• About
  • Subscribe
  • Contact
Thursday, May 8, 2025
    Login
  • Management Leadership
    • Growth Strategies
    • Finance
    • Operations
    • Sales and Marketing
    • Careers
  • Technology
    • Infrastructure and Platforms
    • Business Applications and Databases
    • Big Data, Analytics and Intelligence
    • Security
  • Industry Verticals
    • Finance and Insurance
    • Manufacturing
    • Logistics and Transportation
    • Retail and Wholesale
    • Hospitality and Tourism
    • Government and Public Services
    • Utilities
    • Media and Telecommunications
  • Resources
    • Whitepapers
    • PodChats
    • Videos
  • Events
No Result
View All Result
  • Management Leadership
    • Growth Strategies
    • Finance
    • Operations
    • Sales and Marketing
    • Careers
  • Technology
    • Infrastructure and Platforms
    • Business Applications and Databases
    • Big Data, Analytics and Intelligence
    • Security
  • Industry Verticals
    • Finance and Insurance
    • Manufacturing
    • Logistics and Transportation
    • Retail and Wholesale
    • Hospitality and Tourism
    • Government and Public Services
    • Utilities
    • Media and Telecommunications
  • Resources
    • Whitepapers
    • PodChats
    • Videos
  • Events
No Result
View All Result
No Result
View All Result
Home Technology Security

Study reveals where FSIs in APJ are most at risk

FutureCIO Editors by FutureCIO Editors
December 26, 2022
Photo by Pixabay: https://www.pexels.com/photo/application-blur-business-code-270408/

Photo by Pixabay: https://www.pexels.com/photo/application-blur-business-code-270408/

Akamai Technologies’ 2022 State of the Internet report indicates a severe risk to the financial services sector in Asia-Pacific and Japan (APJ) region, as attackers ramp up attacks and shift to more sophisticated techniques. Web application and API attacks are increasing at an alarming rate while also growing in complexity.

The new report, Enemy at the Gates, estimate that roughly 80% of cyber attackers additionally aim their efforts at customers of financial services in an attempt to find paths of least resistance for monetary gain.

Source: Akamai Technologies

APJ is said to be the most attacked vertical in several critical areas including web application and API attacks, DDoS, phishing, zero-day exploitation, and botnet activities.

APIs as doorways to attack

Most concerning is the surge in web application and API attacks — a 449% growth in the number of attacks against APJ financial services year-over-year.

Akamai claims that web apps and API vectors are commonly used by ransomware groups to gain initial access via the exploitation of vulnerabilities. The surge in web app and API attacks in APJ seems to correlate with the high GDPs of some of the affected countries in the region.

The shortage of cybersecurity skills or talent in the region could potentially be a factor in the increasing number of successful cyberattacks.

Knowing what the attackers are focusing on could help organisations and security practitioners in APJ have a better understanding of their risk exposures and prioritise securing potential weaknesses.

Beyond APIs – other vulnerabilities

The growing number of attacks and increased sophistication coincides with an increasing number of cyberattacks in the region, primarily resulting in ransomware. Previous findings connect web app and API attacks with ransomware.

Australia, Japan, and India are the countries with the highest number of web application and API attacks in the region.

Within 24 hours, exploitation of newly discovered zero-days against financial services reaches multiple thousands of attacks per hour and peaks quickly - affording little time to patch and react.

Source: Akamai Technologies, 2022

A significant increase in Local File Inclusion (LFI) and Cross-Site Scripting (XSS) attacks demonstrates how attackers are shifting toward remote code execution attempts that present a larger strain on internal network security.

Phishing campaigns against financial services customers are introducing techniques that bypass two-factor authentication solutions and increase risk for everyday customers.

Customer account takeover attempts represent over 40% of attack types with another 40% focusing on website scraping, which is used to create more convincing phishing scams.

“Financial services is one of the most attacked industries when new vulnerabilities are discovered, a favourite target of DDoS attacks and continuously focused on by phishing campaigns, which are aimed at their customers who suffer the brunt of these attacks,” said Steve Winterfeld, advisory CISO for Akamai.

Steve Winterfeld

“Attackers will always find ways to infiltrate your network or impact your customers. Understanding attack surfaces could provide insights into key risks and therefore allow organisations to devise security controls and mitigation plans to better protect customers.”

Steve Winterfeld
Related:  What you need to know about FIDO2 in 2023
Tags: AkamaiAPI vulnerabilitiesweb applications
FutureCIO Editors

FutureCIO Editors

No Result
View All Result

Recent Posts

  • Agentic AI-powered AppSec platform launched for the AI era
  • IDC forecasts GenAI alone will grow at a 59.2% CAGR
  • Dataiku brings new AI capabilities to create and control AI agents
  • Microsoft reveals the rise of a new kind of organisation in the AI era
  • St Luke’s ElderCare enhances data security and user experience with Juniper

Live Poll

Categories

  • Big Data, Analytics & Intelligence
  • Business Applications & Databases
  • Business-IT Alignment
  • Careers
  • Case Studies
  • CISO
  • CISO strategies
  • Cloud, Virtualization, Operating Environments and Middleware
  • Computer, Storage, Networks, Connectivity
  • Corporate Social Responsibility
  • Customer Experience / Engagement
  • Cyber risk management
  • Cyberattacks and data breaches
  • Cybersecurity careers
  • Cybersecurity operations
  • Education
  • Education
  • Finance
  • Finance & Insurance
  • FutureCISO
  • General
  • Governance, Risk and Compliance
  • Government and Public Services
  • Growth Strategies
  • Hospitality & Tourism
  • HR, education and Training
  • Industry Verticals
  • Infrastructure & Platforms
  • Insider threats
  • Latest Stories
  • Logistics & Transportation
  • Management Leadership
  • Manufacturing
  • Media and Telecommunications
  • News Stories
  • Operations
  • Opinion
  • Opinions
  • People
  • Process
  • Remote work
  • Retail & Wholesale
  • Sales & Marketing
  • Security
  • Tactics and Strategies
  • Technology
  • Utilities
  • Videos
  • Vulnerabilities and threats
  • White Papers

Strategic Insights for Chief Information Officers

FutureCIO is about enabling the CIO, his team, the leadership and the enterprise through shared expertise, know-how and experience - through a community of shared interests and goals. It is also about discovering unknown best practices that will help realize new business models.

Quick Links

  • Videos
  • Resources
  • Subscribe
  • Contact

Cxociety Media Brands

  • FutureIoT
  • FutureCFO
  • FutureCIO

Categories

  • Privacy Policy
  • Terms of Use
  • Cookie Policy

Copyright © 2022 Cxociety Pte Ltd | Designed by Pixl

Login to your account below

or

Not a member yet? Register here

Forgotten Password?

Fill the forms bellow to register

All fields are required. Log In

Retrieve your password

Please enter your username or email address to reset your password.

Log In
No Result
View All Result
  • Management Leadership
    • Growth Strategies
    • Finance
    • Operations
    • Sales and Marketing
    • Careers
  • Technology
    • Infrastructure and Platforms
    • Business Applications and Databases
    • Big Data, Analytics and Intelligence
    • Security
  • Industry Verticals
    • Finance and Insurance
    • Manufacturing
    • Logistics and Transportation
    • Retail and Wholesale
    • Hospitality and Tourism
    • Government and Public Services
    • Utilities
    • Media and Telecommunications
  • Resources
    • Whitepapers
    • PodChats
    • Videos
  • Events
Login

Copyright © 2022 Cxociety Pte Ltd | Designed by Pixl

Subscribe