UK banks 'hide hacks to avoid bad PR'

Report - British banks are drastically under-reporting cyber attacks

Bank cards

UK banks are withholding information on cyber attacks to avoid bad publicity, it is reported.

Leading figures within the industry believe recorded figures are far lower than the real number of hacks occurring, and that banks are hiding the fact they are under constant attack from hacker groups, according to Reuters.

Chief executive of Israeli cybersecurity firm Illusive Networks, Shlomo Touboul, told the publication that one client, a large financial institute, is targeted with more than two billion potential hacks every month.

These attacks, including malicious emails or hacks on a system, are filtered down by security defences to just 200 'events'. A team of employees will then sift through the reports and cut the number down to 200 "real events" each month, according to Touboul.

Advertisement
Advertisement - Article continues below
Advertisement - Article continues below

Britain's financial institutions have reported 75 hacking attacks this year so far, rising from five in 2014/15, according to Financial Conduit Authority (FCA) data .

FCA provisions only require UK banks to disclose attacks that could have had a material impact, and essentially disregard the rest.

Excluded reports are not always just email scams, as security firms have reported first hand evidence of banks choosing to hide serious breaches for fear of public backlash.

"Banks are dramatically under-reporting attacks, they do what's legally required but out of embarrassment or fear of punishment they aren't giving the whole picture," said one anonymous Reuters source.

A Bangladesh central bank heist in February saw hackers steal $81 million.

Of five million instances of fraud and 2.5 million cyber-related crimes in 2015, only 250,000 were ever reported according to ONS figures.

Advertisement - Article continues below

A report by Marsh and lobby group TheCityUK, published in May, argues that greater information sharing is needed between industries and law enforcement, and encourages the creation of an "industry-wide cyber forum" to support existing bodies.

Featured Resources

Digital Risk Report 2020

A global view into the impact of digital transformation on risk and security management

Download now

6 ways your business could suffer if you don’t backup Office 365

Office 365 makes it easy to lose valuable data regularly, unpredictably, unintentionally, and for good

Download now

Get the best out of your workforce

7 steps to unleashing their true potential with robotic process automation

Download now

8 digital best practices for IT professionals

Don't leave anything to chance when going digital

Download now
Advertisement

Most Popular

Visit/mobile/28299/how-to-use-chromecast-without-wi-fi
Mobile

How to use Chromecast without Wi-Fi

5 Feb 2020
Visit/operating-systems/27717/how-to-fix-a-stuck-windows-10-update
operating systems

How to fix a stuck Windows 10 update

12 Feb 2020
Visit/policy-legislation/data-protection/354814/google-to-shift-uk-user-data-to-the-us-post-brexit
data protection

Google to shift UK user data to the US post-Brexit

20 Feb 2020
Visit/security/34616/the-top-ten-password-cracking-techniques-used-by-hackers
Security

The top ten password-cracking techniques used by hackers

10 Feb 2020