Bank of England sends in hackers to test lenders’ defences

 

EConomics Editor

The Bank of England is to let hackers loose on Britain’s biggest banks to test their defences against cyber-attacks.

Under the Bank’s new framework, known as CBEST, hackers working for private security firms will identify the vulnerabilities of individual institutions, and replicate the methods of malicious attackers.

The Bank said its simulation would be superior to the digital security checks currently used by financial firms because it would be based on real threat intelligence and focus on the more sophisticated potential attacks on systems.

The move follows last year’s recommendation from the Bank’s Financial Policy Committee to beef up the resilience of the financial system to malicious hacking and cyber-crime.

Andrew Gracie, the Bank’s executive director of resolution, unveiled the new framework at the British Bankers’ Association cyber conference. “The idea of CBEST is to bring together the best available threat intelligence from government and elsewhere, tailored to the business model and operations of individual firms, to be delivered in live tests, within a controlled testing environment,” he said.

“Unlike physical attacks which are localised, these attacks are international and know no boundaries. Cyber defence, as a result, has become not a matter of designing a hard perimeter that can repel attacks but detecting where networks have been penetrated and responding effectively.”

The results, including the extent of the access the licensed hackers gain and the damage they could potentially cause, will be shared with both the individual banks and the Prudential Regulation Authority.

“The results should provide a direct read-out on a firm’s capability to withstand cyber-attacks which – on the basis of current intelligence – have the most potential, combining probability and impact, to have an adverse impact on financial stability” Mr Gracie said.

The industry will not be forced to take part but the Bank, which unveiled CBEST unofficially two weeks ago, has seen strong interest from financial institutions. It will cost a bank about £100,000 to have its systems tested under the new regime, which cost about £200,000 to develop.

The internet security giant McAfee has estimated the global cost of cyber-crime at £266bn. In December, the Royal Bank of Scotland said its platform was briefly attacked by hackers, causing problems for customers trying to get access to their accounts.

The Bank expects to have 18 testing companies and nine intelligence firms accredited to carry out the tests after working with the Council for Registered Ethical Security Testers and the intelligence firm Digital Shadows to develop new industry  standards.

The Bank told City firms in February they needed to act more quickly and report to regulators in more detail if they became subject to cyber-attacks from criminal gangs or terrorists. The warning followed a three-day exercise, Waking Shark II, which simulated an attack on the City.

Start your day with The Independent, sign up for daily news emails
News
The two faces revealed by the ultraviolet light
newsScholars left shaken after shining ultraviolet light on 500-year-old Welsh manuscript
News
Rosamund Pike played Bond girld Miranda Frost, who died in Die Another Day (PA)
news
Arts and Entertainment
books
News
newsHow do you get your party leader to embrace a message and then stick to it? With people like this
ebooks
ebooksA special investigation by Andy McSmith
  • Get to the point
Latest stories from i100
Have you tried new the Independent Digital Edition apps?
Independent Dating
and  

By clicking 'Search' you
are agreeing to our
Terms of Use.

iJobs Job Widget
iJobs Money & Business

Ashdown Group: Marketing Manager - B2B, Corporate - City, London

£45000 - £50000 per annum + benefits : Ashdown Group: A highly successful, glo...

Neil Pavier: Commercial Analyst

£50,000 - £55,000: Neil Pavier: Are you a professionally qualified commercial ...

Loren Hughes: Financial Accountant

£45,000 - £55,000: Loren Hughes: Are you looking for a new opportunity that wi...

Sheridan Maine: Finance Analyst

Circa £45,000-£50,000 + benefits: Sheridan Maine: Are you a newly qualified ac...

Day In a Page

General Election 2015: The masterminds behind the scenes

The masterminds behind the election

How do you get your party leader to embrace a message and then stick to it? By employing these people
Machine Gun America: The amusement park where teenagers go to shoot a huge range of automatic weapons

Machine Gun America

The amusement park where teenagers go to shoot a huge range of automatic weapons
The ethics of pet food: Why are we are so selective in how we show animals our love?

The ethics of pet food

Why are we are so selective in how we show animals our love?
How Tansy Davies turned 9/11 into her opera 'Between Worlds'

How a composer turned 9/11 into her opera 'Between Worlds'

Tansy Davies makes her operatic debut with a work about the attack on the Twin Towers. Despite the topic, she says it is a life-affirming piece
11 best bedside tables

11 best bedside tables

It could be the first thing you see in the morning, so make it work for you. We find night stands, tables and cabinets to wake up to
Italy vs England player ratings: Did Andros Townsend's goal see him beat Harry Kane and Wayne Rooney to top marks?

Italy vs England player ratings

Did Townsend's goal see him beat Kane and Rooney to top marks?
Danny Higginbotham: An underdog's tale of making the most of it

An underdog's tale of making the most of it

Danny Higginbotham on being let go by Manchester United, annoying Gordon Strachan, utilising his talents to the full at Stoke and plunging into the world of analysis
Audley Harrison's abusers forget the debt he's due, but Errol Christie will always remember what he owes the police

Steve Bunce: Inside Boxing

Audley Harrison's abusers forget the debt he's due, but Errol Christie will always remember what he owes the police
No postcode? No vote

Floating voters

How living on a houseboat meant I didn't officially 'exist'
Louis Theroux's affable Englishman routine begins to wear thin

By Reason of Insanity

Louis Theroux's affable Englishman routine begins to wear thin
Power dressing is back – but no shoulderpads!

Power dressing is back

But banish all thoughts of Eighties shoulderpads
Spanish stone-age cave paintings 'under threat' after being re-opened to the public

Spanish stone-age cave paintings in Altamira 'under threat'

Caves were re-opened to the public
'I was the bookies’ favourite to be first to leave the Cabinet'

Vince Cable interview

'I was the bookies’ favourite to be first to leave the Cabinet'
Election 2015: How many of the Government's coalition agreement promises have been kept?

Promises, promises

But how many coalition agreement pledges have been kept?
The Gaza fisherman who built his own reef - and was shot dead there by an Israeli gunboat

The death of a Gaza fisherman

He built his own reef, and was fatally shot there by an Israeli gunboat