White Paper
Financial Services Sector Faces Heightened Cyber Threats
White Paper Summary
The financial services sector is under increasing cyber threat as ransomware attacks and data extortion tactics pose significant risks, according to a white paper by the QBE Cyber Threat Intelligence Team. Despite their heightened security investments, even major financial institutions are falling victim to sophisticated attacks that disrupt operations and compromise sensitive customer information.
Ransomware remains the top threat to all organizations, including those in financial services, in terms of likelihood and potential impact. The criminal ecosystem has evolved to enable threat actors to easily gain access to corporate networks through various methods like exploiting vulnerabilities, phishing and purchasing credentials on the dark web. Advanced threat actors are consistently adopting new and effective techniques to evade detection, steal data and deploy ransomware enterprise-wide.
Much of the ransomware landscape is dominated by the ransomware-as-a-service (RaaS) model. This is reflected in the interplay between initial access brokers who gain entry to networks, affiliates who carry out the attacks and RaaS operators who provide the ransomware infrastructure. In 2023, the financial services sector was the fourth most targeted, with 346 victim organizations listed.
Several notable ransomware incidents impacted the financial sector in 2023 and 2024:
To learn more about QBE North America, please visit their website.