Elliot Rose, head of cybersecurity at PA Consulting, talks about defending against FIN threats and financial cybercrime group FIN11.
Elliot said the designation of a new FIN group continues a burgeoning trend. “In 2018, following a number of arrests in the FIN7 case, the threat seemed to continue with a view that the methods had been shared with others and/or the network was much wider than first thought.”
FIN threat groups are distinct from APT groups insofar as they are typically even more sophisticated and demand a different response from security teams.
Elliot continued: “They tend to target their victims through social media analysis and associated spear phishing, which has led to serious breaches of information, and they enrol, through fake companies, the innocent in the form of pen testers and developers, to help them in their criminal activities.” This means that “employee education plays a key part, alongside technology, in combating the threat. That means telling them to be very careful what they post on social media or to avoid clicking on links in emails or disclosing information to anyone that they are not completely certain who they say they are. Think before you click is a key defence!”
The motives of FIN groups are also fundamentally different.
He added: “Nation-state attacks look to disrupt and steal IP, whereas these groups are motivated by financial gain. The fact that many are working from CIS emphasises the need for significant levels of international co-operation across law enforcement.”
A global movement towards increased data privacy is changing the way companies do business. Are you ready for the new era of data privacy?