November 21, 2014 By Douglas Bonderud 2 min read

In the wake of the JPMorgan Chase breach, how do financial institutions plan to protect themselves from cybercrime? According to a sneak peek of an upcoming PricewaterhouseCoopers (PwC) report, they should spend big on cybersecurity budgets.

The preview of this report, which will be released in full on Monday, was obtained by the Wall Street Journal and covered by SC Magazine. It found that financial services companies are on track to increase their security budgets by $2 billion over the next two years. PwC’s survey asked 758 companies about their spending plans and discovered that they have already spent $4.1 billion this year to keep assets safe. Most predict a 10 percent to 20 percent jump in spending per year, or $2.6 billion more allocated for cybersecurity by 2016. But will it be enough?

Big Losers?

According to a Nov. 14 article from Financial News, financial institutions are among the hardest hit when it comes to cybercrime. Digging into the PwC preview showed that financial services companies accounted for 34 percent of all breaches through 2013, and in the past year, the number of firms reporting losses of $10 million or more increased by 140 percent. It’s no surprise; brick-and-mortar banks no longer carry any significant amount of cash on hand, making daylight robberies almost useless. Online credentials, meanwhile, give malicious actors access to a wealth of financial services, accounts and, in many cases, the ability to compromise a consumer’s entire online identity.

Moreover, tracing these attacks is problematic, meaning cybercriminals often face less risk. To protect valuable networks and assuage customer fears, banks need a plan. Right now, that plan is to invest heavily in security experts and consulting firms that offer cyberdefenses specifically designed for the financial services industry.

Solid Planning

As noted by a recent MSPmentor article, banks aren’t alone when it comes to increasing cybersecurity budgets. Seventy-five percent of chief information security officers surveyed across multiple industries said they expected their cloud security budgets to dramatically increase over the next five years. What’s more, almost half of the respondents believed a major cloud provider would suffer a “significant security breach” in the same period. Just like financial institutions, other enterprises are coming to grips with the new nature of cybersecurity. Companies must assume they are next in line for a breach rather than pretend it can’t happen.

Will all this spending pay off? It depends. Money alone isn’t enough to solve the problem of cybercrime. Financial institutions must invest in solutions that can actively scan for threats, take immediate action and prevent further intrusion, all without bogging down the network.

More from

Change Healthcare discloses $22M ransomware payment

3 min read - UnitedHealth Group CEO Andrew Witty found himself answering questions in front of Congress on May 1 regarding the Change Healthcare ransomware attack that occurred in February. During the hearing, he admitted that his organization paid the attacker's ransomware request. It has been reported that the hacker organization BlackCat, also known as ALPHV, received a payment of $22 million via Bitcoin.Even though they made the ransomware payment, Witty shared that Change Healthcare did not get its data back. This is a…

Phishing kit trends and the top 10 spoofed brands of 2023

4 min read -  The 2024 IBM X-Force Threat Intelligence Index reported that phishing was one of the top initial access vectors observed last year, accounting for 30% of incidents. To carry out their phishing campaigns, attackers often use phishing kits: a collection of tools, resources and scripts that are designed and assembled to ease deployment. Each phishing kit deployment corresponds to a single phishing attack, and a kit could be redeployed many times during a phishing campaign. IBM X-Force has analyzed thousands of…

How I got started: AI security researcher

4 min read - For the enterprise, there’s no escape from deploying AI in some form. Careers focused on AI are proliferating, but one you may not be familiar with is AI security researcher. These AI specialists are cybersecurity professionals who focus on the unique vulnerabilities and threats that arise from the use of AI and machine learning (ML) systems. Their responsibilities vary, but key roles include identifying and analyzing potential security flaws in AI models and developing and testing methods malicious actors could…

Topic updates

Get email updates and stay ahead of the latest threats to the security landscape, thought leadership and research.
Subscribe today