Citrix Bleed hacks flag IT asset inventory shortfalls
To know what needs urgent patching, global banks first need to know what software they have
Senior risk executives at global banks are urging better management of IT asset inventories, to prevent cyber criminals exploiting known vulnerabilities in outdated software.
“You can’t patch what you don’t know,” says an operational risk manager at a global bank, adding that regulators are increasingly pressing banks to maintain a more centralised database of their technology. Those that have not done so “should expedite the process”.
The head of cyber risk management at a second global bank
Only users who have a paid subscription or are part of a corporate subscription are able to print or copy content.
To access these options, along with all other subscription benefits, please contact info@risk.net or view our subscription options here: http://subscriptions.risk.net/subscribe
You are currently unable to print this content. Please contact info@risk.net to find out more.
You are currently unable to copy this content. Please contact info@risk.net to find out more.
Copyright Infopro Digital Limited. All rights reserved.
As outlined in our terms and conditions, https://www.infopro-digital.com/terms-and-conditions/subscriptions/ (point 2.4), printing is limited to a single copy.
If you would like to purchase additional rights please email info@risk.net
Copyright Infopro Digital Limited. All rights reserved.
You may share this content using our article tools. As outlined in our terms and conditions, https://www.infopro-digital.com/terms-and-conditions/subscriptions/ (clause 2.4), an Authorised User may only make one copy of the materials for their own personal use. You must also comply with the restrictions in clause 2.5.
If you would like to purchase additional rights please email info@risk.net
More on Risk management
BoE warns over risk of system-wide cyber attack
Senior policy official Carolyn Wilkins also expresses concern over global fragmentation of bank regulation
Treasury clearing timeline ‘too aggressive’ says BofA rates head
Sifma gears up for extension talks with incoming SEC and Treasury officials
Strengthening technology resilience and risk controls against multidomain disruption
The consequences of multidomain disruption and best practice strategies to enhance digital resilience
Op risk data: Mastercard schooled in £200m class action
Also: Mitsubishi copper crunch, TD tops 2024 op risk loss table. Data by ORX News
Diversification of LDI liquidity buffers sparks debate
Funds using credit assets to top up collateral waterfall, but some risk managers are sceptical
Transforming stress-testing with AI
Firms can update their stress-testing capability by harnessing automated scenario generation, says fintech advocate
Basel stops short on wrong-way risk
New guidelines a step in right direction, but experts warn they won’t prevent another Archegos
On resilience risk, banks prepare to let the bad times roll
Lenders bolster first-line teams and upskill boards as compliance with new rules bites
