Cybersecurity for financial industry

What can the finance and insurance industry do to counter this growing threat?

The fact is, however, that banks are not sufficiently prepared for cyberattacks. Despite high standards, the financial sector has a massive backlog in IT security. The most frequent cause of attacks is human error: seven out of ten financial companies have become victims of cybercrime by mishandling email attachments. Striking in comparison to other critical infrastructure sectors: Many companies in the financial sector do not implement either technical or organizational measures to protect against email-based threats.

Endpoint security: virtual browser as protection against attacks from the internet

The browser is the number one gateway for ransomware and other malware. The best protection against such attacks from the Internet is a virtual browser. This allows users to surf the Internet without hackers gaining access to government or corporate networks. R&S® Browser in the Box from Rohde & Schwarz Cybersecurity, for example, closes the "Internet" security gap by enabling a "digital" quarantine for hacker attacks. At the computer level, complete isolation takes place so that malware is kept away from the rest of the user's PC. In addition, at the network level, access to the Internet is separated from the intranet. The internal corporate network (intranet) is thus completely separated from the Internet. This mechanism also protects against attacks via e-mail attachments or during web conferences with microphone use and webcam support.

In addition, further protective measures should be taken - for example, encryption of the end devices, a highly secure VPN connection and securing the home WLAN.

Mobile security: R&S®ComSec solution using Apple indigo for smartphones and tablets

Combines convenient and secure working with sensitive data

The R&S®ComSec solution using Apple indigo combines convenient and secure working with sensitive data on smartphones and tablets in accordance with the VS-NfD standard, making every day work easier for users in government and security-critical environments.

BSI has examined the general security features and confirmed the effectiveness of the embedded security features

The BSI has examined the general security features and the possibilities for the secure use of the devices for the iOS and iPadOS operating systems. The tests have confirmed the effectiveness of the embedded security features and concluded that the apps for Calendar, Contacts, and Mail integrated into commercial iPhone and iPad devices also complement the existing portfolio of secure mobile solutions when processing information in the classification level “Verschlusssache - nur für den Dienstgebrauch.”

The evaluation was performed by an independent laboratory and BSI, on the basis of the standards and methodology of the internationally recognized Common Criteria. The solution is known as Apple indigo.

R&S®ComSec solution using iOS native devices in government operation

Apple indigo which stands for “iOS Native Devices in Government Operation” and is a convenient and secure solution developed by Apple for iPhones and iPads in government use. This platform enables the use of end devices up to classification level VS-NfD and offers advantages such as the use of standard Apple hardware and software as well as native apps.

If you have any further questions, please contact us.