According to the results of the first three quarters of 2022, the total number of attacks on financial organizations decreased by 16% compared to the same period in 2021. The share of cyber attacks on the financial industry in recent years has generally been declining and now accounts for about 5% of all cyber attacks on organizations. Attackers most often use social engineering methods (47%) and less often resort to exploiting vulnerabilities than when attacking other industries. Most likely, this is due to the fact that the network perimeter of financial organizations is better protected, so social engineering methods and compromising credentials are more effective. Malware is used in every second attack: these are mainly loaders (59% of attacks using VPO), spyware (18%), cryptographers (18%) and banking Trojans (12%).
In 56% of cases, malware is distributed via email.
The total number of sales of access to corporate networks of banks in the darkweb has doubled compared to the same period in 2021, and the minimum has decreased fourfold. Now the cost of access varies from $ 250 to $ 30,000, depending on the organization and the privileges on the network that the buyer receives. In addition, the search is underway for bank employees who are willing to provide attackers with access to systems or confidential information.
In the darkweb, an attacker can also find malicious software for carrying out attacks on banking systems, banking databases, instructions for penetrating the network of financial organizations.