Kaspersky Lab in collaboration with B2B International carried out a survey * on companies' attitudes towards information security. In the context of the survey, there have been specific findings on the policies of financial companies in relation to their protection against electronic fraud. The survey, therefore, found that about half the banks and online services πληρωμών προτιμούν να διαχειριστούν ψηφιακά περιστατικά όταν αυτά συμβούν, αντί να επενδύσουν σε εργαλεία πρόληψης.
During the survey, 48% of financial institutions said they were taking measures to protect their customers from online fraud, which are aimed at mitigating the consequences instead of preventing such incidents. In addition, 29% believes it is cheaper and more effective to deal with fraud when they happen instead of prevention.
According to responses from executives from banks and online payment organizations, when a digital fraud incident occurs involving account of a customer, only 41% of companies take the necessary steps to prevent such an incident from happening again in the future. 36% of companies perform vulnerability analysis that cybercriminals exploited during the attack, while 38% compensate for losses. The most popular policy among these companies is to try to identify the attacker, with two-thirds (66%) of financial organizations taking similar actions.
"When you rely solely on mitigating the negative effects of a scam, it is like trying to cure the symptoms of a disease and not its cause. The symptoms will return and the disease will progress. In this context, Kaspersky Lab advises companies not to forget how important prevention is. Many of the world's top banks have recognized this and implemented precautionary policies, but there are worryingly many who still rely on a "reaction" approach. "Every year, digital criminals invent more and more sophisticated methods of attack, so if banks do not have precautionary measures, it is easier to further increase the number of financial digital crimes as well as increase losses." "said Ross Hogan, Kaspersky Lab's Global Head of Fraud Prevention Division.
Kaspersky Lab specialists recommend banks and online payment services to use comprehensive electronic fraud protection tools to protect their customers at various levels. For example, they can use the platform Kaspersky Fraud Prevention, which includes threat control tools that are installed on devices, as well as a server tool that resides within a bank's information infrastructure. Through the special code embedded on the bank's website, this tool can remotely locate a "contamination» on a customer's device.
More information about the basic platform functions can be found at the specialist document of Kaspersky Lab.
* IT Security Research Risks 2015, conducted by Kaspersky Lab and B2B International, was attended by over 5.000 company representatives, including 131 banks and payment services from 26 countries.
