Singaporean regulator reiterates concerns about cyber security of financial institutions

Maria Nikolova

Financial services providers are encouraged to implement measures to secure data stored on the cloud and their network connections to the cloud service provider.

The Cyber Security Advisory Panel (CSAP) of the Monetary Authority of Singapore (MAS) has reiterated concerns about cyber resilience of financial services providers and has made clear some expectations that it has about these companies with regard to their cyber security.

Singapore’s financial institutions (FIs) are increasingly using public cloud services for cost savings, system scalability, and speed to market. CSAP members suggest that small and medium sized FIs, given their limited resources and capabilities, can improve their cybersecurity by using reputable cloud solution providers that have strong cybersecurity capabilities. There is no clarification, however, on how a small financial business can actually afford itself to use the services of reputable cloud solution provider.

CSAP members also acknowledge there are concentration risks stemming from a growing number of financial services relying on a limited pool of cloud service providers. For that matter, FIs are expected to implement measures to secure data stored on the cloud and their network connections to the cloud service provider. Members also said that cloud service providers should provide greater transparency to their customers on how they implement security measures to protect their systems and information.

FIs are actively making their APIs available to third parties such as service providers and business partners to enrich the quality and customization of their financial services. As APIs expose FIs to higher risks of cyber threat, CSAP members proposed measures which FIs may adopt when embarking on their open API journey. These measures include performing risk assessment of the third parties using their APIs and monitoring activities related to API services for suspicious events.

Talking of cyber security, let’s recall that last month MAS opened consultation on measures to strengthen cyber resilience of financial institutions. There are still a couple of days left to submit comments on the proposals.

Under the proposals, FIs will be required to implement six cyber security measures:

  • address system security flaws in a timely manner;
  • establish and implement robust security for systems;
  • deploy security devices to secure system connections;
  • install anti-virus software to mitigate the risk of malware infection;
  • restrict the use of system administrator accounts that can modify system configurations; and
  • strengthen user authentication for system administrator accounts on critical systems.

The consultation closes on October 5, 2018.

Read this next

Digital Assets

SEC seeks $5.3 billion fine for Terraform and co-founder Do Kwon

Federal regulators are pursuing a fine of $5.3 billion against Terraform Labs and its co-founder Do Kwon for defrauding investors, following a recent verdict that found them liable for a multi-billion-dollar fraud.

Digital Assets

El Salvador’s Bitcoin wallet hacked by CiberInteligenciaSV

El Salvador’s official Bitcoin wallet, Chivo, has faced another security setback as the hacker group CiberInteligenciaSV released parts of the wallet’s source code on the black hat hacking forum BreachForums.

blockdag

BlockDAG’s $19.8M Presale & Moon Keynote Teaser Place It Above KANG, SOL, & ARB as the Top Crypto Investment in 2024

Uncover the success behind BlockDAG’s $19.8M presale and learn what’s making it a more compelling investment than KangaMoon, Solana, and Arbitrum.

Fintech

Revolut to share user interactions data with ad agencies

Fintech giant Revolut is exploring new revenue streams by planning to share customer data with advertising partners.

Chainwire

Zircuit Staking Soars Past $2B TVL In Only 2 Months

Zircuit, a ZK rollup with parallelized circuits and AI-enabled security, today announced that its staking program has soared past $2B in TVL in only 2 months. 

Retail FX

PrimeXBT joins Financial Commission’s membership roster

The Financial Commission, an independent external dispute resolution (EDR) body, today announced the addition of cryptocurrency trading firm PrimeXBT as its latest member effective March 6, 2024.

Digital Assets

Ripple wants to reduce SEC’s $2 billion penalty to $10 million

Ripple Labs has responded to the U.S. Securities and Exchange Commission’s (SEC) recent demand for $2 billion in penalties, arguing that the amount should be substantially reduced to $10 million. The legal stance was disclosed in a court document filed late Monday.

blockdag

Analysts Go Bullish On BlockDAG After Its Surge to $0.005 And Unique Developer Platform That Goes Beyond Ethereum & BONK

Discover how BlockDAG’s unique low-code and no-code platforms offer more adaptability than Ethereum’s bull run and BONK’s fluctuating prices.

Tech and Fundamental, Technical Analysis

WTI crude oil Technical Analysis Report 23 April, 2024

WTI crude oil can be expected to rise further toward the next major resistance level 86.00, which has been reversing the price from October.

<