Skip to content

News

FCA records 50% rise in serious cyber incidents at UK firms

Share on facebook
Facebook
Share on twitter
Twitter
Share on linkedin
LinkedIn

Cyber incidents reported to the UK’s Financial Conduct Authority in 2021 are up by over 50%, with a fifth involving ransom software.

In total, the FCA received 116 reports of material cyber security incidents in 2021, up from 76 in 2020.

According to the FCA, an incident may be material if it:

• results in a significant loss of data
• results in the unavailability or control of IT systems
• affects a large number of customers
• results in unauthorised access to information systems

The data, obtained from a Freedom of Information request from Picus Security, revealed that approximately one third of incident reports contained notifications where the confidentiality of company or personal data may have been compromised or breached. One in five of all breaches involved ransomware.

March was the busiest month for the FCA, with 21 cyber incidents reported, coinciding with the disclosure of critical vulnerabilities in Microsoft Exchange Server.

A recent report by the Financial Services Information Sharing and Analysis Center (FS-Isac) warned that the teutonic shift to digital banking is laying firms open to ransomware and supply chain attacks, as well as a resurgence of banking trojans and distributed denial of service (DDoS) threats.

Suleyman Ozarslan, Picus Security co-founder and VP of Picus Labs, says: “The large rise in cyber incidents reported to the FCA in 2021 is a concerning trend and should serve as an important reminder to all firms about the need to make ongoing improvements in all areas of security. This is necessary to not only mitigate the risks posed by external threats but also those which arise due to IT failures and human error.”

 

Source: Finextra

Share on facebook
Facebook
Share on twitter
Twitter
Share on linkedin
LinkedIn

Related Posts

APP scams reimbursement requirement

PSR to host engagement sessions on APP scams reimbursement requirement

The Authorised Push Payment (APP) scams reimbursement requirement will officially take effect on 7 October 2024. This policy aims to provide protection to consumers who fall victim to fraudulent transactions.
Read More >
FCA Business Plan 2024/2025

FCA outlines ambitious plans for 2024-25

The Financial Conduct Authority (FCA) has unveiled its Business Plan for 2024-25, setting forth an ambitious agenda for the final year of its 3-year strategy aimed at achieving better outcomes
Read More >