32
©2015 Check Point Software Technologies Ltd. 1 The Digitisation of Banking: Threats and Opportunities Tony Jarvis Chief Strategist, Threat Prevention APAC, Middle East & Africa ©2015 Check Point Software Technologies Ltd.

The Digitisation of Banking: Threats and Opportunities …aitri.org/2017aitri/docs/Session7.pdf · The Digitisation of Banking: Threats and Opportunities Tony Jarvis ... AFGlobal

  • Upload
    vancong

  • View
    223

  • Download
    0

Embed Size (px)

Citation preview

Page 1: The Digitisation of Banking: Threats and Opportunities …aitri.org/2017aitri/docs/Session7.pdf · The Digitisation of Banking: Threats and Opportunities Tony Jarvis ... AFGlobal

©2015 Check Point Software Technologies Ltd. 1

The Digitisationof Banking:Threats andOpportunities

Tony Jarvis

Chief Strategist, Threat Prevention

APAC, Middle East & Africa©2015 Check Point Software Technologies Ltd.

Page 2: The Digitisation of Banking: Threats and Opportunities …aitri.org/2017aitri/docs/Session7.pdf · The Digitisation of Banking: Threats and Opportunities Tony Jarvis ... AFGlobal

©2015 Check Point Software Technologies Ltd. 2

History of Online Banking

First Internet service using

television

1983 1994

First online banking website

1998

Eight US banks have at least 1 million

users each

2001

PayPal reinvents online payments

2007

iPhone redefines smartphones

forever

2011

400 million people are banking online

2013

Facebook targets financial services

Page 3: The Digitisation of Banking: Threats and Opportunities …aitri.org/2017aitri/docs/Session7.pdf · The Digitisation of Banking: Threats and Opportunities Tony Jarvis ... AFGlobal

©2015 Check Point Software Technologies Ltd. 3

FinTech

Threat or opportunity?

Usage and growth

Obstacles

Page 4: The Digitisation of Banking: Threats and Opportunities …aitri.org/2017aitri/docs/Session7.pdf · The Digitisation of Banking: Threats and Opportunities Tony Jarvis ... AFGlobal

©2015 Check Point Software Technologies Ltd. 4

Blockchain

Infinite possibilities

Attacks have already begun

Adoption in the planning phase

Challenges

ahead

Page 5: The Digitisation of Banking: Threats and Opportunities …aitri.org/2017aitri/docs/Session7.pdf · The Digitisation of Banking: Threats and Opportunities Tony Jarvis ... AFGlobal

ATM Attacks

• Attacks making headlines

• ATM fraud on the rise

• Chip-enabled machines should help

• Credit cards leading debit cards

Chip Surge

Percentage of MasterCard-branded cards with security chip

Page 6: The Digitisation of Banking: Threats and Opportunities …aitri.org/2017aitri/docs/Session7.pdf · The Digitisation of Banking: Threats and Opportunities Tony Jarvis ... AFGlobal

©2015 Check Point Software Technologies Ltd.

Threats have evolved from

phishing, to spear-phishing, to whaling

AFGlobal Corporation tricked out of

$480,000, attackers tried for an

additional $18 million

Costs $2.3 billion, 17,642 victims

Whaling – A Growing Threat

Page 7: The Digitisation of Banking: Threats and Opportunities …aitri.org/2017aitri/docs/Session7.pdf · The Digitisation of Banking: Threats and Opportunities Tony Jarvis ... AFGlobal

©2016 Check Point Software Technologies Ltd. 7

Dridex

Began as a Banking Trojan

Developed it’s own Botnet

Also used for Locky

Dridex creators behind Locky?

Page 8: The Digitisation of Banking: Threats and Opportunities …aitri.org/2017aitri/docs/Session7.pdf · The Digitisation of Banking: Threats and Opportunities Tony Jarvis ... AFGlobal

©2016 Check Point Software Technologies Ltd. 8

Flash Banker

Page 9: The Digitisation of Banking: Threats and Opportunities …aitri.org/2017aitri/docs/Session7.pdf · The Digitisation of Banking: Threats and Opportunities Tony Jarvis ... AFGlobal

EXISTING THREATS AND NEW ENTRANTS

MALWARE RANSOMWARE

Page 10: The Digitisation of Banking: Threats and Opportunities …aitri.org/2017aitri/docs/Session7.pdf · The Digitisation of Banking: Threats and Opportunities Tony Jarvis ... AFGlobal

©2016 Check Point Software Technologies Ltd. 10

Total

Locky

Cryptowall

Nemucod

Cerber

Zeus

Top Ransomware Families – End Q4 2016

[Restricted] ONLY for designated groups and individuals

Locky is a ransomware Trojan that targets the Windows platform. This malware sends out system information to a remote server and receives an encryption key to encrypt files on the infected system. The malware demands that the payment to be made in the form of Bitcoins digital currency.

Page 11: The Digitisation of Banking: Threats and Opportunities …aitri.org/2017aitri/docs/Session7.pdf · The Digitisation of Banking: Threats and Opportunities Tony Jarvis ... AFGlobal

©2016 Check Point Software Technologies Ltd. 11

Why Ransomware?

Easier

• Social engineering

• Exploit kits

• Broad audience

Profit

• Faster payment

• Bitcoin benefits

Obstacles

• Simple attacks

• Onus on victim

Page 12: The Digitisation of Banking: Threats and Opportunities …aitri.org/2017aitri/docs/Session7.pdf · The Digitisation of Banking: Threats and Opportunities Tony Jarvis ... AFGlobal

©2015 Check Point Software Technologies Ltd. 12

WHAT ARE THE IMPLICATIONS?

Page 13: The Digitisation of Banking: Threats and Opportunities …aitri.org/2017aitri/docs/Session7.pdf · The Digitisation of Banking: Threats and Opportunities Tony Jarvis ... AFGlobal

Budgets on the Rise

Getting customers on board with good

cyber security hygiene

Defining an acceptable level of risk

Attracting and retaining the right talent

The more I build, the more holes I discover

Lack of understanding

among stakeholders

Threats from malicious insiders

Time spent remediating things

not done properly in the past

“Blame the victim”

mentality

Lack of consensus from regulators

Page 14: The Digitisation of Banking: Threats and Opportunities …aitri.org/2017aitri/docs/Session7.pdf · The Digitisation of Banking: Threats and Opportunities Tony Jarvis ... AFGlobal

©2016 Check Point Software Technologies Ltd. 14

Cost over Time:

Act OnRecon Weapon Deliver Exploit Install C&C

T I M E

Co

st o

f B

reac

h Direct loss: $162,000,000

Estimated indirect loss: >$1 Billion

Weeks After Infection

POS Infection

Contractor Infection

Initial Target Infection

The financial impact GROWS dramatically with TIME

[Restricted] ONLY for designated groups and individuals

Page 15: The Digitisation of Banking: Threats and Opportunities …aitri.org/2017aitri/docs/Session7.pdf · The Digitisation of Banking: Threats and Opportunities Tony Jarvis ... AFGlobal

©2015 Check Point Software Technologies Ltd. 15

From advisory to:

Projects Product development Thought leadership

Supply & Demand

ScopeFrom individual function to enterprise-wide role

Evolution of Role

High demand, short supply

Compliance

Page 16: The Digitisation of Banking: Threats and Opportunities …aitri.org/2017aitri/docs/Session7.pdf · The Digitisation of Banking: Threats and Opportunities Tony Jarvis ... AFGlobal

©2016 Check Point Software Technologies Ltd. 16

Opportunities and Threats

Payments IOT DDoS Whaling

Page 17: The Digitisation of Banking: Threats and Opportunities …aitri.org/2017aitri/docs/Session7.pdf · The Digitisation of Banking: Threats and Opportunities Tony Jarvis ... AFGlobal

Big data and analytics

Actionable Intelligence

Innovation

Field trips, labs, fusion centres

Training

War-gaming, red-teaming

Where to Invest?

Page 18: The Digitisation of Banking: Threats and Opportunities …aitri.org/2017aitri/docs/Session7.pdf · The Digitisation of Banking: Threats and Opportunities Tony Jarvis ... AFGlobal

Opportunities Are Everywhere

AUSTRALIA

2016 Cyber Security Strategy

2016 National Innovation and Science Agenda

2016 FinTech Committee

2014 The Entrepreneurs’ Programme

SINGAPORE

2016 MAS working with Polytechnics

2016 SMART Nation Platform

2015 The FinTech and Innovation Group (FIG)

2015 Financial Sector Technology and Innovation

HONG KONG

2015 FinTech Steering Group

2015 Injection into Innovation and Technology Fund

2014 FinTech HK

2013 The Bitcoin Association Hong Kong

Page 19: The Digitisation of Banking: Threats and Opportunities …aitri.org/2017aitri/docs/Session7.pdf · The Digitisation of Banking: Threats and Opportunities Tony Jarvis ... AFGlobal

©2015 Check Point Software Technologies Ltd. 19

NY

SRI LANKAPHILIPPINES

Bangladesh Central Bank

Page 20: The Digitisation of Banking: Threats and Opportunities …aitri.org/2017aitri/docs/Session7.pdf · The Digitisation of Banking: Threats and Opportunities Tony Jarvis ... AFGlobal

It Takes More Than Technology

People

Processes

Technology

Page 21: The Digitisation of Banking: Threats and Opportunities …aitri.org/2017aitri/docs/Session7.pdf · The Digitisation of Banking: Threats and Opportunities Tony Jarvis ... AFGlobal

©2016 Check Point Software Technologies Ltd. 21

Identify the target and exploitable weaknesses

Create/select attack vector

Deliver the malicious payload to the victim

Gain execution privileges

Install the malware on infected host

Establish a channel of communication

T h e C y b e r K i l l C h a i n

Data collection or corruption, Lateral movement and exfiltration

Reconnaissance Weaponization Delivery Exploitation InstallationCommand &

ControlAct on

Objectives

[Restricted] ONLY for designated groups and individuals

Page 22: The Digitisation of Banking: Threats and Opportunities …aitri.org/2017aitri/docs/Session7.pdf · The Digitisation of Banking: Threats and Opportunities Tony Jarvis ... AFGlobal

IS IT POSSIBLE?

PREVENTION

[Protected] Non-confidential content

Page 23: The Digitisation of Banking: Threats and Opportunities …aitri.org/2017aitri/docs/Session7.pdf · The Digitisation of Banking: Threats and Opportunities Tony Jarvis ... AFGlobal

WHATABOUT

INCIDENT RESPONSE?

[Protected] Non-confidential content

Page 24: The Digitisation of Banking: Threats and Opportunities …aitri.org/2017aitri/docs/Session7.pdf · The Digitisation of Banking: Threats and Opportunities Tony Jarvis ... AFGlobal

WHAT ABOUT…

OFFENSIVE SECURITY?

Page 25: The Digitisation of Banking: Threats and Opportunities …aitri.org/2017aitri/docs/Session7.pdf · The Digitisation of Banking: Threats and Opportunities Tony Jarvis ... AFGlobal

©2015 Check Point Software Technologies Ltd. 25

Have a Plan

“Malcolm Turnbull launches $230m cyber security strategy”

– Australia, 21st April 2016

“Public servants’ computers to have no Net access”

– Singapore, 8th June 2016

“CyberSecurity Malaysia to continue emergency response role in Asia Pacific” – Malaysia, 31st October 2016

Page 26: The Digitisation of Banking: Threats and Opportunities …aitri.org/2017aitri/docs/Session7.pdf · The Digitisation of Banking: Threats and Opportunities Tony Jarvis ... AFGlobal

Others Have Responded

Three annexes

• Baseline requirements

• Running a SOC

• Reporting incidents

Key takeaways• Involve the board

• Risk management approach

• Emphasises prevention

G7 sets forth guidelines

Encourages• Risk management framework

• Assess and update defences

Goals• Common approach, language

• Disclosure and sharing

Page 27: The Digitisation of Banking: Threats and Opportunities …aitri.org/2017aitri/docs/Session7.pdf · The Digitisation of Banking: Threats and Opportunities Tony Jarvis ... AFGlobal

©2016 Check Point Software Technologies Ltd. 27

DLPThreat Intelligence

Firewall Anti-Virus Anti-Bot Anti-Bot IPS

Firewall

DLP

Document Security

Anti-Spam

URL Filtering

Threat Emulation

Threat Extraction

Mobile Threat Prevention

IPS

Threat Emulation

Endpoint Security

Endpoint Security

Forensics

Mobile Threat Prevention

Document Security

Firewall

IPS

Multi-Layered Security

Pre-Compromise Compromise Post-Compromise

ReconnaissanceWeaponizati

onDelivery Exploitation Installation

Command & Control

Act on Objectives

BETTER SECURITY, TOGETHER

[Restricted] ONLY for designated groups and individuals

Page 28: The Digitisation of Banking: Threats and Opportunities …aitri.org/2017aitri/docs/Session7.pdf · The Digitisation of Banking: Threats and Opportunities Tony Jarvis ... AFGlobal

You Have the Advantage

AND REAP THE BENEFITS

USE IT

Page 29: The Digitisation of Banking: Threats and Opportunities …aitri.org/2017aitri/docs/Session7.pdf · The Digitisation of Banking: Threats and Opportunities Tony Jarvis ... AFGlobal

©2016 Check Point Software Technologies Ltd. 29[Restricted] ONLY for designated groups and individuals

Page 30: The Digitisation of Banking: Threats and Opportunities …aitri.org/2017aitri/docs/Session7.pdf · The Digitisation of Banking: Threats and Opportunities Tony Jarvis ... AFGlobal

Recommendations for theROAD AHEAD

Solutions to proactively address

adversaries

ADOPT

Real-time monitoring

systems

ESTABLISH

Processes toaddress technology

challenges

AUTOMATE

Awareness andencourageeducation

CREATE

30

Security a boardroom

agenda

MAKE

Page 31: The Digitisation of Banking: Threats and Opportunities …aitri.org/2017aitri/docs/Session7.pdf · The Digitisation of Banking: Threats and Opportunities Tony Jarvis ... AFGlobal

©2016 Check Point Software Technologies Ltd. 31[Restricted] ONLY for designated groups and individuals

Let’s stay in touch

Page 32: The Digitisation of Banking: Threats and Opportunities …aitri.org/2017aitri/docs/Session7.pdf · The Digitisation of Banking: Threats and Opportunities Tony Jarvis ... AFGlobal

©2016 Check Point Software Technologies Ltd. 32©2016 Check Point Software Technologies Ltd. ©2016 Check Point Software Technologies Ltd.

THANK YOUPlease contact me directly with

any questions or comments

[email protected]

+65 9724 6221