Author: 
Taylor Armerding, CSO
networkworld.com
Thursday, September 20, 2012

The evolution of cybercrime continues: The preferred target in the financial industry is moving from the bank customer to the employee.

Corporate cybercrime costs skyrocket

That is according to the FBI, which issued a warning earlier this week that the latest trend by cybercriminals is to get employee login credentials, using spam and phishing e-mails, keystroke loggers, and Remote Access Trojans (RAT).

And the best way to fight it? That leads to the ongoing debate over training vs. technology. While most security experts say both are necessary, and the FBI provides a list of training recommendations and policy protocols to keep employees from giving up the keys to the financial kingdom, some experts like George Tubin, senior security strategist for Trusteer, say improved technology is the only effective solution.

"Part of the solution is training," he said. "But we've been talking about this for so long, trying to educate customers and employees. It has become one of those battles I don't think we're going to win."