New service to fight cybersecurity threats to African banks

April 2019 Cyber Security

Foregenix is launching a service to combat the new and growing breed of cyber-attacks on African banks. The global cybersecurity firm, which specialises in the financial services and has a regional hub in Johannesburg, is introducing the Foregenix Threat Sweep.

Based on Foregenix’s established Serengeti technology, the service cuts the dwell-time of attackers within an organisation to hours from an industry average of around 100 days.

The new service cuts through the noise and identifies latent threats in a matter of minutes. Threat Sweep is backed-up by a threat intelligence team and senior digital forensics and incident response analysts performing threat hunts on specific issues experienced within the sector. The combination of technical innovation and human elements mean threats are detected quickly and mitigated efficiently.

Among the rapidly emerging attacks Threat Sweep is aiming to combat is the surge in ATM cashout type attacks (FASTCash). These attacks on issuing banks or payment card processors exploit weak ­internal system architecture and security controls of processing switches (servers) and then use a small subset of cloned payment cards at ATMs to fraudulently withdraw large amounts of money in untraceable hard currency.

The CEO of Foregenix, Andrew Henwood explains: “ATM cashouts allow hackers to extract vast sums of money in less than 30 minutes by compromising the backend and eliminating the removal limits on these accounts. This is all done in an almost risk free manner. So it is essential to be extra vigilant and perform additional checks within the payment environment, even if there is no obvious breach as attackers typically lie dormant for months.”

Henwood adds: “As a PCI Forensic Investigator, we are seeing regular requests for assistance from organisations experiencing ATM cashout attacks. Previously, these were on the periphery but are now becoming a weekly phenomenon on some parts of the continent.”

The Threat Sweep service offers immediate response to this type of critical situation. It is offered for a fixed-time and cost for 30-days and most clients opt to extend into the Foregenix MDR service.

Henwood comments: ‘Unfortunately, in most of our forensic ­investigations, banks and organisations are failing to detect when their systems were initially compromised. From analysis of our casework we see 135 days elapsing before an alert is raised and by that point the hacker typically knows and understands the environment better than the IT administrators, they are well-established and have already harvested large amounts of valuable personal and financial data.

“Many organisations rely on the traditional security systems – firewalls, antivirus, patch management – but they are still being breached. With new threats emerging, our rapid response service meets an increasing need for the sector to accurately establish their threat and risk level and take appropriate action.”

For more information go to www.foregenix.com





Share this article:
Share via emailShare via LinkedInPrint this page



Further reading:

Pwn2Own hacking contest to include industrial control systems
October 2019 , Cyber Security
As IT and OT converge under Industry 4.0 and digital transformation initiatives, security gaps are emerging in a range of popular industrial control systems.

Read more...
Stolen credentials on the Dark Web
October 2019 , Cyber Security, Security Services & Risk Management
Over 21 million credentials belonging to Fortune 500 companies, 16 million of which were compromised during the last 12 months, are up for sale.

Read more...
Stolen credentials on the Dark Web
October 2019 , Cyber Security, Security Services & Risk Management
Over 21 million credentials belonging to Fortune 500 companies, 16 million of which were compromised during the last 12 months, are up for sale.

Read more...
The importance of XDR for cyber protection
October 2019 , Cyber Security, Products
35% of South African organisations are expecting an imminent cyberattack and a further 31% are bracing for it to happen within a year, according to local research conducted by Trend Micro.

Read more...
Enterprise security must change
October 2019 , Cyber Security, Security Services & Risk Management
The recent wave of cyberattacks against local banks has highlighted the importance of protecting data against malicious users.

Read more...
Kaspersky uncovers zero-day in Chrome
October 2019, Kaspersky , News, Cyber Security
Kaspersky’s automated technologies have detected a new exploited vulnerability in the Google Chrome web browser.

Read more...
Cybersecurity for video surveillance systems
September 2019, Mobotix , Cyber Security, CCTV, Surveillance & Remote Monitoring
Video surveillance systems are increasingly accessible over any IP network, which has led to the rise of potential cyberattack.

Read more...
African trust centre launches cyber division
November 2019 , Cyber Security
Advancing cybersecurity to more stringent heights, LAWtrust has launched a new division focusing on cybersecurity services to complement its identity, encryption and digital signature offerings.

Read more...
What are the cybersecurity issues in video surveillance?
November 2019, Axis Communications SA , Editor's Choice, CCTV, Surveillance & Remote Monitoring, Cyber Security
he importance of the data captured by surveillance cameras – and what can be done with it – has led to a new breed of cybercriminals, looking for insights to steal and sell.

Read more...
Protecting the outer perimeter with cloud services
November 2019 , Cyber Security
Business leaders now have a choice whether they want to continue using their trusted firewall or move to a next-generation firewall delivered by appliances or as cloud services.

Read more...