Who are the Threat Actors?
Financial institutions are leading targets of cyber attacks. Cybercriminals can profit through theft, fraud and extortion.
Given the statistics, it may seem that attacks on financial institutions are inevitable. Institutions should focus on “when they are attacked” instead of “if they are a target.”
Cybercriminals, Insiders, And Fraudsters
Motivation: These attackers seek huge financial gains and are motivated by profit.
Capabilities: These attackers use custom tools and social engineering.
Goals: Financial gains through fraudulent wire transfers, cash, and credential theft.
Motivation: Curiosity, attention, vengeance, social justice, and provocation.
Capabilities: Off-the-shelf tools, basic scripts, or web resources.
Goals: Low-impact damage and disruption of services: data leaks, DDoS, defamation.
State-Based Actors And Spies
Motivation: Nationalism, commendation for defense or offense against state adversaries.
Capabilities: Persistent adversaries with resources to try a variety of attack vectors.
Goals: Destruction and damage including as data corruption, espionage, and targeted physical damage.