Bank of England sends in hackers to test lenders’ defences

 

EConomics Editor

The Bank of England is to let hackers loose on Britain’s biggest banks to test their defences against cyber-attacks.

Under the Bank’s new framework, known as CBEST, hackers working for private security firms will identify the vulnerabilities of individual institutions, and replicate the methods of malicious attackers.

The Bank said its simulation would be superior to the digital security checks currently used by financial firms because it would be based on real threat intelligence and focus on the more sophisticated potential attacks on systems.

The move follows last year’s recommendation from the Bank’s Financial Policy Committee to beef up the resilience of the financial system to malicious hacking and cyber-crime.

Andrew Gracie, the Bank’s executive director of resolution, unveiled the new framework at the British Bankers’ Association cyber conference. “The idea of CBEST is to bring together the best available threat intelligence from government and elsewhere, tailored to the business model and operations of individual firms, to be delivered in live tests, within a controlled testing environment,” he said.

“Unlike physical attacks which are localised, these attacks are international and know no boundaries. Cyber defence, as a result, has become not a matter of designing a hard perimeter that can repel attacks but detecting where networks have been penetrated and responding effectively.”

The results, including the extent of the access the licensed hackers gain and the damage they could potentially cause, will be shared with both the individual banks and the Prudential Regulation Authority.

“The results should provide a direct read-out on a firm’s capability to withstand cyber-attacks which – on the basis of current intelligence – have the most potential, combining probability and impact, to have an adverse impact on financial stability” Mr Gracie said.

The industry will not be forced to take part but the Bank, which unveiled CBEST unofficially two weeks ago, has seen strong interest from financial institutions. It will cost a bank about £100,000 to have its systems tested under the new regime, which cost about £200,000 to develop.

The internet security giant McAfee has estimated the global cost of cyber-crime at £266bn. In December, the Royal Bank of Scotland said its platform was briefly attacked by hackers, causing problems for customers trying to get access to their accounts.

The Bank expects to have 18 testing companies and nine intelligence firms accredited to carry out the tests after working with the Council for Registered Ethical Security Testers and the intelligence firm Digital Shadows to develop new industry  standards.

The Bank told City firms in February they needed to act more quickly and report to regulators in more detail if they became subject to cyber-attacks from criminal gangs or terrorists. The warning followed a three-day exercise, Waking Shark II, which simulated an attack on the City.

Start your day with The Independent, sign up for daily news emails
Latest stories from i100
Have you tried new the Independent Digital Edition apps?
Independent Dating
and  

By clicking 'Search' you
are agreeing to our
Terms of Use.

iJobs Job Widget
iJobs Money & Business

Recruitment Genius: Customer Service Advisor

£15000 - £16000 per annum: Recruitment Genius: A Customer Service Advisor is r...

Ashdown Group: Trainee Consultant - Surrey / South West London

£22000 per annum + pension,bonus,career progression: Ashdown Group: An establi...

SThree: HR Benefits Manager

£40000 - £50000 per annum + pro rata: SThree: SThree Group have been well esta...

Recruitment Genius: Office Manager / Financial Services

£30000 - £37000 per annum: Recruitment Genius: Established in 1999, a highly r...

Day In a Page

The difference between America and Israel? There isn’t one

The difference between America and Israel? There isn’t one

Netanyahu knows he can get away with anything in America, says Robert Fisk
Families clubbing together to build their own affordable accommodation

Do It Yourself approach to securing a new house

Community land trusts marking a new trend for taking the initiative away from developers
Head of WWF UK: We didn’t send Cameron to the Arctic to see green ideas freeze

David Nussbaum: We didn’t send Cameron to the Arctic to see green ideas freeze

The head of WWF UK remains sanguine despite the Government’s failure to live up to its pledges on the environment
Author Kazuo Ishiguro on being inspired by shoot-outs and samurai

Author Kazuo Ishiguro on being inspired by shoot-outs and samurai

Set in a mythologised 5th-century Britain, ‘The Buried Giant’ is a strange beast
With money, corruption and drugs, this monk fears Buddhism in Thailand is a ‘poisoned fruit’

Money, corruption and drugs

The monk who fears Buddhism in Thailand is a ‘poisoned fruit’
America's first slavery museum established at Django Unchained plantation - 150 years after slavery outlawed

150 years after it was outlawed...

... America's first slavery museum is established in Louisiana
Kelly Clarkson: How I snubbed Simon Cowell and become a Grammy-winning superstar

Kelly Clarkson: How I snubbed Simon Cowell and become a Grammy-winning superstar

The first 'American Idol' winner on how she manages to remain her own woman – Jane Austen fascination and all
Tony Oursler on exploring our uneasy relationship with technology with his new show

You won't believe your eyes

Tony Oursler's new show explores our uneasy relationship with technology. He's one of a growing number of artists with that preoccupation
Ian Herbert: Peter Moores must go. He should never have been brought back to fail again

Moores must go. He should never have been brought back to fail again

The England coach leaves players to find solutions - which makes you wonder where he adds value, says Ian Herbert
War with Isis: Fears that the looming battle for Mosul will unleash 'a million refugees'

The battle for Mosul will unleash 'a million refugees'

Aid agencies prepare for vast exodus following planned Iraqi offensive against the Isis-held city, reports Patrick Cockburn
Yvette Cooper: We can't lose the election. There's too much on the line

Yvette Cooper: We can't lose the election. There's too much on the line

The shadow Home Secretary on fighting radical Islam, protecting children, and why anyone in Labour who's thinking beyond May must 'sort themselves out'
A bad week for the Greens: Leader Natalie Bennett's 'car crash' radio interview is followed by Brighton council's failure to set a budget due to infighting

It's not easy being Green

After a bad week in which its leader had a public meltdown and its only city council couldn't agree on a budget vote, what next for the alternative party? It's over to Caroline Lucas to find out
Gorillas nearly missed: BBC producers didn't want to broadcast Sir David Attenborough's famed Rwandan encounter

Gorillas nearly missed

BBC producers didn't want to broadcast Sir David Attenborough's famed Rwandan encounter
Downton Abbey effect sees impoverished Italian nobles inspired to open their doors to paying guests for up to €650 a night

The Downton Abbey effect

Impoverished Italian nobles are opening their doors to paying guests, inspired by the TV drama
China's wild panda numbers have increased by 17% since 2003, new census reveals

China's wild panda numbers on the up

New census reveals 17% since 2003