Fitch warns of systemic cyber threat to US banking

Although US banks are generally well positioned to handle average modelled cyber risk losses, tail events from a systemic cyber risk event can be material, according to rating agency Fitch.

The Fitch report, Quantifying US Bank Systemic Cybersecurity Risk, says that the financial impact of a cyber event often centres around the reported remediation, or in the case of ransomware, the requested ransom payment.

However, it adds, the financial cost from a cyber event is likely to extend well beyond just headline figures. Additional costs from these tail events can include data restoration, investigation and response, regulatory legal fines, and brand damage.

Fitch collaborated with CyberCube to model the impact of systemic cyber events on the US banking sector under various cyber risk scenarios. CyberCube’s model focuses on ‘single points of failure’ (SPoF) for cyber incidents that could impact parts of the US banking system.

SPoFs are technologies (eg operating systems, cloud service providers etc) for which connectivity and dependencies are identified by bank. A cyber-attack on a particular SPoF may have a cascading impact on the identified connected banks.

“Systemic cyber risks are as important to analyse as idiosyncratic cyber risks,” said Fitch managing director Christopher Wolfe. “Cyber risk is evolving into broader aggregations and concentrations within the vendor management and supply chain. An incident at a single critical third- or fourth-party vendor could lead to significant business interruption losses.”

For the purpose of this research, Fitch and CyberCube analyzed the entire US banking sector of approximately 4,900 banks with over $1.1 trillion in total revenues. This portfolio went through CyberCube’s proprietary model to quantify the potential impact of cybersecurity incidents on the US banking industry over a one-year period.

“Our work with Fitch has identified the top threat scenarios for the U.S. banking, and the repercussions a cyber risk might have on an individual bank,” said Souki Chahid, CyberCube principal product advisor. “A greater understanding of the inherent risks faced by the banking sector will support banks in their decision-making with regards to their insurance purchasing and their operational risk.”

To access the report click here.

Follow us on twitter: @risksEmerging

Don’t miss the 2021 Virtual EWF Women of Influence Awards on Monday, October 18th @ 2:00-3:30 PM ET, presented by Accenture Security and Avanade. This is a public event. Register here: http://ow.ly/bFhi30rWXHX #cybersecurity

TomGhost https://cyberiqs.com/tomghost/ #infosec #infosecurity #cybersecurity #threatintel #threatintelligence #hacking #cybernews #cyberattack #threathunting #cloudsecurity #cloudcomputing #malware #ransomware #devops #dfir #cyber

Since 2020, @TerahashCorp @L0phtCrackLLC $1.4 Million configuration of 448 x RTX 2080 GPUs can't even crack 1 character long hashed password generated with "Multi One Password" tool!
https://straighttips.blogspot.com/2019/12/crackq-vs-multi-one-password_20.html
.
#passwordmanager #Infosec #netsec #cybersec #hashcat #bcrypt #defcon

“American media conglomerate Cox Media Group #CMG confirmed that it was hit by a #ransomware attack that took down live TV and radio broadcast streams in June 2021.” #cybersecurity https://buff.ly/3iQH7i7

#hclswlobp #nocode #javascript #github #nodejs #cybersecurity #devops #100DaysOfCode #datascience #ai #bot #codenewbie #iot #machinelearning #Python #womenintech #flutter #CX #happyfriday https://via.socxo.net/qxrRt00tDReSycJ

"OSINT for Hackers" - all about best tools and techniques related to open source intelligence in one edition! Download a free preview and see what we prepared for you! https://hakin9.org/download/osint-for-hackers-preview/

#infosec #cybersecurity #redteam #pentest #pentesting #hacking #hackers #OSINT #DFIR

This week, the unfortunate rise of killware, the world is talking about Russian #hackers without Russia, Quest fertility clinic has a breach, and a Pentagon #cyber official quits. Catch up on all of this week's #cybersecurity news with SonicWall: https://bit.ly/3vfE5cv

Load More...
SHARE: