The National Bank wants the management of Ukrainian banks to more carefully check the personnel of their structures for potential “insiders and collaborators” and improve cybersecurity protection.
This is stated in the NBU recommendations “Concerning strengthening the cybersecurity of the banking system”, which were sent out by the regulator.
In it, officials refer to the increasing frequency of hacker attacks on banking structures.
“Systematic complex attacks on information systems of critical infrastructure facilities and organizations that ensure their functioning for the purpose of cyber espionage (data theft) and cyber terrorism (DDoS and destruction of infrastructure),” the document literally says.
It outlines seven areas that financiers must strengthen to combat hacking and data theft. And the first point of these recommendations is checking your own employees.
“Pay attention to potential insiders and collaborators within the organization,” notes the National Bank.
The regulator did not specify who exactly should be included in this category, but it can be assumed that any bank employee who discloses internal information to third parties is on the side.
The remaining regulations of the regulator are more of a technical nature. If we summarize the key recommendations, we get the following list:
1. Regarding remote access to networks: remove unnecessary internal services from the network perimeter, use VPN or other specialized solutions with MFA (multi-factor authentication), minimize access and increase network access control.
2. Work out scenarios of denial of service by a communication provider or when its services are compromised.
3. Increase control over the actions of privileged users, isolate and organize strict access control to infrastructure management systems. And also apply strict filtering rules (egress rules) to provide access to information systems to the Internet (using white lists).