ECB's cyber security test shows 'room for improvement' for banks

FILE PHOTO: Figurines with computers and smartphones are seen in front of the words "Cyber Attack" in this illustration taken, February 19, 2024. REUTERS/Dado Ruvic/Illustration/File Photo

FRANKFURT (Reuters) - Euro zone banks have "room for improvement" in their cyber security, starting with how they would keep their business running after a hack, the European Central Bank said on Friday.

The ECB's first ever cyber risk stress test was launched in response to a surge in attacks, some with possible geopolitical motives, and its results came a week after a global tech outage that disrupted sectors including finance.

As part of the exercise, 109 banks were told to detail how they would respond to and recover from a successful cyber-attack, such as activating emergency procedures and restoring normal operations.

The ECB then examined their submissions and made specific recommendations to each bank as part of its annual supervisory assessment. This would not affect capital requirements.

"The results of the stress test are insightful and showed that while banks do have high-level response and recovery frameworks in place, there is still room for improvement," ECB supervisor Anneli Tuominen said in a blog post.

Specifically, banks have been told to work on how they ensure business continuity after a hack, beef up their backup measures, and take a closer look at external providers, among other recommendations.

"In some cases, banks have already improved or plan to remedy the shortcomings pinpointed during the exercise," the ECB said in a press release.

Of the 109 banks in the stress test, 28 were selected for a deeper exercise that also involved an actual recovery exercise and an on-site inspection.

The ECB did not name the banks examined and provided very few details of the sector's exact weaknesses, saying this was so as not to give hackers an edge.

It should decide by the end of the year whether to carry out further such tests. Financial supervisors in Britain and Denmark have also conducted similar cyber exercises.

The ECB added that "cyber incidents" at the 113 banks it supervises had surged in the second half of last year, which it said was "partly due to heightened geopolitical tensions" - a likely reference to Russia's invasion of Ukraine.

It also repeated warnings that many banks were operating with "ageing IT systems" and increasingly relying on third-party providers.

(Reporting by Francesco Canepa; Editing by Jan Harvey)

×
Follow us on our official WhatsApp channel for breaking news alerts and key updates!

   

Report it to us.

Next In Tech News
Social media platform X back up after brief outage, Downdetector shows
MCMC to quarantine rather than block websites with minimal prohibited�content
New iPhone will use Arm’s chip technology for AI, FT reports
‘Astro Bot’ review: All history lessons should be this fun
Byju's auditor BDO resigns after start of bankruptcy proceedings, company says
Barbershop murder video in the US called too gruesome, yet still up
More kids in the US have an eye condition these days. Why you shouldn’t be too quick to blame phones
An app called Why?! aims to foster closeness because folks are lonely
Robot pulled from Times Square subway patrol may be in line for new assignment
Dell, Palantir and Erie Indemnity to join S&P 500

Trending in Tech

Others Also Read

Load more

Copyright © 1995- Star Media Group Berhad [197101000523 (10894-D)]

Best viewed on Chrome browsers.