Besides that, financial institutions should be concerned about malicious bots. APJ is the second-most targeted region for malicious bot requests against financial services, accounting for 39.7% of all malicious bot requests worldwide.
The financial services sector in Asia Pacific and Japan (APJ) continues to be one of the most attacked industries in the world. It saw a 36% increase in web application and API (application programming interface) attacks from Q2 2022 to Q2 2023, amounting to over 3.7 billion attacks.
The High Stakes of Innovation: Attack Trends in Financial Services report by Akamai also reveals that Local File Inclusion (LFI) remains the top attack vector, and that 92% of attacks against APJ’s finance sector were targeted at banks. LFI attacks exploit insecure coding practices or actual vulnerabilities on a web server to execute code remotely or gain access to sensitive information stored locally. Older web servers based on PHP (Hypertext Preprocessor), for example, are more vulnerable to LFI attacks due to existing methods of bypassing its input filters.
