Attacks in the financial sector are becoming increasingly corporate-oriented and shifting away from consumers according to Kaspersky’s latest Financial Cyberthreats report,. Kaspersky Security Network data shows that the number of financial phishing attempts in the African regions increased significantly from the first quarter to the second quarter of 2022. Banks, payment systems, and e-commerce websites were the key targets being attacked.
Financial phishing is a deceptive way of stealing information and is gaining momentum in the region. Phishing is a type of online fraud where the scammer sends fake alerts from banks, e-pay systems and other organisations to trick consumers into sharing their financial details. The alerts sent by the scammer can be related to loss of data, update credentials or system breakdown, which results in theft of passwords, credit card numbers, bank account details and other confidential information.
According to the Kaspersky telemetry, in the second quarter of 2022, a total of 100,192 financial phishing attacks aimed at organisations were detected in Kenya, a 201% increase compared to the first quarter. The largest share of attacks was directed at e-commerce websites (58%), with banks (21%) and payment systems (also 21%) following. For the same period in Nigeria a total of 61,344 financial phishing attacks aimed at organisations were detected, an increase of 79% compared to the first quarter. The largest share of attacks was directed at e-commerce websites (52%), with payment systems (42%) and banks (6%) following.
“A life without Internet is strange to us. So much so that our financial life is now digital. This is the magic of digitisation. But we also need to be aware of an unprecedented wave of challenges. Financial threats are one such challenge which is becoming more advanced in exploiting human behaviour and will only continue to grow. Businesses trying to stay ahead of such evolving, complex cyberattacks should make fraud prevention a focal point to control fraud transactions, eventually reduce fraud risk in the future and avoid reputation damage” said Emad Haffar, Head of Technical Experts at Kaspersky.
To help businesses stay ahead of financial threats and phishing attacks, Kaspersky recommends the following:
- Educate employees as they are considered the first line of cyber defence. Make it a continuous learning experience and teach them about the red flags they need to keep an eye out for.
- Similarly, extend the dos and don’ts of cybersecurity to your customers so that they protect themselves against falling victim to Phishing fraud.
- Use the Kaspersky Fraud Prevention solution, which proactively analyses and detects whether a customer’s device is infected with malware in real-time.
- Organisations should rely on Kaspersky Threat Intelligence to increase visibility and feed its security operations with advanced insights.