STOCK TITAN

Financial Services: Akamai Research Shows Web Application and API Cyber Attacks Grew By 257 Percent Year Over Year

Rhea-AI Impact
(Low)
Rhea-AI Sentiment
(Negative)
Tags
Rhea-AI Summary

Akamai Technologies published its latest State of the Internet report, revealing that 80% of cyberattackers target customers of financial services, rather than financial institutions themselves. The report highlights a 257% increase in web application and API attacks year over year, alongside a 22% rise in DDoS attacks. Key findings indicate that new zero-day exploits against financial services see rapid exploitation, with phishing techniques evolving to bypass two-factor authentication. Regionally, attacks surged by 449% in Asia-Pacific and 419% in Latin America.

Positive
  • Financial services sector highlighted as a critical area for cybersecurity attention.
  • Increased focus on understanding attack surfaces may lead to improved security measures.
Negative
  • 257% growth in web application and API attacks against financial services poses significant cybersecurity risk.
  • Phishing techniques bypassing two-factor authentication increase customer vulnerability.
  • DDoS attacks against financial services increased by 22% year over year.

State of the Internet report shows 80 percent of attackers target customers of financial services rather than the institutions

CAMBRIDGE, Mass., Nov. 28, 2022 /PRNewswire/ -- Akamai Technologies, Inc. (NASDAQ: AKAM), the cloud company that powers and protects life online, today released a new State of the Internet report that indicates a growing risk to the financial services sector and a shift to more sophisticated techniques. Web application and API attacks in particular are increasing at an alarming rate while also growing in complexity. The new report, Enemy at the Gates, further notes that roughly 80 percent of cyberattackers aim their efforts at customers of financial services in an attempt to find paths of least resistance for monetary gain.

Enemy at the Gates shows that financial services is among the most attacked verticals in several critical areas: web application and API attacks, DDoS, phishing, zero day exploitation and botnet activities. Most concerning is the staggering surge in web application and API attacks — a 257 percent growth in the number of attacks against financial services year over year.

Other key findings of the report include:
  • Within 24 hours, exploitation of newly discovered zero days against financial services reaches multiple thousands of attacks per hour and peaks quickly - affording little time to patch and react.
  • DDoS attacks against financial services are up 22 percent year over year.
  • A significant increase in Local File Inclusion (LFI) and Cross Site Scripting (XSS) attacks demonstrate how attackers are shifting toward remote code execution attempts that present a larger strain on internal network security.
  • Phishing campaigns against financial services customers are introducing techniques that bypass two-factor authentication solutions and increase risk for everyday customers.
  • Customer account takeover attempts represent over 40 percent of attack types with another 40 percent focusing on website scraping, which is used to create more convincing phishing scams.
Regional Trends

Enemy at the Gates offers a look at the regional trends most impacting financial services. Findings include:

Web application and API attacks in the Asia-Pacific and Japan region grew by 449 percent. This coincides with an increasing number of cyberattacks in the region, primarily resulting in ransomware. The growing number of attacks and increased sophistication coincides with findings which connect web app and API attacks with ransomware. Australia, Japan and India are the countries with the highest number of web application and API attacks in the region.

DDoS attacks against financial services in Europe increased by 73 percent in 2022. This marks a shift of attacks between regions with EMEA taking the lead in the number of these types of attacks. This is interesting to note since the United States is usually the highest in this category. One possible factor impacting this change is the ongoing war between Ukraine and Russia. The increase in DDoS attacks in Europe might be retaliation against those who support Ukraine — an example of geopolitics spilling into cyberspace.

Digitization and limited cybercrime governance could be factors that contribute to  growing cybercriminal activities in Latin America.The region has seen a 419 percent increase in web application and API-related attacks over the past year. Cybercrime costs the region US$90 billion annually and prominent threats include cryptojacking, fraud, banking trojans and ransomware.

"Financial services is one of the most attacked industries when new vulnerabilities are discovered, a favorite target of DDoS attacks and continuously focused on by phishing campaigns, which are aimed at their customers who suffer the brunt of these attacks," said Steve Winterfeld, Advisory CISO for Akamai. "Attackers will always find ways to infiltrate your network or impact your customers. Understanding attack surfaces could provide insights into key risks and therefore allow organizations to devise security controls and mitigation plans to better protect customers."

For additional information, the security community can access, engage with, and learn from Akamai's threat researchers by visiting the new Akamai Security Hub and following the team on Twitter at @Akamai_Research.

About Akamai

Akamai powers and protects life online. Leading companies worldwide choose Akamai to build, deliver, and secure their digital experiences — helping billions of people live, work, and play every day. With the world's most distributed compute platform — from cloud to edge — we make it easy for customers to develop and run applications, while we keep experiences closer to users and threats farther away. Learn more about Akamai's security, compute, and delivery solutions at akamai.com and akamai.com/blog, or follow Akamai Technologies on Twitter and LinkedIn.

Contacts

Jim Lubinskas
Akamai Media Relations
703.907.9103
jlubinsk@akamai.com 

Cision View original content to download multimedia:https://www.prnewswire.com/news-releases/financial-services-akamai-research-shows-web-application-and-api-cyber-attacks-grew-by-257-percent-year-over-year-301686231.html

SOURCE Akamai Technologies, Inc.

FAQ

What does Akamai's latest report reveal about cyberattacks targeting financial services on November 28, 2022?

Akamai's report reveals that 80% of attackers target customers of financial services, with a 257% increase in web application and API attacks.

What is the percentage increase in DDoS attacks against financial services according to Akamai's report?

DDoS attacks against financial services increased by 22% year over year.

How much have web application and API attacks grown in the Asia-Pacific region according to Akamai?

Web application and API attacks in the Asia-Pacific and Japan region grew by 449%.

What are some evolving phishing tactics mentioned in Akamai's report?

The report mentions phishing techniques that circumvent two-factor authentication, increasing risks for customers.

What are the main threats identified in Akamai's report for financial services?

Akamai identifies threats such as web application attacks, DDoS attacks, phishing campaigns, and customer account takeover attempts.

Akamai Technologies Inc

NASDAQ:AKAM

AKAM Rankings

AKAM Latest News

AKAM Stock Data

14.56B
147.40M
1.84%
98.73%
5.98%
Software - Infrastructure
Services-business Services, Nec
Link
United States of America
CAMBRIDGE