22 August 2017
visit www.avoka.com

Consumer trust in banking security misplaced - Capgemini

03 February 2017  |  9647 views  |  5 Security/Risk

Research from Capgemini highlights a striking dichotomy between the views of consumers and banking insiders about levels of security in financial services.

The study of 7600 consumers and over 180 senior data privacy and security professionals from banking and insurance firms from eight countries emphasises the gap between the level of trust placed in banks by the public and the reality.

While banks and insurers enjoy a significantly higher level of trust from consumers in the cybersecurity of their systems (83%) than any other sector, industry insiders expressed a contrary view. Just one in five banking executives (21%) are highly confident in their ability to detect a breach, let alone defend against it.

Mike Turner, global cybersecurity chief operating officer at Capgemini, said: “Consumers implicitly trust banks with their money and data, but this faith is rooted in a mistaken belief their provider can be 100% secure. While banks are evolving to combat the sophisticated threat cybercriminals pose, public understanding of the threats and challenges remains low.”

Upcoming EU legislation requiring companies to disclose data breaches within 72 hours are likely to upset the rose-tinted perspective of consumers about fortress banking.

This is alarming, as fully 65% of consumers view trust in data privacy and security as an extremely significant factor when choosing their bank and three quarters says they would switch their provider in the event of a data breach.

The gap in perception is amplified by the finding that only three percent of consumers believe their own bank has been breached, although one in four of the institutions surveyed admitted to having been the victim of a hack.

Zhiwei Jiang, global head of financial services, insights & data at Capgemini, notes that consumers appear to instinctively trust banks and insurers without strong reason.

“When GDPR (General Data Protection Regulation) is introduced and all breaches are likely to be made public soon after they occur, many people will be in for a surprise,” he says.

Comments: (5)

Piers Grundy
Piers Grundy - IBM - London | 03 February, 2017, 14:46 Do you have a link to the Cap research, upon which your article is based, please?
Be the first to give this comment the thumbs up 0 thumb ups! (Log in to thumb up)
Piers Grundy
Piers Grundy - IBM - London | 03 February, 2017, 15:26 S'okay, found it myself :-) https://www.capgemini.com/sites/default/files/just_one_in_five_banks_and_insurers_confident_they_could_detect_a_cybersecurity-breach.pdf
1 thumb up! 1 thumb up! (Log in to thumb up)
John Gunn
John Gunn - VASCO - Chicago | 03 February, 2017, 17:16

I diagree with the report's conclusions. Consumer confidence in their banks is truly well justified. Banks spend far more on security than any other industry segment. The largest losses at banks are not from breaches but from account takeover, transaction tampering, and call-center and ATM fraud that is the result of phishing attacks, social engineering, and malware. New security measures that include biometric and behavioral authentication, and real-time risk analysis to identify fraud are proving increasingly effective at stopping these types of attacks.  

And, the idea that the adoption of GDPR will result in the prompt disclosure of data breaches is a fallacy. It took Yahoo years to discover that they had been breached. At that point, what difference does 3 days or 3 months make in disclosure.

 

Be the first to give this comment the thumbs up 0 thumb ups! (Log in to thumb up)
Jean Kaady
Jean Kaady - MySmartContact.com - Beirut | 03 February, 2017, 18:26

Still where would you stash your money if not in a bank? .... Nowhere else; no options out there. Instead of security, let's try "trust". Trust might be the only major asset of any regulated traditional bank. People go to the bank first and foremost for trust and then go the ad-hoc digital or else gadgets/promotions. Worth it reminding that trust in banking emanates not from complex security processes but from regulator assurance of protecting your valuables in the bank.

During my preaching of mobile wallet capability (www.hey-pay.me) to banks, I always put forth "Reinstating banking to banks" since there is no trustful regulated/sponsored alternative.

Be the first to give this comment the thumbs up 0 thumb ups! (Log in to thumb up)
Piers Grundy
Piers Grundy - IBM - London | 04 February, 2017, 00:49 Very genuinely, and very respectfully Mr Gunn (when people say that, they typically mean "...with no respect...", but I really do mean it with respect), Mr Kaady's opening statement is valid. It's not subjective. In the 21st century you can't stash cash under the mattress. And to say that the biggest intrusions occur from <> is academic to me, my mum & dad and to my postman. I don't 'expect' my money to be secure, because I am under an almost legal obligation to place cash or a monthly pay cheque in a bank. Ergo : it IS safe. If any bank says I'm "...gambling by placing my money with them...", but their odds are better than the bank next door, that's simply not good enough. If it's not 100% safe, I've been tricked - or to use the English vernacular: sh*fted. I learn lots from people such as yourself who are far better qualified than me, but please - don't discredit yourself and other experts by saying that biometric tech that has been available to banks for a decade or more, and was rejected by FIs on the basis that it's "expensive", is now adding security. That's like the "...correct 52% of the time..." argument. I mean no offence, but I found your post bank-apologetic in the extreme.
2 thumb ups! 2 thumb ups! (Log in to thumb up)
Comment on this story (membership required)

Finextra news in your inbox

For Finextra's free daily newsletter, breaking news flashes and weekly jobs board: sign up now

Related stories

Number of US data breaches jumps 40% in 2016

Number of US data breaches jumps 40% in 2016

20 January 2017  |  7652 views  |  0 comments | 7 tweets | 18 linkedin
Professor predicts 'major bank will fail' from cyber attack in 2017

Professor predicts 'major bank will fail' from cyber attack in 2017

06 January 2017  |  21669 views  |  0 comments | 28 tweets | 38 linkedin
Cloned card cash-out operation touted as possible Tesco Bank breach explanation

Cloned card cash-out operation touted as possible Tesco Bank breach explanation

17 November 2016  |  8436 views  |  3 comments | 6 tweets | 13 linkedin
Cyber risk beats out Donald Trump as FS industry's top concern

Cyber risk beats out Donald Trump as FS industry's top concern

08 November 2016  |  6063 views  |  0 comments | 14 tweets | 13 linkedin
Bank of England officials watch as cyber attack unfolds

Bank of England officials watch as cyber attack unfolds

03 November 2016  |  10924 views  |  1 comments | 15 tweets | 15 linkedin
New EU rules could cost UK firms &#163;122bn in cybersecurity fines - PCI SSC

New EU rules could cost UK firms £122bn in cybersecurity fines - PCI SSC

17 October 2016  |  20428 views  |  4 comments | 32 tweets | 40 linkedin

Related company news

 

Related blogs

Create a blog about this story (membership required)
download the paper nowvisit www.worldpaymentsreport.comvisit www.niceactimize.com

Who is commenting?

A Finextra member Finextra Member Commented on: Real-time payments in...
A Finextra member Finextra Member Commented on: Barclays uses sensors...

Top topics

Most viewed Most shared
Mobile contactless spending accelerating in UKMobile contactless spending accelerating i...
11676 views comments | 26 tweets | 23 linkedin
Barclays pairs banking data with third party apps for SmartBusiness DashboardBarclays pairs banking data with third par...
10046 views comments | 22 tweets | 31 linkedin
hands typing furiouslyWhy Is Risk Analytics Important?
9734 views 0 | 5 tweets | 1 linkedin
Norwegian banks and startups form fintech clusterNorwegian banks and startups form fintech...
9444 views comments | 19 tweets | 23 linkedin
RBS to bring Silicon Valley to EdinburghRBS to bring Silicon Valley to Edinburgh
9423 views comments | 10 tweets | 8 linkedin

Featured job

Find your next job