The cyber threat against the financial sector in Denmark

The purpose of this threat assessment is to inform decision-makers and risk owners in the finance sector about the cyber threat in order to improve cyber security. 

The threat of cyber crime against the Danish financial sector is VERY HIGH. Cyber criminals launching ransomware attacks and other types of extortion attacks pose a particularly serious threat.

The threat of cyber activism against the Danish financial sector is HIGH, with DDoS attacks on websites being the most prevalent threat. However, cyber activists are also able to launch other types of cyber attacks, including hack and leak attacks.

The threat of cyber espionage against the Danish financial sector is MEDIUM. The threat level has been lowered from HIGH to MEDIUM, as the Centre for Cyber Security (CFCS) assesses that the sector is currently not a high-priority cyber espionage target. The CFCS assesses that the Danish financial sector could be targeted by foreign states if the way is paved for opportunistic attacks that require relatively few resources arises.

The threat of destructive cyber attacks against the Danish financial sector is MEDIUM. The threat level has been raised from LOW to MEDIUM because of Russia's likely increased willingness to use destructive hybrid tactics against European NATO member states. The CFCS assesses that Russia's increased risk appetite also includes destructive cyber attacks. Like other critical sectors, the financial sector could constitute a target for destructive cyber attacks.