BIS published a bulletin, or a note, that examines the cyber threat landscape in the context of the pandemic and discusses policies to reduce risks to financial stability. The financial sector has been hit relatively more often by cyber-attacks than most other sectors since the pandemic started. Payment firms, insurers, and credit unions have been especially affected. While this has not yet led to significant disruptions or a systemic impact, substantial cyber risks exist for financial institutions, their staff, and their customers going forward. Financial authorities are working to mitigate cyber risks, including through international cooperation.
The BIS Bulletin emphasizes that policy must consider two near-term trends. First, remote work is likely to remain higher than in the pre-COVID-19 period. Second, financial institutions are likely to continue to move parts of their IT operations to public cloud environments. As the market for cloud services is highly concentrated, there are warnings about increased homogeneity in the financial sector and single points of failure. A recent survey indicates that 82% of companies increased cloud usage as a result of the COVID-19 pandemic and 91% are planning a more strategic use of cloud in the near future. Through shared software, hardware, and vendors, incidents could, in principle, spread more quickly, leading to higher losses for financial institutions and stress in the financial system.
Policymakers and businesses are actively working together to mitigate cyber risks and their systemic implications. For instance, many private- and public-sector organizations are strengthening their operational resilience and many have engaged in “war games” or simulations of cyber-attacks. These exercises can help to identify vulnerabilities and enhance preparedness and lines of communication. Moreover, financial supervisors and overseers are leveraging national or international standards and guidance to promote cyber resilience. In addition to the global initiatives, several regional groups and cooperation forums are also working to address this challenge.
Keywords: International, Banking, Insurance, Securities, COVID-19, Cyber Risk, Systemic Risk, Cloud Computing, BIS
Leading economist; commercial real estate; performance forecasting, econometric infrastructure; data modeling; credit risk modeling; portfolio assessment; custom commercial real estate analysis; thought leader.
Previous ArticleCentral Bank of Ireland Consults on Treatment of Discretions in IFR
Next ArticleCBM Amends Directive on Loan Moratoria Amid Pandemic
PRA proposed rules (in CP12/21) for the application of existing consolidated prudential requirements to financial holding companies and mixed financial holding companies that have been approved or designated in accordance with Part 12B of the Financial Services and Markets Act 2000 (FSMA).
ECB Banking Supervision announced that euro area banks it directly supervises may continue to exclude certain central bank exposures from the leverage ratio until March 2022.
OSFI decided to increase the Domestic Stability Buffer from 1.00% to 2.50% of total risk-weighted assets, with effect from October 31, 2021.
HKMA is requesting banks to participate in a tech baseline assessment, which forms part of the HKMA Fintech 2025 strategy.
OSFI published two documents to consult on the management of operational risk capital data for institutions required, or for those applying, to use the Basel III standardized approach for operational risk capital in Canada.
The NGFS Study Group on Biodiversity and Financial Stability published a Vision paper exploring the case for action in addressing the financial stability concerns arising from biodiversity loss.
ACPR published the final version of CREDITIMMO 2.3.0 taxonomy for the decree of October 31, 2021.
EC, has approved, under the EU State Aid rules, the fourth prolongation of the Italian guarantee scheme to facilitate the securitization of non-performing loans.
ECB published Guideline 2021/975, which amends Guideline ECB/2014/31, on the additional temporary measures relating to Eurosystem refinancing operations and eligibility of collateral.
EIOPA published a report, from the Consultative Expert Group on Digital Ethics, that sets out artificial intelligence governance principles for an ethical and trustworthy artificial intelligence in the insurance sector in EU.