A new report into enterprise Internet of Things (IoT) has revealed that financial services firms are at risk of being hacked via the personal devices employees connect to business networks.
Palo Alto Networks interviewed 138 IT decision-makers in the financial services industry, finding that a variety of non-corporate, personal IoT devices are connecting to financial institution networks and surprising IT and cybersecurity managers across the sector.
The top five devices found on financial sector networks were: connected kitchen/coffee makers (39 per cent), connected personal medical devices like implanted heart monitors (37 per cent), connected gym equipment (33 per cent), games consoles (31 per cent) and smart toys and connected cars (both 22 per cent).
“Devices that employees innocently bring onto an organisation's network are often not built with security in mind and can be easy gateways to a company’s most important information and systems,” explained May Wang, senior engineer at Palo Alto Networks.
While more than a half of financial services respondents (53 per cent) said they do segment their networks, one in five banks, insurers and other financial institutions are not segmenting their IoT devices on a separate network from the one they use for primary devices and key business applications – like HR system, email server, finance system, etc.
Greg Day, chief security officer at Palo Alto Networks, commented: "Visibility really is key to both realising the business opportunity and understanding the risks of IoT – this is because most devices use proprietary methods, which are increasingly encrypted.
"With the influx of IoT, including the supply chain sub-dependencies that they add, organisations should not assume they are adequately secured,” he continued, adding: “There is a lack of standardisation in security controls and the value of IoT devices varies so wildly between a few to millions of pounds, so we can't expect the same investment in security controls when the IoT asset value varies so greatly.”
Latest News
-
Goldman Sachs genAI assistant to mimic traits of ‘seasoned employee’
-
JetBlue launches Venmo payment option
-
SEC launches new crypto task force to develop clearer regulations
-
RBC launches end-to-end genAI tool for financial services
-
Trump names Travis Hill as acting chair of US banking watchdog amid deregulation push
-
Nationwide to expand use of genAI from Microsoft
Sanctions evasion in an era of conflict: Optimising KYC and monitoring to tackle crime
The ongoing war in Ukraine and resulting sanctions on Russia, and the continuing geopolitical tensions have resulted in an unprecedented increase in parties added to sanctions lists.
Achieving operational resilience in the financial sector: Navigating DORA with confidence
Operational resilience has become crucial for financial institutions navigating today's digital landscape riddled with cyber risks and challenges. The EU's Digital Operational Resilience Act (DORA) provides a harmonised framework to address these complexities, but there are key factors that financial institutions must ensure they consider.
Legacy isn’t the enemy: what FSIs can do to keep their systems up and running
In this webinar we will examine some of the steps FSIs have already taken to rigorously monitor and test systems – both manually and with AI-powered automation – while satisfying the concerns of regulators and customers.
Optimising digital banking: Unifying communications for seamless CX
In the digital age, financial institutions risk falling behind their rivals if they fail to unite fragmented communications ecosystems to deliver seamless, personalised customer experiences.
This FStech webinar sponsored by Precisely explores vital strategies to optimise cross-channel messaging through omnichannel orchestration and real-time customer data access.
This FStech webinar sponsored by Precisely explores vital strategies to optimise cross-channel messaging through omnichannel orchestration and real-time customer data access.
© 2019 Perspective Publishing Privacy & Cookies
Recent Stories