Without commenting on the geopolitical aspects of this, this is another demonstration of the need for international cooperation against cybercriminals and attacks like this. The financial community knows no boundaries, and funds can be transferred/stolen within seconds. Without cooperation, identifying the perpetrators can be next to impossible.
Smaller banks and financial institutions may lack the sophisticated network and security architecture of larger institutions, and also possibly the security staffing expertise. They potentially should be looking at SaaS solutions where someone else worries about the software.
Banks need to look at acquiring solutions that have DLP capabilities and then need to be paranoid in setting up flags to detect anomalies in “business as usual,” such as attempts at fund transfers to countries where those transfers haven’t occurred before, unusual amounts of transfers and or in the monetary amounts of the transfer flagged – depending on whether there has been an ongoing relationship, new relationship and other similar variables.
[su_box title=”About Lastline” style=”noise” box_color=”#336588″][short_info id=’61000′ desc=”true” all=”false”][/su_box]
The opinions expressed in this post belongs to the individual contributors and do not necessarily reflect the views of Information Security Buzz.