Today, cybersecurity firm Positive Technologies released its yearly report into vulnerabilities in financial applications. According to the report, the number of vulnerabilities the Positive Technologies teams discovered has fallen, which means banking apps and websites are getting safer. However, two thirds of online banking systems still contain at least one critical vulnerability. Don Duncan, Director at NuData Security, a Mastercard Company commented below.
Don Duncan, Director at NuData Security, a Mastercard Company:
While fewer critical vulnerabilities is good news, this doesn’t mean customer accounts are protected. All the exposed data – due to the endless breaches – makes it easier to find working username and password combinations. Today, a fraudster doesn’t need to break a system to access sensitive data. Most of the attacks’ objective is to reach sensitive data they can profit from. Bad actors can easily get their hands on the customer data that breaches make available.
One way for financial institutions to protect their customers’ accounts – and, in turn, their business – is to implement security tools that don’t rely on the data provided by the customer.
Multi-layered solutions that include passive biometrics are providing enhanced account protection that doesn’t rely on static data. Passive biometrics monitors the user’s inherent behaviour such as how they type or hold the device – making this information impossible to steal or replicate by bad actors. This way, even if the static data has been stolen, decrypted, and ready to be used, bad actors can’t take over the account.”
The opinions expressed in this post belongs to the individual contributors and do not necessarily reflect the views of Information Security Buzz.