Connect with us

Top Stories

Individual DDoS Attacks Can Cost Enterprises US$ 50,000 (£35,000)

Published

on

Individual DDoS Attacks Can Cost Enterprises US$ 50,000 (£35,000)

DDoS attacks can cost enterprises $50,000 (£35,000) per attack – but lost revenue is still only considered to be the fourth most damaging consequence of this type of cyber-attack, according to research published today by Corero Network Security (LSE: CNS), a leading provider of real-time DDoS defense solutions.

The Corero research surveyed over 300 security professionals from a range of industries including financial services, cloud, government, online gaming and media sectors.  An overwhelming number of respondents (91%) said that individual DDoS attacks can cost their organisations up to $50,000 in terms of lost business, the cost of mitigating attacks and lost productivity. In addition, 69% indicated that their organisation experiences between 20-50 DDoS attack attempts per month – equivalent to roughly one attack per day.

But despite this high figure, the vast majority of respondents (78%) cited the loss of customer trust and confidence as the single most damaging effect on business of DDoS attacks.  The second most ranked threat was the risk of intellectual property theft, followed by the threat of malware infection associated with a DDoS attack. Lost revenue was only considered to be the fourth most damaging consequence.

Ashley Stephenson, CEO at Corero Network Security, explains: “DDoS attacks can have an immediate and damaging impact on a company’s bottom line, both in terms of lost revenue and the costs incurred in terms of manpower required to mitigate attacks. Not all DDoS attacks will cost an organisation $50,000, but having your website taken offline can damage customer trust and confidence. It will also impact the ability of sales teams to acquire new customers in increasingly competitive markets. These attacks cause lasting damage to a company’s reputation and could have negative consequences for customer loyalty, churn and corporate profits.”

The research also highlights the growing complexity of DDoS attacks, and their capacity to act as a distraction for more serious network incursions.  The great majority of those surveyed (85%) believe that DDoS attacks are used by attackers as a precursor or smokescreen for data breach activity. In addition, 71% reported that their organisation has experienced a ransom-driven DDoS attack.

Ashley Stephenson continues: “A DDoS attack can often be a sign that an organisation’s data is also being targeted by cyber criminals. As demonstrated by the infamous Carphone Warehouse attack, DDoS attacks can be used as a smokescreen for non-DDoS hacking attempts on the network. Hackers will gladly take advantage of distracted IT teams and degraded network security defences to exploit other vulnerabilities for financial gain.  Considering the huge liability that organisations can face in the event of a data breach, IT teams must be proactive in defending against the DDoS threat, and monitor closely for malicious activity on their networks.”

Participants also viewed DDoS attacks as more of a concern in 2018 than in the past.  The clear majority (83%) cited the proliferation of unsecured Internet of Things (IoT) devices as the top reason for this concern, closely followed by the association between DDoS and data breach activity. DDoS attacks are also becoming more complex to mitigate, with more than 15 employees typically involved in diffusing the threat when an attack strikes, according to two-thirds of respondents (66%).

Ashley Stephenson continues: “In recent months we’ve witnessed new records set for the size of DDoS attacks, as criminals exploited the Memcached amplification attack vector to headline grabbing effect. This has written a new chapter in the DDoS record books and made Terabit-scale attacks a reality. The Memcached vulnerability also exposed additional breach and data corruption risks, as attackers can also exploit these poorly secured servers to steal or temporarily modify customer data.”

Top Stories

Why insurance needs Tesla’s autopilot too

Published

on

Why insurance needs Tesla's autopilot too 1

By Christian Wiens, CEO of Getsafe

Digitization is the industrial revolution of the 21st century. What does this mean for a data-driven industry like insurance? The answer is simple: Turn everything on its head and reinvent yourself under high pressure- the future of insurance is digital.

“Hello Timo, nice to see you. I’ll be glad to help you.” Carla records claims 24 hours a day, seven days a week and takes less than two minutes to evaluate and process them. Carla works for a digital insurer and is a chatbot by profession. While she is answering Timo, she contacts the bank in the background, which pays Timo back his money – the same day. This is not a dream, but already reality.

In the digital age, intelligent machines are the new workers on the assembly line, and data is the new raw material. This applies to almost all industries and applies in particular to the insurance world as insurance is based on mathematical models and probability calculations – in short: on data. The more data on which the calculations are based, the easier it is to derive and price risk profiles. Data therefore changes the core of the product “insurance” in three essential areas; the offer phase, in the event of a claim and in the long-term customer relationship.

In the offer phase, we will experience long-term personalized product bundles that fit customer needs much better – away from standardized and inflexible policies. If the insurer can better assess the needs of the customer on the basis of his past history or behaviour, he is in a position to put together tailor-made insurance packages.

For example, it would be conceivable to automatically adjust the insurance cover as soon as the customer’s life changes, for example if the customer gets married, buys a car or a property or travels abroad.

Customer experience in the event of a claim will also change dramatically. Fraud is still the biggest problem in the system, with 2 percent of the customer base causing 40 percent of the system’s inefficiency. According to estimates by the Association of British Insurers (ABI), one insurance fraud is detected every minute – amounting to economic losses of £3bn every year. Of the estimated worth of total fraud cases a year, £2bn goes undetected.

But what if insurers are better able to assess customers on the basis of data and know which customers they can trust – and which not? Credible customers could then benefit from immediate payment of the loss incurred, while the few “black sheep” would not even be accepted as customers or would be checked more closely in the event of a claim being reported.

The computer does not act uncontrolled, but within certain parameters defined by humans. This is comparable to processes in the manufacturing industry: Here, too, people define the exact parameters that are to be checked – controls are implemented by machines that are significantly less prone to errors. The situation is similar when it comes to insurance fraud: people make value judgements and specify which indicators can point to a case of fraud. They retain sovereignty over the entire process. The smart algorithm, on the other hand, is only the tool for evaluating and linking the many individual data points. Smart algorithms will reduce  employees’ workload, but will not replace them.

Finally, digitization will also change the long-term relationship between insurer and insured. Tomorrow’s insurance will not only settle claims, it could even prevent them arising. A better database will not only make it possible to calculate the probability and amount of loss more precisely, it will also make it easier to calculate the risk of loss. Digital systems and sensors can also help prevent possible claims. Telematic tariffs in motor vehicle insurance are already moving in this direction by promoting a prudent driving style.

Sensors on washing machines and industrial plants or intelligent smoke detectors are one thing – monitoring people in the health sector is another. Some health insurers reward sport activities, for example, if the customer can prove this with smart fitness watches. It remains to be seen to what extent customers are willing to exchange this personal data for premium refunds. In the long term, the legislator will also be asked to take action to ensure that the solidarity principle is not undermined.

However, the danger of increasing surveillance is countered by a clear increase in customer service, individualised services and flexibility on the customer side: Digital insurers rely on  customer’s self-determination and a positive insurance experience in an industry that sometimes appears to be immobile and non-transparent.

Digitalisation has reached the insurance industry, but has not yet shaken its foundations. That will change: Tomorrow’s insurance will have little in common with today’s structures and processes. The autopilot at Tesla will also come for insurance. Not all companies will be able to master this switch to become digital insurers.

Continue Reading

Top Stories

How ISO 20022 migration is changing the landscape in payments

Published

on

How ISO 20022 migration is changing the landscape in payments 2

By Paul Thomalla, Global Head of Payments at Finastra

The ISO 20022 standard is a catalyst for change in digitalisation and payments. The current edition of the standard was published in May 2013, and it’s been clear since then that the standard represents the future of payments messaging. This is due to the rich information, process automation and interoperability it enables. What started off in the Automated Clearing House world with the Single European Payments Area is increasingly becoming the de-facto standard for instant payments and for high-value payments worldwide. In fact, we estimate that all major payment systems and currencies will have moved over to ISO 20022 by the end of 2023.

Banks, meanwhile, will be able to get closer to their customers and offer better services. As this happens, the nature of the entire payments supply chain will change: there will be no one owner. Instead, consumers, corporates, banks, software vendors, fintechs and other stakeholders will all play a part.

Migration to ISO 20022 is moving at pace with one of two adoption models being taken. In the first approach, a ‘like-for-like’ migration occurs, which means data fields and messages are gradually moved over in compliance with the new ISO 20022 standard. However, the bank and client aren’t reaping the potential of the new standard as no further action has been taken. ‘Going native’ is the second approach. This allows extensive data sharing between banks and corporates unlocking a range of benefits including deeper insights into customers and partners, better accounting and financial data and more efficient payment processing. Data-rich messages can provide corporates with all the information they need to automatically reconcile transactions the moment they happen.

Banks deciding which way to move forward must remember that corporates have been waiting eight years for this new ISO 20022 functionality and if their bank is not able to deliver the promised benefits, they could decide to take their business elsewhere.

Planning the migration process

Deciding which approach to take is the first step in the migration process for banks. The main transition models being deployed to the market are: the ‘like-for-like’ translation model, or; for an ‘ISO-Native’ approach – either the complete overhaul model, or the hybrid model.

The translation model approach translates incoming MX messages to the SWIFT MT format and vice-versa for outgoing messages. This model is less disruptive and has a lower upfront cost. However, it involves high dependence on third parties resulting in less interoperability with fintechs and no new customer insight. The complete overhaul model allows organisations to execute a wholesale architecture transformation. This approach gives access to leverage rich data across the business including new insights on the market and customers. One negative aspect of this approach is the fact it is disruptive and requires a large upfront investment. Finally, the hybrid model works well for global banks where translation is needed across the board. This approach offers flexibility and the ability to localise strategic response, however it adds a level of complexity to users. The leading model is unclear, but banks must remember to align their payments operations with their chosen model.

Paul Thomalla

Paul Thomalla

That’s not to say that the adoption of ISO 20022 will be plain sailing. One challenge is that the standard describes an asynchronous messaging process. For banks which currently rely on return messages to confirm the successful completion of a payment transaction, this will cause significant upheaval, and is a change that underscores the need for everyone in the payments ecosystem to get ISO 20022 migration right. Banks will need to overhaul their business processes and operations to adapt to asynchronous messaging. This will in turn require new systems, such as Confirmation of Payee and Request to Pay.

The new format requires a fundamental change to the payments world, so the decision on which transition model best suits their needs isn’t to be taken lightly. Internal and external considerations will help banks determine next steps to successfully implementing ISO 20022. Internally, banks must ensure they have the right people to deliver this transformation, have processes in place to easily review and adapt back office functions and have the correct technology required for the migration. Our approach at Finastra has been to build a payments hub that is ISO 20022 native from the start – ready for widespread adoption across the industry. Banks must also look at external factors like customer impact, market share, competitors and regulatory constraints.

Benefits across the payments value chain

The adoption of ISO 20022 allows for additional, enriched data to be transferred within the payment instruction. The new format has more granular and better organised data elements as well as a consistent data dictionary across the payments chain to speed processing and improve compliance. This prevents misinterpretation and expensive manual interventions. All of this will facilitate improved processing and allow all agents in the payment to make more informed compliance decisions.

In the short term, including additional party and remittance information will help reconcile transactions. For example, QR codes are being used more widely on invoices, clearly identifying the beneficiary and facilitating automation in the back office. Looking at the medium term, institutions will be able to limit the resources they have to dedicate to exception handling and one-off investigations due to missing information or unstructured input that cannot be easily integrated into automated workflows. And finally, the benefits of ISO 20022 in the long term mean data that is properly structured and adhered to will support better regulatory compliance practices and financial crime monitoring.

The rewards of ISO 20022 make any temporary disruption more than worth it. We’re excited to enter a new era of payments messaging that will drive collaboration, innovation and efficiency through interlinked partner ecosystems.

Continue Reading

Top Stories

Agile thinking in times of uncertainty

Published

on

Agile thinking in times of uncertainty 3

By Caryn Skinner, Co-Director of Sharpstone Skinner

“Several times lately, I have finished my work, closed the laptop and sat staring out of the window of my spare room office worrying that I don’t have the answers. That my team are looking to me for guidance about the future…and I simply don’t know.” Paul Jackson-Cole, Executive Director of Engagement, Parkinson’s UK

A genuine, honest reflection from an impressive and successful leader. He has gravitas, is trusted and a great coach to his senior reports. He is also highly intuitive, with an innate ability to be a pioneering visionary who can then work with others to ground that vision into reality. And yet, he is stuck. He still has his instincts, yet with the world, in flux, he is finding it hard to convince his team to go with him because they need more tangible evidence to ground his ideas.

Gut-feel judgement is part of agile thinking which is a crucial leadership skill. In the financial world you may have finely honed other types of thinking as you need to show evidence, use data and put forward your thoughts in a rational way.

Agile thinking has five main features:

Systems thinking – investigating an issue from a broad perspective to understand the interdependencies

Possibility thinking – to be open-minded and generate a wide range of possibilities, the classic brainstorm

Logical analysis – to reach valid conclusions using clear, rational logic

Evidence-based thinking – identify core issues by analysing evidence from relevant resources

The fifth one is gut-feel judgement – relying on your gut instincts to provide valuable input for decisions.

Richard Branson says, “I rely far more on gut instinct than researching huge amounts of statistics”, and he’s not done too badly.

Mr Branson may make you shudder though, as it is quite an extreme view. Most of us use all or a few of them combined. Yet in this world of unknowns, your instincts may need to be more finely tuned. It isn’t easy to find evidence and interdependencies if we have never been in this situation before. Rational logic needs something tangible to test it against, the world feels nebulous at the moment. Being open-minded looks like a good option yet can get stifled because the possibilities are almost endless.

Here are some ways to tap into and use your gut-feel judgement:

  1. Know that your instincts are not woolly ideas but based on your years of experience. The thought has come from somewhere, an experience you have had, something you have read a conversation you had with a colleague.
  2. Feed and grow your instincts. The more exposure you have to your market the harder your instincts will work. Keep getting out and about, visit your people, talk to them, learn from them about the front-line challenges and successes.
  3. See your business through the eyes of your customer or client. Why do they like doing business with you, what would they like you to do better and does your business align with their needs.

Make your own observations about what’s next for your business rather than staring at spreadsheets of cold data. I heard about a trader who regularly walks the shops to see what’s selling and what isn’t, it informed her instinct about where the next investments might be.

  1. Keep in touch with the world around you, tune into what’s coming over the horizon. A client of ours was in marketing for a bank, he regularly spoke to his teenage nieces and nephews about how they communicated, how many digital “languages” they spoke and which social platform they used for what. They were his future customers and the conversations fuelled his instincts in discussions with the senior team around the bank going online and changing the way they communicated with customers.
  2. Trust your gut then test it against other types of thinking to ground it and help you sell it in. Others may not get your vision so painting the picture for them with more solid evidence will make your job easier.

It is an exciting area of leadership and one that, perhaps, has been overlooked in a world that can access evidence, stats and data at the swipe of a screen.

Next time you find yourself staring out of your home office window, let your thoughts wander, don’t evaluate them or crush any ideas that come to you, it might be that your gut is trying to tell you something.

Continue Reading
Editorial & Advertiser disclosureOur website provides you with information, news, press releases, Opinion and advertorials on various financial products and services. This is not to be considered as financial advice and should be considered only for information purposes. We cannot guarantee the accuracy or applicability of any information provided with respect to your individual or personal circumstances. Please seek Professional advice from a qualified professional before making any financial decisions. We link to various third party websites, affiliate sales networks, and may link to our advertising partners websites. Though we are tied up with various advertising and affiliate networks, this does not affect our analysis or opinion. When you view or click on certain links available on our articles, our partners may compensate us for displaying the content to you, or make a purchase or fill a form. This will not incur any additional charges to you. To make things simpler for you to identity or distinguish sponsored articles or links, you may consider all articles or links hosted on our site as a partner endorsed link.

Call For Entries

Global Banking and Finance Review Awards Nominations 2020
2020 Global Banking & Finance Awards now open. Click Here

Latest Articles

Rising to the Challenge of the Pandemic 4 Rising to the Challenge of the Pandemic 5
Interviews7 hours ago

Rising to the Challenge of the Pandemic

For over seven decades, Development Bank of the Philippines (DBP) has been the Philippines premier development financing institution, supporting inclusive...

Who Needs an Offshore Bank Account? 7 Who Needs an Offshore Bank Account? 8
Banking9 hours ago

Who Needs an Offshore Bank Account?

By Luigi Wewege is the Senior Vice President, and Head of Private Banking of Belize based Caye International Bank Even today,...

Why insurance needs Tesla's autopilot too 9 Why insurance needs Tesla's autopilot too 10
Top Stories10 hours ago

Why insurance needs Tesla’s autopilot too

By Christian Wiens, CEO of Getsafe Digitization is the industrial revolution of the 21st century. What does this mean for...

What The Pandemic Has Taught Us About Remote Work 11 What The Pandemic Has Taught Us About Remote Work 12
Business10 hours ago

What The Pandemic Has Taught Us About Remote Work

By Anthony Lamoureux, Strategy and Development Director at Velocity Smart Technology Before the turn of the decade – which already feels like...

The art of change management for finance and accounting teams 13 The art of change management for finance and accounting teams 14
Business10 hours ago

The art of change management for finance and accounting teams

By Magali Michael, Director at Yooz The Covid-19 crisis has had a dual impact on businesses across the world. On one...

Humans vs Robots: Which Is Better for Managing Investments? 15 Humans vs Robots: Which Is Better for Managing Investments? 16
Investing10 hours ago

Humans vs Robots: Which Is Better for Managing Investments?

By Anton Altement, CEO of Polybius and OSOM Finance, In an era of technological advancement, innovation, and fear-mongering sci-fi programs,...

Why content should be at the heart of successful agile marketing 17 Why content should be at the heart of successful agile marketing 18
Business11 hours ago

Why content should be at the heart of successful agile marketing

By Yogesh Shah, CEO, iResearch. During this time of unprecedented business change, campaigns today need to be agile, flexible and responsive and companies...

Can companies really afford to WFH? 19 Can companies really afford to WFH? 20
Finance11 hours ago

Can companies really afford to WFH?

By Carmen Ene, CEO of 3StepIT. Firms scrambled to enable Working from Home (WFH) at the beginning of the Covid...

FICO UK Credit Market Report September 2020 Shows Card Spend Rise Stalling 21 FICO UK Credit Market Report September 2020 Shows Card Spend Rise Stalling 22
Finance11 hours ago

FICO UK Credit Market Report September 2020 Shows Card Spend Rise Stalling

Analysis based on UK card issuers’ data also shows high level of unused credit could be a risk as festive...

Investors’ growing appetite for private markets means firms must improve their regulatory governance 23 Investors’ growing appetite for private markets means firms must improve their regulatory governance 24
Investing12 hours ago

Investors’ growing appetite for private markets means firms must improve their regulatory governance

·       Both large and small firms are struggling to meet regulatory demands due to poor governance of deal distribution, inaccurate investor...

Newsletters with Secrets & Analysis. Subscribe Now