Almost half of financial institutions believe their own IT teams are the main risk to cloud security

Only 30% of respondents from other industries are as concerned about the risks associated with their IT staff

“To increase the likelihood of a user clicking a malicious link, attackers are crafting custom spear phishing messages that are directed at the person responsible for a certain task in the organization and that appear to come from an authority figure," said Dirk Schrader, vice president of security research at Netwrix.
Image by Tumisu from Pixabay

FRISCO, Texas — Netwrix released findings for the financial and banking sector from its global 2022 Cloud Security Report.

Compared to other industries surveyed, financial institutions are much more concerned about users who have legitimate access to their cloud infrastructure. Indeed, 44% of respondents in this sector say their own IT staff poses the biggest risk to data security in the cloud and 47% worry about contractors and partners, compared to 30% and 36% respectively in other verticals surveyed.

“Financial organizations experience accidental data leakage more often than companies in other verticals — 32% of them reported this type of security incident within the last 12 months, compared to the average of 25%,” said Dirk Schrader, vice president of security research at Netwrix. “This is a good reason for them to be concerned about users who might unintentionally expose sensitive information. To address this threat, organizations need to implement a zero-standing privilege approach in which elevated access rights are granted only when they are needed and only for as long as needed. Cloud misconfigurations are another common reason for accidental data leakage. Therefore, security teams must continually monitor the integrity of their cloud configurations, ideally with a dedicated solution that automates the process.”

All sectors say phishing is the most common type of attack they experience. However, 91% of financial institutions say they can spot phishing within minutes or hours, compared to 82% of respondents in other verticals.

“Even though financial organizations detect phishing quickly, it is still crucial for them to keep educating their personnel on this threat because attacks are becoming more sophisticated,” Schrader said. “To increase the likelihood of a user clicking a malicious link, attackers are crafting custom spear phishing messages that are directed at the person responsible for a certain task in the organization and that appear to come from an authority figure. Regular staff training, along with continuous activity monitoring, will help reduce the risk of infiltration.”

This Conference is designed for anyone involved with 7×24 infrastructures – IT, data center, disaster recovery and network/ telecommunication managers, computer technologists, facility or building managers, supervisors, and engineers.

Almost half of financial institutions believe their own IT teams are the main risk to cloud security

Only 30% of respondents from other industries are as concerned about the risks associated with their IT staff

Get our new eMagazine delivered to your inbox every month.

Stay in the know on the latest data center news and information.

Almost half of financial institutions believe their own IT teams are the main risk to cloud security

Only 30% of respondents from other industries are as concerned about the risks associated with their IT staff

Share This Story

Related Articles

U.S. Accounts For Almost Half Of All Major Cloud And Internet Data Centers

Global Cybertech100 List Recognizes Tech Companies Providing Critical Cyber Defenses to Financial Institutions

Rackspace Teams With VMware To Deliver The Future Of Multi-Cloud

Get our new eMagazine delivered to your inbox every month.

Stay in the know on the latest data center news and information.