-
A bill to protect the nation's critical infrastructure from cyberattacks has again failed to clear a congressional hurdle.
November 15 -
Banks can enjoy the respite they're getting from distributed denial of service attacks this week, but need to brace themselves for the likelihood of the threat continuing.
October 25 -
Leon Panetta issues a dire warning as Capital One, SunTrust Banks and Regents Financial acknowledge they're the latest victims of cyberhacktivist attacks.
October 12
While the next target of hacktivists may be a mystery, the threat of cyberattacks seems likely to grow.
Banks will need to redouble efforts to safeguard their infrastructure from digital assaults in the coming year, Booz Allen Hamilton, a consulting firm, said Thursday.
According to the firm, nations and individuals acting without state sponsors are becoming more sophisticated in their ability to wage electronic onslaughts. Defending against them will require that banks invest in both technology and people, as well as work collaboratively with one another to fortify defenses.
"Self-evaluation and industry-wide conversations are the new 'rules of the road' to creating successful, integrated cyber defenses," Mike McConnell, a former U.S. director of national intelligence and vice chairman of Booz Allen, said in a news release. "Even though it is difficult to look into a crystal ball and predict the future, these events are happening now and could cause significant reputational, financial and infrastructure damage to any ill-prepared firm.
"Individual companies should not wait for legislation or an Executive Order to come together with their government counterparts to find dynamic solutions to these big issues," McConnell added.
McConnell's comments follow the U.S. Senate's recent
The Senate vote foreclosed action on the legislation until next year despite
McConnell's comments also follow a string of
According to Booz Allen, the prospect of cybersecurity legislation in 2013 and the potential for hacktivists to move from disrupting operations to destroying data means banks will need to share information more than they do currently, and to build the capability to predict threats into their risk management capability.
Banks also should take steps to focus on security risks their vendors may present, to train their workforces in how to access and protect data, to reinforce authentication, and to use industry benchmarks to learn how competitors and suppliers are managing risk, according to the firm.
"In the span of one year, we have seen a significant shift in the frequency and sophistication of cyberattacks on financial services firms," McConnell said. "This is perhaps the biggest trend of them all."