Skip to content

Share

  • Add this article to your LinkedIn page
  • Add this article to your Twitter feed
  • Add this article to your Facebook page
  • Email this article
  • View or print a PDF of this page
  • Share further
  • Add this article to your Pinterest board
  • Add this article to your Google page
  • Share this article on Reddit
  • Share this article on StumbleUpon
  • Bookmark this page
PA IN THE MEDIA

FIN11 uncovered: Hacking group promoted to financial cybercrime elite

Elliot Rose, head of cybersecurity at PA Consulting, talks about defending against FIN threats and financial cybercrime group FIN11.

Elliot said the designation of a new FIN group continues a burgeoning trend. “In 2018, following a number of arrests in the FIN7 case, the threat seemed to continue with a view that the methods had been shared with others and/or the network was much wider than first thought.”

FIN threat groups are distinct from APT groups insofar as they are typically even more sophisticated and demand a different response from security teams.

Elliot continued: “They tend to target their victims through social media analysis and associated spear phishing, which has led to serious breaches of information, and they enrol, through fake companies, the innocent in the form of pen testers and developers, to help them in their criminal activities.” This means that “employee education plays a key part, alongside technology, in combating the threat. That means telling them to be very careful what they post on social media or to avoid clicking on links in emails or disclosing information to anyone that they are not completely certain who they say they are. Think before you click is a key defence!”

The motives of FIN groups are also fundamentally different.

He added: “Nation-state attacks look to disrupt and steal IP, whereas these groups are motivated by financial gain. The fact that many are working from CIS emphasises the need for significant levels of international co-operation across law enforcement.”

Click here to read the full article in The Daily Swig 

A global movement towards increased data privacy is changing the way companies do business. Are you ready for the new era of data privacy?

Read more

Contact the digital trust and cyber security team

Adam Stringer

Adam Stringer

Cate Pye

Cate Pye

Elliot Rose

Elliot Rose

Justin Lowe

Justin Lowe

×

By using this website, you accept the use of cookies. For more information on how to manage cookies, please read our privacy policy.