Report warns of FS data leak risk

Every employee in financial services is able to access nearly 11 million files, according to the 2021 Financial Data Risk Report from data security firm Varonis, leaving a huge data leak landscape for the industry to contend with.

The new report delves into the state of data security across on-premise, cloud and hybrid environments in the banking, insurance and investment sectors.

“Financial services organisations must safeguard tons of highly sensitive information, but data is often left exposed to far too many people,” said Varonis.

Varonis analysed a random sample of data risk assessments for 56 companies to uncover how exposed companies really are.The company's analysts crunched the numbers and examined 4 billion files for the report.

Amongst the key findings, the research found that on average, every financial services employee has access to nearly 11 million files, but for larger companies the number doubles to 20 million files.

In addition, 20 per cent of all folders are open to every employee, while 39 per cent of companies have over 10,000 stale - but enabled - user accounts.

The data security risk is raised further by the fact that nearly two-thirds of companies have 1,000-plus sensitive files open to every employee, and about 60 per cent of companies have 500-plus passwords that never expire, leaving systems vulnerable to hacking attempts and data breach.

Rachel Hunt, Varonis content and media relations manager, said of the threat: “If just one employee clicks on a phishing email, attackers will move into action fast, and they’ll be able to copy, change, encrypt or delete any files the victim can touch – which is pretty scary.”

    Share Story:

Recent Stories


Data trust in the AI era: Building customer confidence through responsible banking
In the second episode of FStech’s three-part video podcast series sponsored by HCLTech, Sudip Lahiri, Executive Vice President & Head of Financial Services for Europe & UKI at HCLTech examines the critical relationship between data trust, transparency, and responsible AI implementation in financial services.

Banking's GenAI evolution: Beyond the hype, building the future
In the first episode of a three-part video podcast series sponsored by HCLTech, Sudip Lahiri, Executive Vice President & Head of Financial Services for Europe & UKI at HCLTech explores how financial institutions can navigate the transformative potential of Generative AI while building lasting foundations for innovation.

Beyond compliance: Transforming document management into a strategic advantage for financial institutions
In this exclusive fireside chat, John Rockliffe, Pre-Sales Manager at d.velop, discusses the findings of Adapting to a Digital-Native World: Financial Services Document Management Beyond 2025 and explores how FSIs can turn document workflows into a competitive advantage.

Sanctions evasion in an era of conflict: Optimising KYC and monitoring to tackle crime
The ongoing war in Ukraine and resulting sanctions on Russia, and the continuing geopolitical tensions have resulted in an unprecedented increase in parties added to sanctions lists.