KasperskyLab：2017年的金融网络威胁报告(英文版)(40页)（40页）.pdf

《KasperskyLab：2017年的金融网络威胁报告(英文版)(40页)（40页）.pdf》由会员分享，可在线阅读，更多相关《KasperskyLab：2017年的金融网络威胁报告(英文版)(40页)（40页）.pdf（40页珍藏版）》请在三个皮匠报告上搜索。

1、 February, 2018 FINANCIAL CYBERTHREATS IN 2017 Kaspersky Lab 2 Financial Cyberthreats in 2017 Introduction and Key Findings The world of financial cyberthreats has been evolving and changing for years. As one of the most profitable fields of cybercriminal activities, it attracts malicious individual

2、s targeting users of online financial services and payment systems, as well as large banks and any industry where POS terminals are used. At the same time, criminals have recently started shifting their attention from users to the systems and services themselves. In 2017, we saw a number of changes

3、to the world of financial threats and new actors emerging. As we have previously noted, fraud attacks in financial services have become increasingly account-centric. User data is a key enabler for large-scale fraud attacks, and frequent data breaches - among other successful attack types - have prov

4、ided cybercriminals with valuable sources of personal information to use in account takeovers or false identity attacks. These account-centric attacks can result in many other losses, including those of further customer data and trust, so mitigation is as important as ever for both businesses and fi

5、nancial services customers. Attacks on ATMs continued to rise in 2017, attracting the attention of many cybercriminals, with attackers targeting bank infrastructure and payment systems using sophisticated fileless malware, as well as the more rudimentary methods of taping over CCTVs and drilling hol

6、es. In 2017, Kaspersky Lab researchers uncovered, among other things, attacks on ATM systems that involved new malware, remote operations, and an ATM-targeting malware called Cutlet Maker that was being sold openly on the DarkNet market for a few thousand dollars, along with a step-by-step user guid