View all newsletters
Receive our newsletter - data, insights and analysis delivered to you
  1. Technology
  2. Cybersecurity
September 21, 2016updated 25 Oct 2016 1:40pm

SWIFT CISO urges information sharing in banking to fight hackers

SWIFT recently introduced Daily Validation Reports to cut fraud risks.

By Alexander Sword

The banking industry needs to work towards information sharing if it is to deal with new cyber threats, according to the Chief Information Security Officer of SWIFT.

Speaking at the FT Cyber Security Summit, Alain Desausoi said that combining intelligence was key to allow secure financial transactions.

Information sharing has been the quest for the Holy Grail,” said Desausoi. “We all starve to get information and it’s always difficult to take the step.”

He said that looking at what was going on inside customer’s networks was essential to building intelligence that could be used elsewhere.

“From that we derive the indicators of compromise, things which you should look at in advance of the fraudulent messages being attempted.”

Desausoi also said that it was necessary to allow hackers to get into networks in order to gather intelligence.

Desausoi’s comments came the day after SWIFT announced the introduction of Daily Validation Reports, a new tool that is designed to supplement customer fraud controls.

Content from our partners
Why the tech sector must embrace faster, smarter talent recruitment
Sherif Tawfik: The Middle East and Africa are ready to lead on the climate
What to look for in a modern ERP system

The tool will include both Activity Reports and Risk Reports. The Activity Reports will allow institutions to see their aggregate daily activity across currencies, countries and counterparties: “a snapshot view of each day’s messaging activity against which to detect unusual patterns”.

The Risk Reports will provide a focused review of large or unusual payment flows as well as new combinations of payment parties.

Desausoi also discussed the company’s multi-layer security approach, which covers information sharing, product resistance to attacks, making security practices more accessible to customers and ensuring banks have the right partners to work with on security.

An attack in February using the SWIFT network saw $81m (£56m) stolen from Bangladesh’s central bank, after attackers exploited vulnerabilities in banks funds’ transfer initiation environments before sending the messages over SWIFT.

SWIFT is the primary communications channel for financial institutions engaged in correspondent banking around the world, transmitting messages relating to payments, securities, treasury and trade between financial institutions.

Topics in this article :
Websites in our network
Select and enter your corporate email address Tech Monitor's research, insight and analysis examines the frontiers of digital transformation to help tech leaders navigate the future. Our Changelog newsletter delivers our best work to your inbox every week.
  • CIO
  • CTO
  • CISO
  • CSO
  • CFO
  • CDO
  • CEO
  • Architect Founder
  • MD
  • Director
  • Manager
  • Other
Visit our privacy policy for more information about our services, how New Statesman Media Group may use, process and share your personal data, including information on your rights in respect of your personal data and how you can unsubscribe from future marketing communications. Our services are intended for corporate subscribers and you warrant that the email address submitted is your corporate email address.
THANK YOU