The Financial Supervisory Service announced on the 3rd that it will conduct blind simulated hacking training aimed at the entire financial sector in conjunction with the Financial Security Institute from the 4th to the end of October.
The blind simulated hacking training will be conducted without prior notice of the attack date or target, assessing the hacking detection and defense systems of financial companies. This year, considering that hacking and other breach incidents have been occurring continuously in and out of the financial sector, the training will be intensified to further strengthen the cyber threat preparedness of financial companies.
Previously, simulated hacking training was conducted for banks, securities, insurance, and card companies, but this year, capital, savings banks, mutual finance, and electronic financial businesses have also been included. The intensity of the training has been increased. The FSS will conduct on-site training for financial companies that use external access infrastructure, where breach incidents have frequently occurred. An FSS official noted, "During the on-site training, we will meticulously check whether to allow vulnerable network ports to the outside, the vulnerability measures regarding the settings of the external access infrastructure's administrators, and the adequacy of security updates."
Through this training, the FSS will assess financial companies' detection and defense capabilities against external intrusions and, if necessary, disseminate key information to the financial sector to improve response procedures.