Big data analytics can help banks stop cyber criminals accessing secret data

Monitoring digital footprint across all of the web can mitigate attack risk, says financial tech start-up

Big data analytics can help banks protect themselves from cybercriminals accessing confidential information appearing across the web, financial tech start-up Digital Shadows has claimed.

Like all companies, financial institutions are seeing increasing amounts of data appear online as their digital footprint grows. With the rise of social media and mobile computing, banks are seeing more company information posted online than ever, running the risk of employees publishing details deemed to be confidential. This could lead to reputational damage, or, more worryingly, the publication of information that could lead to a security breach, and has led to concerns from US bank regulators.

Using information from the bank or its suppliers, which can reach tens of thousands for some major companies, there is potential for criminals to collate information to support an attack on a bank's IT infrastructure.

"In particular from a hacker's point of view, they are getting more and more sophisticated and targeted in their attacks, and to do that they have to perform reconnaissance. It is the first stage of the attack where they begin to research the attack," Digital Shadows CEO, Alastair Paterson, told Computerworld UK.

"It's a bit like 'casing the joint'. If you are a cyber criminal you have to case the joint looking at all the little bits of information that companies expose, trying to find user names or passwords, or the technology that they run so that you can design an attack that will succeed from the outside. So the whole model [of bank security] has gone inside-out."

While banks previously had to concentrate on keeping information securely inside the organisations, the avenues for data to permeate through its defences have increased. As Paterson highlights, a quick Google search of '"confidential not for distribution" file type:PDF' unearths a flood of results that were not intended to be publically available.

He adds that, in addition to confidential material leaving a bank's clutches, the discussion of a particular bank in the far flung reaches of the 'dark web', which acts as a criminal underground, could contain information that may relate to an imminent attack.

Paterson said that gaining an overview of the vast amount of information appearing on various parts of the seen web, from Chinese blogs to Russian forums, as well as the unseen web, is of great value to financial institutions.

In order to help address these problems, the start-up software company has developed an analytics platform that sorts through unstructured or semi-structured data from 60 million sources in 25 languages, using an algorithm to determine what information might present a risk.

"You bring in all of that data in and we run our analysis which uses a lot natural language processing to try and identify from all of this unstructured material where the risk such as confidential documents are," he said.

"It is semi-structured data, in that you might have information on who posted it and the date, but the bulk of it is a load of text, so you have to teach the computer to spot the risk in all of that unstructured data, and that is where the natural language processing comes in."

He added: "We have spent our time building something that can very quickly cluster large amounts of information into 'interesting', 'not interesting' and 'very interesting' buckets, so that we can cut down the amount of time that is needed to spot the risk in all of that information."

While there are already social media monitoring platforms used by banks, performing these tasks individually is a human-intensive process, Paterson said, meaning that the ability to provide an overview of a wide variety of threats has caught the attention of major financial organisations.

"These banks are being attacked every day, so they are interested in any information and tools that can help them," he said.

Digital Shadows was one of seven companies involved in the FinTech Innovation Lab start-up accelerator, and presented in front of major banks as part of an investor day yesterday, having already picked up innovation awards from Innotribe and Cisco for its software service.

Speaking at the investor day, Paterson told Computerworld UK that changes in the financial sector have meant that way banks are beginning to reconsider how they develop systems.

"The interesting thing with the financial crash is the banks can no longer sustain huge internal development teams trying to build it all themselves. They have got to look more to smaller companies on the outside which can give them specialist services," he said.

"So, in some respects, it is easier now than ever to get through to the banks, as they are having to change and innovate with the environment."

Join the CSO newsletter!

Error: Please check your email address.

Tags security

More about CiscoGoogle

Show Comments

Featured Whitepapers

Editor's Recommendations

Solution Centres

Stories by Matthew Finnegan

Latest Videos

  • 150x50

    CSO Webinar: The Human Factor - Your people are your biggest security weakness

    ​Speakers: David Lacey, Researcher and former CISO Royal Mail David Turner - Global Risk Management Expert Mark Guntrip - Group Manager, Email Protection, Proofpoint

    Play Video

  • 150x50

    CSO Webinar: Current ransomware defences are failing – but machine learning can drive a more proactive solution

    Speakers • Ty Miller, Director, Threat Intelligence • Mark Gregory, Leader, Network Engineering Research Group, RMIT • Jeff Lanza, Retired FBI Agent (USA) • Andy Solterbeck, VP Asia Pacific, Cylance • David Braue, CSO MC/Moderator What to expect: ​Hear from industry experts on the local and global ransomware threat landscape. Explore a new approach to dealing with ransomware using machine-learning techniques and by thinking about the problem in a fundamentally different way. Apply techniques for gathering insight into ransomware behaviour and find out what elements must go into a truly effective ransomware defence. Get a first-hand look at how ransomware actually works in practice, and how machine-learning techniques can pick up on its activities long before your employees do.

    Play Video

  • 150x50

    CSO Webinar: Get real about metadata to avoid a false sense of security

    Speakers: • Anthony Caruana – CSO MC and moderator • Ian Farquhar, Worldwide Virtual Security Team Lead, Gigamon • John Lindsay, Former CTO, iiNet • Skeeve Stevens, Futurist, Future Sumo • David Vaile - Vice chair of APF, Co-Convenor of the Cyberspace Law And Policy Community, UNSW Law Faculty This webinar covers: - A 101 on metadata - what it is and how to use it - Insight into a typical attack, what happens and what we would find when looking into the metadata - How to collect metadata, use this to detect attacks and get greater insight into how you can use this to protect your organisation - Learn how much raw data and metadata to retain and how long for - Get a reality check on how you're using your metadata and if this is enough to secure your organisation

    Play Video

  • 150x50

    CSO Webinar: How banking trojans work and how you can stop them

    CSO Webinar: How banking trojans work and how you can stop them Featuring: • John Baird, Director of Global Technology Production, Deutsche Bank • Samantha Macleod, GM Cyber Security, ME Bank • Sherrod DeGrippo, Director of Emerging Threats, Proofpoint (USA)

    Play Video

  • 150x50

    IDG Live Webinar:The right collaboration strategy will help your business take flight

    Speakers - Mike Harris, Engineering Services Manager, Jetstar - Christopher Johnson, IT Director APAC, 20th Century Fox - Brent Maxwell, Director of Information Systems, THE ICONIC - IDG MC/Moderator Anthony Caruana

    Play Video

More videos

Blog Posts

Market Place