UniCredit hack: another challenge
We know which is the target. This is fresh news. UniCredit hack represents the newest challenge to face. Immediately after the attack, there is not a lot of information available. What do we know? Attackers should not have any access to data that can move money. They don’t have any password neither log in credentials. Clients can sleep safe because hackers do not know anything about credit cards and bank accounts data. However, personal data and Iban codes are in a dangerous position.
UniCredit hack: who is responsible and when did it happen?
According to UniCredit statement, this is the second dangerous event. The first one happened between September and October of last year. And what about who? This is not easy to say yet, but they recognized the responsible organization in an Italian trading partner. After the UniCredit hack the bank immediately formalized a report to the Procura della Repubblica di Milano.
How does such a big organization behave in these circumstances? The first they did was put in place measures to avoid these situations in the future. A completely understandable (and wise – we add) decision. The bank stated that customers’ privacy and safety is “an absolute priority”. In order to guarantee this kind of security they invested over 2.3 billion to ensure IT infrastructures. The CEO of Ubis (the company that provides IT services to UniCredit) said, “The attackers do not have any password” and “According to the data they have it’s impossible for them to move money from one account to another”.
The situation of the UniCredit hack
This is a dangerous field in terms of hacking. According to a Kaspersky Lab research, the cost for a bank or similar organization for this kind of event is around 1.800.000$. The average amount to face a malware in other sectors proves out around 952.000$. Another important thing to consider is online banking. It clearly has bright sides but it turns out to be dangerous sometimes. This is one of hackers’ favorite targets because allows the access to sensitive data. Ransomware means danger as we saw from the Petya situation…
How can we protect ourselves?
Unicredit hack shows us in a clear way how cybersecurity importance constantly grows. In order to assure to your business the best tool available, Swascan developed a special cybersecurity platform. It is completely in Cloud, Pay per Use and SaaS. You can see for yourself in our brochure: Cybersecurity platform and have an in-depth look at our services. Our three services cover all the governance needs in terms of risk management and periodic assessment. Basically, if you need to understand the areas in which your efforts must focus, Vulnerability Assessment, Network Scan and Code Review are the right tools for you. Last but not least, don’t forget GDPR: our platform is 100% GDPR compliant ( GDPR infographic ).