EMEA businesses 'under constant cyberattack'

News
By published

Europe's financial institutions are being bombarded with cyberattacks

An abstract image of digital security.
(Image credit: Shutterstock) (Image credit: Shutterstock)

European businesses are facing more cyberattacks than ever before as criminals widen the reach of their assaults, new research has found.

A wide-ranging report by NTT Security discovered that financial firms are seeing a particular rise in the threats they face, accounting for 30 percent of all attacks recorded on the continent last year.

This was followed by the business and professional services sector (24 percent), technology (17 percent) and manufacturing (nine percent), with the finance industry also seeing a major increase in web atatcks, which grew from 22 percent to 43 percent.

TechRadar Pro was invited to NTT Security's Security Operations Centre (SOC) in Gothenburg to get a first look at the company's 2019 Global Threat Intelligence Report (GTIR).

The 120-year-old company, which gets visibility over 40 percent of the world's entire internet traffic to examine trillions of data logs worldwide ever year, sifting through billions of attacks, comprised its report to see which sectors are most at risk of attack.

The 2019 GTIR found that 73 percent of all hostile activity falls into 4 categories - reconnaissance, web attacks, service-specific attacks and brute-force attacks.

"This doesn't really surprise us," says Rob Kraus, NTT Security's senior director, Global Threat Intelligence Centre, Operations, "we try to make sure we take all of these activities and notify them when it's really a problem."

Transforming

As mentioned above, Finance remained top attacked sector, as it has for 6 of the past seven years, with Kraus noting that attackers often go where the money is. But it has now been joined by technology sector this year, with the quick pace of development in the industry, especially in the IoT space, helping widen the threat vector.

“Finance is yet again on the top spot when it comes to targeted attacks, which surely is enough evidence to convince the board that cybersecurity is a must-have investment," noted Kai Grunwitz, SVP NTT Security EMEA. 

"Sadly, many financial organisations are moving forward with digital transformation but without security built-in. While legacy methods and tools are still quite effective at providing a solid foundation for mitigation, new attack methods are constantly being developed by malicious actors."

"Security leaders should ensure basic controls remain effective, but they must also embrace innovative solutions if they provide a good fit and true value."

(Image credit: Image Credit: Geralt / Pixabay)

The US was found to be the main source of attacks, accounting for 22 percent of the global share, followed by China (13 percent) and Japan (six percent) - with just ten countries making up two-thirds (66 percent) of all recorded attacks.

App and web assaults accounted for 32 percent of all attacks globally, with NTT Security noting that the increasing proliferation of web apps make them a very lucrative target.

“Some of the most prevalent activity in EMEA during the past year was related to web-application attacks – and it’s not surprising," Grunwitz added. 

"These attacks most often rely on leveraging an exposed unpatched vulnerability or misconfigured system, targeting organisations with high volumes of sensitive data. The consequences could be devastating as it could be used for financial gain, industry superiority or corporate espionage. Our GTIR once again highlights the fact that critical vulnerabilities – both old and new – need to be patched as quickly as possible in client environments, especially given the convergence of IT with Operational Technology.”

Worryingly, the report suggests that despite the increasing number of threats, many businesses are still ill-prepared to cope with cyberattacks.

NTT Security found that less than half of companies (49 percent) had an incident response plan in place, despite this being a crucial part of GDPR. The company is calling for "security by design" best practices, and getting cybersecurity on the board agenda, otherwise your business could end up paying a significant price for its vulnerabilities.

Mike Moore
Mike Moore
Deputy Editor, TechRadar Pro

Mike Moore is Deputy Editor at TechRadar Pro. He has worked as a B2B and B2C tech journalist for nearly a decade, including at one of the UK's leading national newspapers and fellow Future title ITProPortal, and when he's not keeping track of all the latest enterprise and workplace trends, can most likely be found watching, following or taking part in some kind of sport.

Latest in Security
cybersecurity
Chinese government hackers allegedly spent years undetected in foreign phone networks
Data leak
A major Keenetic router data leak could put a million households at risk
Code Skull
Interpol operation arrests 300 suspects linked to African cybercrime rings
Insecure network with several red platforms connected through glowing data lines and a black hat hacker symbol
Multiple routers hit by new critical severity remote command injection vulnerability, with no fix in sight
Code Skull
This dangerous new ransomware is hitting Windows, ARM, ESXi systems
An abstract image of a lock against a digital background, denoting cybersecurity.
Critical security flaw in Next.js could spell big trouble for JavaScript users
Latest in News
Open AI
OpenAI unveiled image generation for 4o – here's everything you need to know about the ChatGPT upgrade
Apple WWDC 2025 announced
Apple just announced WWDC 2025 starts on June 9, and we'll all be watching the opening event
Hornet swings their weapon in mid air
Hollow Knight: Silksong gets new Steam metadata changes, convincing everyone and their mother that the game is finally releasing this year
OpenAI logo
OpenAI just launched a free ChatGPT bible that will help you master the AI chatbot and Sora
NetSuite EVP Evan Goldberg at SuiteConnect London 2025
"It's our job to deliver constant innovation” - NetSuite head on why it wants to be the operating system for your whole business
Monster Hunter Wilds
Monster Hunter Wilds Title Update 1 launches in early April, adding new monsters and some of the best-looking armor sets I need to add to my collection
More about security
cybersecurity

Chinese government hackers allegedly spent years undetected in foreign phone networks
Data leak

A major Keenetic router data leak could put a million households at risk
Page shows the getting started page on the Notability app.

I enjoyed testing this satisfying note-taking app, but its collaboration skills were weak
See more latest
Most Popular
Tesla Model Y 2025
Tesla’s EU sales are in freefall as VW races ahead, but the Model Y could change all that
Asus NUC 15 Pro+
Asus unveils its most powerful mini PC to date — but I don't think the Intel-powered NUC 15 Pro+ will compete with Strix Halo models
HDD
Seagate teams with Nvidia to build an NVMe hard drive proof of concept, more than 3 years after its last effort
Open AI
OpenAI unveiled image generation for 4o – here's everything you need to know about the ChatGPT upgrade
NetSuite EVP Evan Goldberg at SuiteConnect London 2025
"It's our job to deliver constant innovation” - NetSuite head on why it wants to be the operating system for your whole business
Apple WWDC 2025 announced
Apple just announced WWDC 2025 starts on June 9, and we'll all be watching the opening event
Hornet swings their weapon in mid air
Hollow Knight: Silksong gets new Steam metadata changes, convincing everyone and their mother that the game is finally releasing this year
OpenAI logo
OpenAI just launched a free ChatGPT bible that will help you master the AI chatbot and Sora
Monster Hunter Wilds
Monster Hunter Wilds Title Update 1 launches in early April, adding new monsters and some of the best-looking armor sets I need to add to my collection
cybersecurity
Chinese government hackers allegedly spent years undetected in foreign phone networks