Every major breach targeting financial services organizations involves compromised credentials. Knowing this, one could state that if an organization can ensure that their credentials are not compromised, then they could prevent a breach. But how do you know if a user’s credentials are not compromised? The answer is that you can never be 100% sure. So if you cannot prevent breaches you should be prepared to respond to breach activity. Here’s our ebrief and webinar to get you started.
Financial services organizations are especially attractive to attackers because they hold data that enables theft of money. And this is not only credit card numbers. In the past ten years, we have seen thieves target databases and point-of-sale terminals to collect mass quantities of credit card data like Jimmy John’s and CVS Pharmacy data breach cases. As organizations become smarter about securing their PCI data and point-of-sale (POS) terminals, attackers are adjusting their attacks. Additionally, as banks and credit card companies move to chipped cards, thieves will also adapt to these new layers of security. The industry needs to be prepared for the next evolution of attack methodologies that will target the financial services industry.