2016 financial industry wide Network Security Research Report
mob604757044d68 2021-07-20 04:53:41

This report is jointly released by Gu An Tian Xia and Wuyun , And thanks to Online Loan Home 、 Payment circle 、 Safety value 、 Security cattle and other media and institutions provide data sources .


Overview of financial industry network security research


Background of the report


In the past two years, Internet finance has developed rapidly , Different from traditional finance , In addition to the original financial risks, the new financial model relying on the Internet , It also introduces new risks , Massive data leakage 、 Money stolen 、 Business interruption and other events occur frequently . In this context , Gu Anxia launched this financial industry network security survey . The research starts with Internet threat intelligence 、 Loophole 、 Enterprise information security internal control from three aspects , Research. 2016 The Internet security situation of the financial industry in the first quarter of , From the market research results, we can see the current situation and future development trend of network security in the financial industry .


The purpose of this survey is to provide Internet financial enterprises with the basic status quo of industry information security , It is convenient for Internet financial enterprises to understand the position of their information security capabilities ; The second is to provide information security trend information to Internet security solution providers , Give the supplier the right product 、 strategic 、 Market positioning provides decision information .


Definition of noun


online finance : Traditional financial institutions and Internet enterprises use Internet technology and information and communication technology to achieve financing 、 payment 、 New financial business models for investment and information intermediary services .


Information security : Information system ( Including hardware 、 Software 、 data 、 people 、 The physical environment and its infrastructure ) Protected , Not damaged by accidental or malicious causes 、 change 、 Let the cat out of the , The system operates continuously, reliably and normally , Information services are uninterrupted , Ultimately business continuity .


Threat Intelligence : It refers to the threat information of enterprises exposed on the Internet , In this report , Threat Intelligence includes “ Disclosure of domain name information ”、“ The mailbox is sealed ”、“ Botnet ”、“IP Be sealed up ”、“ Malicious code ”、“ Domain name is sealed ”、“ Public cloud risk ” 、“ Domain name hijacking ” common 8 Class threat information .


Network assets : Refers to the Internet financial enterprises exposed to the network IP、 host 、 Domain names and other resources .


Research objects


8 Segments 、3 Big security


The research report covers Internet finance 8 Segments , Including bank 、 negotiable securities 、 insurance 、P2P、 fund 、 Third party payment 、 Crowdfunding and consumer finance .


The research report covers 3 Big information security , Including Internet threat intelligence 、 Loophole 、 Internal control of enterprise information security .


In this survey, Gu'an research group and safety cattle 、 Dark clouds 、 Home of Internet loan 、 Payment circle and other well-known information security media 、 Industry information organization , And widely mobilize Gu'an financial industry customers to actively participate in , Through the online questionnaire 、 External threat intelligence collection and analysis and other forms of research work .


A survey of Internet security research findings in the financial industry


Research findings


1. External threats


This external threat survey covers 8 Segments , Including bank 、 negotiable securities 、 insurance 、P2P、 fund 、 Third party payment 、 Crowdfunding and consumer finance . Among them, the external threat problem is the most 3 One industry in turn is securities 、 insurance 、 Bank .


This external threat survey includes “ Disclosure of domain name information ”、“ The mailbox is sealed ”、“ Botnet ”、“IP Be sealed up ”、“ Malicious code ”、“ Domain name is sealed ”、“ Public cloud risk ” 、“ Domain name hijacking ” common 8 Class threat information . One of the most prominent 3 The first question in turn is “ Disclosure of domain name information ”、 “ Botnet ”、“IP Be sealed up ” .


2. Vulnerabilities


This vulnerability survey covers 8 Segments , Including bank 、 negotiable securities 、 insurance 、P2P、 Third party payment 、 fund 、 Crowdfunding and consumer finance . The most vulnerable 3 The next industry is insurance 、 negotiable securities 、 Bank .


The vulnerabilities involved in this vulnerability survey include the following types :SQL Inject holes 、XSS Cross-site scripting attacks 、 Design flaws / Logic error 、 Unauthorized access / Authority bypass 、 Leakage of sensitive information 、 Weak password , The top three types of vulnerabilities are design defects in turn / Logic error 、 SQL Inject holes 、 Leakage of sensitive information .


3. The status quo of internal control of information security


Information disclosure 、 Business fraud is the most concerned risk of Internet finance .


Under investment 、 Lack of personnel 、 Weak safety awareness 、 The system process is not standardized 、 Unclear security requirements are all factors leading to security problems .


Big data and Threat Intelligence technology are more concerned about information security technology .


4. Information security control trends


  • The improvement of regulatory policies will promote the improvement of the overall information security status of the Internet financial industry

  • The establishment and improvement of information security management system will become more and more important

  • The improvement of industry maturity will promote the increase of investment in safety

  • The demand for safety personnel continues to be strong

  • Prevent data leakage 、 Business fraud prevention will continue to be the focus of security control

  • The application of big data in the field of security will be more and more common


Financial industry network security research and analysis


Internet threat intelligence research and analysis


Industry distribution of Internet threat intelligence research objects


 picture

The survey involves the number of enterprises and industries



 picture

The survey involves the distribution of network assets in different industries


The overall situation of information security of industry network assets


Description of evaluation method


The evaluation is provided by the security value https://www.aqzhi.com/ , use 1000 The impact of distribution system on network assets ( See noun explanation ) Make a comprehensive score , The higher the score, the greater the external safety factor


 picture

Safety average


Cause analysis


Traditional financial enterprises have many information assets , Most of them are self construction 、 Self protection , Users access network assets more frequently


Crowdfunding 、P2P And so on , Most are deployed on cloud platforms , Cloud platform service providers provide the ability to resist external risks .


notes : The safety value releases the safety monitoring trends of each industry segment every quarter


Threat information industry distribution


 picture

Threat Intelligence Information Industry Distribution


The total number of various types of threat information


 picture

The overall external threat distribution of the financial industry


In terms of the threat situation of the whole industry , The largest number of domain name information leaks , Second, the mailbox is blocked 、 Botnet .


 picture

The threat distribution of the securities industry


 picture

The distribution of threats in the insurance industry


 picture

The distribution of banking threats


 picture

P2P Industry threat distribution


 picture

Third party payment industry threat distribution


 picture

The threat distribution of the consumer finance industry


 picture

Crowdfunding industry threat distribution


Dark clouds 2016 Analysis of Internet Financial loopholes in the first quarter of


Industry distribution of research objects


 picture

The number of enterprises in various industries involved in this survey


2016 The overall situation of Internet Financial dark cloud vulnerability in the first quarter of


 picture

The total number of various vulnerabilities


2016 The overall situation of Internet Financial dark cloud vulnerability in the first quarter of


 picture

The number of vulnerabilities distributed across industries


Analysis of the causes of the loopholes


Bank 、 insurance 、 negotiable securities 、 Information security issues in the process of Internet transformation of traditional financial enterprises such as funds


Asset identification and management issues


Traditional financial enterprises have been developing for a long time , Online assets are huge , So there are some difficulties in asset identification and management . In the traditional financial enterprises with huge assets , When these components are vulnerable , It's not just about updates , We need to sort out which online system components are affected 、 The real-time online requirements of these components and whether repairing vulnerabilities will lead to the unavailability of associated services, etc , These problems may directly affect the business of the enterprise , So for the traditional financial industry with huge assets , For the underlying components with vulnerabilities , It's not that easy “ Upgrading is upgrading ” Of , And this problem directly leads to frequent security problems . 


Business from closed to open , Changes in the business environment lead to new security issues


Before the arrival of the Internet era, traditional financial enterprises , The demand for online systems is more inclined to their own office needs , And in today's world where businesses in various industries continue to migrate to the Internet , The traditional financial industry without exception began to develop online business . When offline trading goes online , The enterprise itself is no longer just facing the tactics of offline fraud , It's about starting to face more online attacks , The online data security that needs to be protected is no longer just the office data of the enterprise itself , And user data and financial security .


P2P、 Third party payment 、 Crowd-funding 、 Information security of emerging financial enterprises such as consumer finance


The business back-end logic is complex , It's easy to have security problems


Many emerging Internet finance enterprises have not fully understood the business logic of the back end of Internet finance business , If developers do not have a clear understanding of the back-end logic of the business during development , It is very easy to have logical loopholes that affect business security .


The cost of self built safety team is high and there is a threshold


Due to the high cost of component security teams , So most Internet finance companies don't have their own security teams , The security knowledge of developers is limited , This directly leads to the website and business system in the development will inevitably appear or large or small security problems .


Security issues caused by the use of generic programs or third-party services


In order to save the development cost and time, Internet financial enterprises should pay more attention to the development , In the process of building the station, some general-purpose programs or third-party components will be directly used / service , In fact, it is also a disguised way to hand over part of its own security to a third party . Once this generic program or third-party component / There is a security problem with the service , It will bring losses to the enterprise itself .


 picture

The number of insurance loopholes


 picture

The number of loopholes in the securities industry


 picture

The number of banking loopholes


 picture

P2P The number of industry vulnerabilities


 picture

The number of loopholes in the fund industry


 picture

The number of loopholes in the third party payment industry


 picture

The number of loopholes in the consumer finance industry


 picture

The number of loopholes in the crowdfunding industry


Information security internal control research and analysis


 picture

Internet finance companies are most concerned about information security risks


Data leakage is the most worrying security risk for Internet financial companies , The second is business fraud 、APT attack 、Ddos attack 、WEB attack 、 Malicious brush list .


 picture

Whether the information security investment can meet the demand


Most of the research results show that the investment in information security can basically meet the business needs , But there are 41.6% The results of the survey show that the investment in safety is insufficient or seriously insufficient .


 picture

Information security personnel needs


  • The demand for talents in various safety Posts exceeds 50%, It shows that Internet financial security talents are scarce on the whole ;

  • The Internet finance industry has the largest demand for risk control talents , Explain the importance of risk control in the Internet financial industry .


 picture

Internet finance companies are most concerned about information security requirements


Industry regulation is the most concerned security requirement of Internet financial companies .


 picture

The causes of information security problems ( Management level )


exceed 60% The results of the survey show that weak safety awareness is the most important reason for safety problems ; secondly , The system process is not perfect 、 Unclear safety responsibilities are also an important reason for safety problems ; There are more than 40% One of the reasons for safety problems is the lack of safety personnel .


 picture

The causes of information security problems ( Technical level )


exceed 65% The results of the survey show that unclear security requirements and business process design defects are the most important reasons for security problems ; secondly , The coding is not standard 、 Inadequate testing is also an important cause of security problems .


 picture

New information security technology / How much attention has been paid to the new model


Big data surpasses other new security technologies / A new model , Become the most concerned security control technology ; Second, there is 40% Of the research participants on Threat Intelligence 、 Vulnerability crowd testing 、 Automation operation and maintenance is also concerned .


Information security management and control trend analysis


The improvement of regulatory policies will promote the improvement of the overall information security status of the Internet financial industry


Regulatory policy is an important external factor to enhance the security capability of the Internet financial industry , In the past two years, the supervision of the Internet financial industry has increased significantly .2015 year 7 In October, the people's Bank of China and other ten departments issued 《 Guidance on promoting the healthy development of Internet Finance 》 since , Various industries have issued relevant management measures for Internet financial business , In these Regulations , In addition to the business itself to do the corresponding norms and guidance , It also puts forward certain requirements for the information security of the platform .


2015 year 12 The people's Bank of China issued 《 Administrative measures for online payment business of non bank payment institutions 》;

2016 year 2 The people's Bank of China issued 《 Implementation measures for risk assessment of non bank payment institutions 》;

2016 year 4 The people's Bank of China issued 《 Administrative measures for classification and rating of non bank payment institutions 》;

2016 year 4 In May, China payment and clearing Association issued 《 Measures for the administration of self-discipline evaluation of non bank payment institutions 》;

2015 year 7 month , CIRC issued 《 Interim Measures for supervision of Internet insurance business 》;

2015 year 12 In May, the CBRC drafted 《 Interim Measures for the administration of the business activities of the Internet lending information intermediary ( Solicitation draft )》.


The establishment and improvement of information security management system will become more and more important


With the deepening development of Internet Finance , It will be an inevitable trend to manage information security in a systematic way . At present, the business is relatively mature 、 Large scale Internet financial enterprises have established information security management system , A growing business , With the expansion of business scale , The complexity of the management process , Establish information security management system , It will become more and more urgent to improve information security management and control ability from two aspects of management and technology .


The improvement of industry maturity will promote the increase of investment in safety


Research results show that ,40% Of the survey participants believe that the investment in enterprise information security is insufficient . With the improvement of the management maturity of Internet financial enterprises , Increasing investment in information security is also an inevitable trend .


From the perspective of the degree of concern about information security incidents , Public opinion caused by information security incidents has greatly affected the public's trust in enterprises , Therefore, compared with other industries, the Internet finance industry pays more attention to information security incidents .


In terms of industry risk , The scale of the whole Internet finance industry is in a period of growth , With the development of industry scale , More assets are exposed to the Internet , The overall risk of information security will increase .


From the perspective of the ability of enterprises to invest in information security , The scale of the whole Internet finance industry is constantly improving , Enterprises will be more able to increase investment in information security .


The demand for safety personnel continues to be strong


From the research results , There is a general lack of talents in all posts of information security , In the future, the demand for information security talents in the Internet finance industry will continue to be strong .


On the one hand, Internet finance is developing rapidly , The traditional university talent training mode has a long cycle , This has caused the contradiction between supply and demand of Internet financial talents ; On the other hand , Internet finance requires high professional ability and comprehensive quality of talents , This exacerbates the contradiction between supply and demand .


at present , Social training has played an effective role in easing the contradiction between supply and demand of talents , But on the whole , There is still a shortage of information security talents in the Internet finance industry .


Prevent data leakage 、 Business fraud prevention will continue to be the focus of security control


Research shows , Information disclosure 、 Business fraud is the most concerned information security issue in the Internet financial industry , In the future, prevention of data leakage and business fraud will continue to be the focus of security control .


Information disclosure 、 On the one hand, business fraud will directly lead to the economic losses of Internet financial platform or customers , Cause a bad social impact , Greatly reduce customer trust ; On the other hand, it may lead to compliance risk , Punished by the regulatory authorities .


At present, most Internet finance will take control measures through management and technology , However, due to the frequent data leakage events and business fraud events in recent years , Preventing data leakage and business fraud will still be the focus of Internet financial security control .


The application of big data in the field of security will be more and more common


50% Of the respondents are concerned about security control measures based on big data , The application of big data in the field of information security will be more and more common .


At present, the application of big data in the field of information security mainly includes business anti fraud 、 Behavior based threat identification 、 Threat Intelligence Analysis . Business anti fraud technology has been relatively mature , It has been widely used in the field of Internet finance ; Behavior based threat identification and threat intelligence analysis will gradually become a hot topic in the field of information security .


Gu Anxia continues to study the network security of the financial industry


Gu'an Internet finance industry information security research group continues to investigate the industry 、 Research 、 Safety information release 、 Information security situation prediction and other research work , And released to the public through the security cow platform . Various industry research institutions 、 Scholars and people in the industry , Pay attention to safety cattle and get relevant reports .


2016 year Q1 Insurance Network Security Report http://www.aqniu.com/industry/15855.html

2016 year Q1 Internet financial industry network security report http://www.aqniu.com/industry/15668.html

2016 year Q1 Banking network security report http://www.aqniu.com/industry/15443.html


Please bring the original link to reprint ,thank
Similar articles

2021-07-20

2021-07-20

2021-07-20