50,000 visits to SWIFT ISAC since its launch.
Information sharing is vitally important in helping the financial services industry to better defend itself against potential future cyberattacks.
Since mid-2016, SWIFT has been busy building a unique information sharing initiative with truly global reach in the financial industry. We have established a dedicated Customer Security Intelligence (CSI) team and introduced a ‘SWIFT ISAC’ information sharing portal to share technical intelligence with the community.
Focused on customer security forensics and analysis, the CSI team undertakes investigations of potential threats and customer security incidents. If the team identifies new attack patterns, techniques or other information that can help customers protect against cyberattacks, they publish anonymised detailed security bulletins, informing customers of related indicators.
This information has already made a tangible difference in the fight against cyberattacks. By feeding back this intelligence in anonymised form to the wider community, sharing it with anti-virus vendors and other cyber security specialists, SWIFT has successfully helped customers on multiple continents both to prevent and to detect attempted frauds.
The work also informs our security guidance and security updates and, as we release updates to our software, it helps us to build in critical new measures to provide greater protection and security to counter the evolving set of tactics and techniques. This is all provided at no additional cost to our customers.
The technical information sharing between SWIFT and Symantec continues to result in enhanced protection for our mutual customers. Blocking malicious files is the core objective at Symantec, and the information acquired through SWIFT ISAC is and has been, vital to defending against custom malware targeting our financial customers.
The SWIFT ISAC now allows the automated exchange of information relating to cyber threats, using industry standard formats (STIX/TAXII). Customers can also subscribe to the Security Notifications to ensure they receive immediate alerts when new information is published.
If you are interested in subscribing to the automated flow, please refer to the SWIFT ISAC bulletin 10073. You can also request further information from your SWIFT Relationship Manager or 24/7 SWIFT Support.