Editorial & Advertiser Disclosure Global Banking And Finance Review is an independent publisher which offers News, information, Analysis, Opinion, Press Releases, Reviews, Research reports covering various economies, industries, products, services and companies. The content available on globalbankingandfinance.com is sourced by a mixture of different methods which is not limited to content produced and supplied by various staff writers, journalists, freelancers, individuals, organizations, companies, PR agencies Sponsored Posts etc. The information available on this website is purely for educational and informational purposes only. We cannot guarantee the accuracy or applicability of any of the information provided at globalbankingandfinance.com with respect to your individual or personal circumstances. Please seek professional advice from a qualified professional before making any financial decisions. Globalbankingandfinance.com also links to various third party websites and we cannot guarantee the accuracy or applicability of the information provided by third party websites. Links from various articles on our site to third party websites are a mixture of non-sponsored links and sponsored links. Only a very small fraction of the links which point to external websites are affiliate links. Some of the links which you may click on our website may link to various products and services from our partners who may compensate us if you buy a service or product or fill a form or install an app. This will not incur additional cost to you. A very few articles on our website are sponsored posts or paid advertorials. These are marked as sponsored posts at the bottom of each post. For avoidance of any doubts and to make it easier for you to differentiate sponsored or non-sponsored articles or links, you may consider all articles on our site or all links to external websites as sponsored . Please note that some of the services or products which we talk about carry a high level of risk and may not be suitable for everyone. These may be complex services or products and we request the readers to consider this purely from an educational standpoint. The information provided on this website is general in nature. Global Banking & Finance Review expressly disclaims any liability without any limitation which may arise directly or indirectly from the use of such information.

FBI warns criminals are targeting banks – PhishMe says they should raise their game

Commenting on an FBI warning that fraudsters are now targeting financial institutions using spam, phishing emails, keystroke loggers and remote access Trojans, PhishMe says that the rising level of attack sophistication means that the education techniques used by these organisations need to change.scott g
According to Scott Greaux, vice president of product management with the anti-phishing security training specialist, “Education is always going to the best defence, but many of these organisations need to break away from the traditional security awareness model and employ creative, as well as immersive, education techniques,” he said. “It’s no good just informing users when they join the company what they shouldn’t do from a security perspective – you have got to change user behaviour. The reason criminals still use tactics such as phishing is because they know they work – which shows that all too often education is failing.
Greaux says that insulating critical business process from user devices is also a highly effective way to reduce the risk of cross contamination. It adds an important extra layer of defence, he says, because it allows organisations to implement more stringent controls – as well as monitoring – on their mission critical systems and processes.
Modern cybercriminal attacks – as the FBI’s in-depth analysis of the threat and its recommendations clearly show – are multi-vectored in nature, he adds, noting that the problem facing organisations is that it only takes a single click on a phishing email, or the execution of an email attachment, to infect the user’s desktop.
“From there, it’s only a short step before the security ship sinks. This is why we say it is critical that financial institutions – whose systems represent a high-yield target to cybercriminals – should also implement a mix of random and threshold based reviews for all their wire transfers,” he said.
“This will add an extra layer of human interaction to transactions, making it more challenging to fraudulent transfers to go unnoticed. In the longer term, adding more effective and interactive staff training can also help the financial institutions raise their security game,” he added.
“Using interactive education techniques – such as mock phishing exercises – will not only help improve awareness of these attack vectors, but it will also help to increase knowledge retention amongst employees. Adding a little fun and enjoyment to the mix also goes a long way to ensuring staff will respond positively, we have found,” he added.
For more on PhishMe: http://www.phishme.com
For more on the FBI’s warning to financial institutions: http://bit.ly/OGuGnu