Banking and finance ‘most popular ransomware target’

Banking and financial services were the most popular target for ransomware attacks in the third quarter of 2021.

The research, from cybersecurity company Trellix, found that the industry was more prone to ransomware attacks than the utility industry, which it said accounted for 20 per cent of ransomware attack detections, and the retail industry, which it found accounted for 16 per cent of detections.

The UK accounted for a relatively small percentage of the ransomware attack detections worldwide, just 4 per cent according to Trellix.

The US was the worst impacted country in terms of attacks, with 34 per cent of the worldwide total ransomware attack detections.

The US was followed by Turkey, Germany, and Israel in terms of ransomware detections, which accounted for 12 per cent, 11 per cent, and 8 per cent, respectively.

The Sodinokibi strain was the most prevalent ransomware family detected in Q3 2021 according to Trellix, accounting for 41 per cent of detections, followed by the DarkSide and Egregor strains which accounted for 14 per cent and 13 per cent of detections, respectively.

Ransomware is not the only cyber threat posing a risk to financial services according to Trellix.

Banking and finance also represented 37 per cent of overall advanced persistent threat (APT) detections according to the company’s research.

“Despite the financial, utilities, and retail sectors accounting for nearly 60 per cent of all ransomware detections, no business or industry is safe from attack, and these findings should act as a reminder of this,” said Fabien Rech, Trellix EMEA vice president at Trellix. “As cyber criminals adapt their methods to target the most sensitive data and services, organisations must shore up their defences to mitigate further threats.

“To do this, businesses must deploy a security strategy that includes a living platform that can learn and adapt defences based on the threat. This platform generates and prioritises comprehensive threat insights from both outside and inside the company to adaptively strengthen detection, and it responds in real time to active threats.

“As the threat of ransomware continues to grow, businesses must rely on technology that moves as quickly as the cyber criminals and can adapt in real time to get ahead.”

He added: “Unfortunately, failing to take this approach only means businesses open themselves up to an attack.”

    Share Story:

Recent Stories


Data trust in the AI era: Building customer confidence through responsible banking
In the second episode of FStech’s three-part video podcast series sponsored by HCLTech, Sudip Lahiri, Executive Vice President & Head of Financial Services for Europe & UKI at HCLTech examines the critical relationship between data trust, transparency, and responsible AI implementation in financial services.

Banking's GenAI evolution: Beyond the hype, building the future
In the first episode of a three-part video podcast series sponsored by HCLTech, Sudip Lahiri, Executive Vice President & Head of Financial Services for Europe & UKI at HCLTech explores how financial institutions can navigate the transformative potential of Generative AI while building lasting foundations for innovation.

Beyond compliance: Transforming document management into a strategic advantage for financial institutions
In this exclusive fireside chat, John Rockliffe, Pre-Sales Manager at d.velop, discusses the findings of Adapting to a Digital-Native World: Financial Services Document Management Beyond 2025 and explores how FSIs can turn document workflows into a competitive advantage.

Sanctions evasion in an era of conflict: Optimising KYC and monitoring to tackle crime
The ongoing war in Ukraine and resulting sanctions on Russia, and the continuing geopolitical tensions have resulted in an unprecedented increase in parties added to sanctions lists.