The research was carried out using our WebTotem solution and aims to assess the security of official websites of banks in Kazakhstan and to make a rating.
The assessment methodology developed and applied by us takes into account the best world practices, recommendations of recognized software developers, and professional communities, as well as the most commonly used standards. The scope of this study does not include Internet banking services. Security assessment was carried out without interfering with the work of organizations, the analysis was carried out by collecting publicly available information.
The research, consisting of 23 pages, reflects in detail the state of security of web resources of all banks in Kazakhstan at the time of analysis and its presentation at the summit of top managers of the financial market CFO Summit 2020 on February 28, 2020.
We concluded that many banks neglect even the simplest and most common security recommendations. Unfortunately, this increases their attractiveness to attackers and increases the chances of a successful attack.
The full report is available at (in Russian): https://wtotem.com/files/reports/kz_banks2020.pdf
P.S. Now we are preparing a similar report for EU banks