Bank Cyber-Attacks Highlight the Need to Simulate 'War Games', Says KPMG

Bank Cyber-Attacks Highlight the Need to Simulate ‘War Games’, Says KPMG

KPMG’s cyber security team comment on recent news showing $1bn (£648m) has been stolen in cyber-attacks since 2013 from up to 100 banks and financial institutions worldwide.

“These attacks were unique in terms of the organisation it took to execute them,” said Konrads Smelkovs of KPMG’s cyber security team. “However, the tools used by these cyber-crime gangs weren’t particularly sophisticated. It was the persistence and cautious approach of the criminals that netted them the prize. The banks targeted – primarily in Russia and Ukraine – suggest a selective operation in areas where tracking transactions is more complex.

“Financial institutions need to take more of a pre-emptive approach to such attacks. Playing ‘war games’ is one effective way of highlighting potential weak spots where attacks are simulated. Each organisation should also look to have someone committed to defending their network, rather than someone who merely adheres to prescribed standards. The continued investment towards anti-malware technology and internal network monitoring tools remains crucial to being a step ahead of cyber criminals.”

Cookie	Duration	Description
cookielawinfo-checkbox-advertisement	1 year	Set by the GDPR Cookie Consent plugin, this cookie is used to record the user consent for the cookies in the "Advertisement" category .
cookielawinfo-checkbox-analytics	11 months	This cookie is set by GDPR Cookie Consent plugin. The cookie is used to store the user consent for the cookies in the category "Analytics".
cookielawinfo-checkbox-functional	11 months	The cookie is set by GDPR cookie consent to record the user consent for the cookies in the category "Functional".
cookielawinfo-checkbox-necessary	11 months	This cookie is set by GDPR Cookie Consent plugin. The cookies is used to store the user consent for the cookies in the category "Necessary".
cookielawinfo-checkbox-others	11 months	This cookie is set by GDPR Cookie Consent plugin. The cookie is used to store the user consent for the cookies in the category "Other.
cookielawinfo-checkbox-performance	11 months	This cookie is set by GDPR Cookie Consent plugin. The cookie is used to store the user consent for the cookies in the category "Performance".
CookieLawInfoConsent	1 year	Records the default button state of the corresponding category & the status of CCPA. It works only in coordination with the primary cookie.
JSESSIONID	session	The JSESSIONID cookie is used by New Relic to store a session identifier so that New Relic can monitor session counts for an application.
viewed_cookie_policy	11 months	The cookie is set by the GDPR Cookie Consent plugin and is used to store whether or not user has consented to the use of cookies. It does not store any personal data.
zfccn	session	Zoho sets this cookie for website security when a request is sent to campaigns.

Cookie	Duration	Description
aigm_tracking_consent	1 year	Created by Monster Tracking v2 for internal tracking/fingerprinting - determines whether the user has consented to being tracked by allowing cookies.
aigm_tracking_id	1 year	Created by Monster Tracking v2 for internal tracking/fingerprinting - contains the consent ID number of the user.
iutk	5 months 27 days	This cookie is used by Issuu analytic system to gather information regarding visitor activity on Issuu products.
_ga	2 years	The _ga cookie, installed by Google Analytics, calculates visitor, session and campaign data and also keeps track of site usage for the site's analytics report. The cookie stores information anonymously and assigns a randomly generated number to recognize unique visitors.
_gat_gtag_UA_24973378_1	1 minute	Set by Google to distinguish users.
_ga_NEXPR7V7YS	2 years	This cookie is installed by Google Analytics.
_gid	1 day	Installed by Google Analytics, _gid cookie stores information on how visitors use a website, while also creating an analytics report of the website's performance. Some of the data that are collected include the number of visitors, their source, and the pages they visit anonymously.
__gads	1 year 24 days	The __gads cookie, set by Google, is stored under DoubleClick domain and tracks the number of times users see an advert, measures the success of the campaign and calculates its revenue. This cookie can only be read from the domain they are set on and will not track any data while browsing through other sites.

Cookie	Duration	Description
IDE	1 year 24 days	Google DoubleClick IDE cookies are used to store information about how the user uses the website to present them with relevant ads and according to the user profile.
mc	1 year 1 month	Quantserve sets the mc cookie to anonymously track user behaviour on the website.
test_cookie	15 minutes	The test_cookie is set by doubleclick.net and is used to determine if the user's browser supports cookies.

Cookie	Duration	Description
2d719b1dd3	session	No description
4662279173	session	No description available.
ad2d102645	session	No description available.
cookietest	session	No description
GoogleAdServingTest	session	No description
zabUserId	1 year	No description available.
zabVisitId	session	No description available.
ZCAMPAIGN_CSRF_TOKEN	session	No description available.
zc_consent	1 year	No description available.
zc_show	1 year	No description available.
zft-sdc	9 hours	No description
zps-tgr-dts	1 year	No description
zsce91abfc07ada4f669e78cb08dd394486	30 minutes	No description

Bank Cyber-Attacks Highlight the Need to Simulate ‘War Games’, Says KPMG