DNP Launches Cyber Security Package for Financial Institutions

Bundles hardware, software and cyber skills training

Sep6,2016

Dai Nippon Printing Co., Ltd (DNP) is pleased to announce the September 15launch of a cyber-security package that bundles together hardware, softwareand training designed to improve the cyber security skills demanded by financialinstitutions.

[Background]

Recent years have seen a sharp increase in cyber-attacks on companies andorganizations in Japan. In concrete terms, this refers to the implanting ofmalware* on websites with security vulnerabilities that infect allusers viewing the site, and unauthorized money transfers in internet banking.And this trend has led to concerns about active cyber-attacks designed to disruptthe social order, and those targeting important infrastructure.  

It was against this backdrop that in December 2015 the Ministry of Economy,Trade and Industry (METI) drew up the Cyber-security Management Guidelines,amid expectations that corporate managers would exert leadership and promotecyber security measures. At the same time, in July 2015, the Financial ServicesAgency (FSA) released Policy Approaches to Strengthen Cyber Security in theFinancial Sector, in which the Agency requires awareness of the importance ofcyber-security management of groups including management, as a result of which,it is anticipated that security awareness will be further heightened at financialinstitution management.

Referencing developments in cyber-attack techniques at financial institutionsin recent years, DNP will commence offering a bundled menu of three selectedservices as cyber security steps required of financial institution. Each serviceis designed to have an immediate effect.

*Malware is a malicious software created with the intent of causing illegalor harmful action.

[Service Lineup]

1, Website cyber-attack package

A comprehensive service focused on illegal access to websites, which hascaused increased damage in recent years, while also tackling web site tamperingand Distributed Denial of Service (DDoS) attacks, which refers to attempts tomake online services unavailable by overwhelming them with traffic from multiplesources.

  • Illegal access countermeasures: web vulnerability diagnostic service
  • DDoS attack countermeasures: Cloud-based Web Application Firewall (WAF)
  • Website anti-tampering measures: Web-tampering detection service
  • Pricing: From 5.0 million yen

2, Targeted attack, non-specific attack and ransomware*-basedattack countermeasures

A package designed to counter attacks on in-house networks that also needguarding in a similar manner to websites. A comprehensive service focuses onmalware-driven attacks that are difficult to detect with currently availableanti-virus software.

  • Entrance/exit measures: A next generation firewall that detects andshuts down malware access from external networks and communications withexternal servers.
  • Human measures: Education and training to allow employees to take appropriatemeasures when they receive and open e-mails with pseudo random malware attachments.This will lead to a reduction in cases where employees download illegalsoftware to their computers.
  • Endpoint measures: Traps, the latest in anti-malware software, designedto detect and shut down illegal malware operations against the possibilitythat such malware bypasses the WAF, and is downloaded by company employees.
  • Pricing: From 38.0 million yen
*Ransomware is an illegal program that prevents users from accessing theirsystem, by locking the system or encrypting user files until a ransom is paid.

3, Educational and Training Practice Package

A service offering training for managers, training practice for ComputerSecurity Incident Response Team (CSIRT)* staff and comprehensiveeducation for general staff.

  • Creation of CSIRT, and CSIRT skills strengthening practice: Action ManualDevelopment assistance against incidents, necessary when creating CSIRT.Tame Range is an Israeli training system that boasts world leading cybersecurity technology. And the DNP educational and training practice packagehelps train technology experts using Tame Range practical exercises.
  • Manager training: Training to develop the necessary data security awarenessfor managers, via onsite training conducted by specialist consultant contractors,or group training at DNP.
  • Training for general staff: Onsite training conducted by specialistconsultant contractors, or via provision of e-learning teaching materials.
  • Pricing: From 10.0 million yen
* CSIRT is the acronym for Computer Security Incident Response Team, anorganization that monitors computers and networks to make sure problems do notarise. In cases where such incidents occur, CSIRT analyzes the causes and investigatesthe surrounding impact, while also taking other counter measures.

[Looking Ahead]

It is considered that in line with the penetration of internet driven openpayment services, referred to as Fintech, financial systems will face new risks.As a result, DNP will augment its service lineup of consultant services, includingoffering definitions of the information to be protected, risk assessments, andcountermeasures.

The Company aims for adoptions by 30 financial institutions, and sales of2.0 billion yen over the next three years.

 
* Product prices, specification and service contents mentioned in this newsrelease are current as of the date of publication. They may be changed at anytime without notice.

View lastest news

search

Select location
Category
Choose a subcategory and year to see relevant articles.

Search