum In this era, digital transformation isn’t anything new. Nonetheless, it can still cause a...

Gain financial regulation qualification online 16 Gain financial regulation qualification online 17
Finance11 hours ago

Gain financial regulation qualification online

Gain financial regulation qualification online   Warwick Business School in partnership with the Bank of England are delighted to offer...

COVID-19: Dealing with fraudulent applications for the Bounce Back Loan Scheme 19 COVID-19: Dealing with fraudulent applications for the Bounce Back Loan Scheme 20
Finance15 hours ago

COVID-19: Dealing with fraudulent applications for the Bounce Back Loan Scheme

By Ed Lloyd, EVP Global Head of Sales, Encompass The COVID-19 pandemic is still having a devastating impact on businesses...

EU Commission sets out new intellectual property action plan affecting SEPs, patent pooling and EU design protection 21 EU Commission sets out new intellectual property action plan affecting SEPs, patent pooling and EU design protection 22
Business16 hours ago

EU Commission sets out new intellectual property action plan affecting SEPs, patent pooling and EU design protection

By Andrew White, Partner and UK & European patent attorney at intellectual property firm, Mathys & Squire The EU Commission...

InsurTech is helping to drive the digital evolution of the UK motor retail industry 23 InsurTech is helping to drive the digital evolution of the UK motor retail industry 24
Technology16 hours ago

InsurTech is helping to drive the digital evolution of the UK motor retail industry

By Alan Inskip, Tempcover CEO & Founder If the last nine months have made anything clear, it is that the...

Newsletters with Secrets & Analysis. Subscribe Now