Advanced persistent threats awareness and readiness: a case study in Malaysian financial institutions

Zainudin, Zeti Suhana and Abdul Molok, Nurul Nuha (2019) Advanced persistent threats awareness and readiness: a case study in Malaysian financial institutions. In: 2018 Cyber Resilience Conference (CRC 2018), 13th-15th Nov. 2018, Putrajaya.

PDF - Published Version
Restricted to Registered users only
Download (6MB) | Request a copy

Preview

PDF (SCOPUS) - Supplemental Material
Download (188kB) | Preview

Preview

PDF (WOS) - Supplemental Material
Download (261kB) | Preview

Official URL: https://ieeexplore.ieee.org/document/8626835

Abstract

Advanced Persistent Threats (APT) has targeted the financial institutions (FI) for intelligence gathering on sensitive customer information and monetize the attack. APT could cause disastrous impact to the targeted FI and the country's economy if there is a lack of preparation to confront these challenges and attacks. A case study on local FI was carried out to examine the influencing factors of APT awareness among FI's cybersecurity practitioners and to investigate the security strategies employed by FI to protect them from APT attacks. Feedback from CyberSecurity Malaysia (CSM) was sought to validate the findings. It was found that the factors that influence APT awareness in local FI include the emphasis on informal learning on APT, attackers' financial motivation, the FI's reputational risks and the availability of financial regulatory requirements to combat any cybersecurity risks. The awareness has led cybersecurity practitioners in local FI to implement advanced security technologies and integrated security controls as their readiness to defend FI against APT attacks.

Item Type:	Conference or Workshop Item (Plenary Papers)
Additional Information:	5341/72590
Uncontrolled Keywords:	advanced persistent threats, APT, cybersecurity, financial institutions, FI
Subjects:	H Social Sciences > HJ Public Finance H Social Sciences > HJ Public Finance > HJ9011 Local finance
Kulliyyahs/Centres/Divisions/Institutes (Can select more than one option. Press CONTROL button):	Kulliyyah of Information and Communication Technology Kulliyyah of Information and Communication Technology Kulliyyah of Information and Communication Technology > Department of Information System Kulliyyah of Information and Communication Technology > Department of Information System
Depositing User:	Dr. Nurul Nuha Abdul Molok
Date Deposited:	13 Jun 2019 12:00
Last Modified:	13 Jun 2019 12:02
URI:	http://irep.iium.edu.my/id/eprint/72590

Actions (login required)

View Item

Download Statistics

Downloads

Downloads per month over past year