IDEAS home Printed from https://ideas.repec.org/a/pal/risman/v25y2023i4d10.1057_s41283-023-00130-4.html
   My bibliography  Save this article

Zero-day and zero-click attacks on digital banking: a comprehensive review of double trouble

Author

Listed:
  • Kausar Yasmeen

    (University of Nizwa)

  • Muhammad Adnan

    (LINCOLN University College)

Abstract

The media has consistently covered the far-reaching consequences of Zero-Click and Zero-Day attacks on digital banking, which have resulted in widespread disruption. Despite this, there is a noticeable lack of scientific research conducted on this subject. This review aims to provide a modest yet significant contribution to understanding Zero-Click and Zero-Day attacks on digital banking. To achieve this objective, this study employs a comprehensive methodology that incorporates a multitude of scholarly sources. These include articles, review articles, books, and whitepapers published up until 2023. The aim is to develop a theoretical framework for preventing zero-click attacks with zero-day vulnerabilities. The research findings suggest that the combination of a zero-click attack, and zero-day vulnerabilities poses a significant challenge for banks in detecting such attacks. This, in turn, increases the hacker’s chances of success. Based on the literature review, this study has formulated a framework with the potential to minimize the likelihood of zero-click and zero-day attacks on digital transactions. The uniqueness of this review paper lies in its in-depth analysis of scholarly sources and the development of a theoretical framework to prevent Zero-Click and Zero-Day attacks on digital banking. The potential implementation of this framework could significantly improve the security of digital transactions by reducing the probability of these types of attacks.

Suggested Citation

  • Kausar Yasmeen & Muhammad Adnan, 2023. "Zero-day and zero-click attacks on digital banking: a comprehensive review of double trouble," Risk Management, Palgrave Macmillan, vol. 25(4), pages 1-24, December.
    • Handle: RePEc:pal:risman:v:25:y:2023:i:4:d:10.1057_s41283-023-00130-4
    DOI: 10.1057/s41283-023-00130-4
    as

    Download full text from publisher

    File URL: http://link.springer.com/10.1057/s41283-023-00130-4
    File Function: Abstract
    Download Restriction: Access to the full text of the articles in this series is restricted.
    File URL: https://libkey.io/10.1057/s41283-023-00130-4?utm_source=ideas
    LibKey link: if access is restricted and if your library uses this service, LibKey will redirect you to where you can use your library subscription to access this item
    ---><---

    As the access to this document is restricted, you may want to search for a different version of it.

    References listed on IDEAS

    as
    1. Rana Alabdan, 2020. "Phishing Attacks Survey: Types, Vectors, and Technical Approaches," Future Internet, MDPI, vol. 12(10), pages 1-37, September.
    2. Arjan Reurink, 2018. "Financial Fraud: A Literature Review," Journal of Economic Surveys, Wiley Blackwell, vol. 32(5), pages 1292-1325, December.
    3. Khakan Najaf & Md Imtiaz Mostafiz & Rabia Najaf, 2021. "Fintech firms and banks sustainability: Why cybersecurity risk matters?," International Journal of Financial Engineering (IJFE), World Scientific Publishing Co. Pte. Ltd., vol. 8(02), pages 1-14, June.
    4. Md. Hamid Uddin & Md. Hakim Ali & Mohammad Kabir Hassan, 2020. "Cybersecurity hazards and financial system vulnerability: a synthesis of literature," Risk Management, Palgrave Macmillan, vol. 22(4), pages 239-309, December.
    5. Bressolles, Grégory & Durrieu, François & Senecal, Sylvain, 2014. "A consumer typology based on e-service quality and e-satisfaction," Journal of Retailing and Consumer Services, Elsevier, vol. 21(6), pages 889-896.
    Full references (including those not matched with items on IDEAS)

    Most related items

    These are the items that most often cite the same works as this one and are cited by the same works as this one.
    1. Joakim Kävrestad & Allex Hagberg & Marcus Nohlberg & Jana Rambusch & Robert Roos & Steven Furnell, 2022. "Evaluation of Contextual and Game-Based Training for Phishing Detection," Future Internet, MDPI, vol. 14(4), pages 1-16, March.
    2. Muhammad Waqas & Alishba Hania & Farzan Yahya & Iqra Malik, 2023. "Enhancing Cybersecurity: The Crucial Role of Self-Regulation, Information Processing, and Financial Knowledge in Combating Phishing Attacks," SAGE Open, , vol. 13(4), pages 21582440231, December.
    3. Md. Khaled Bin Amir & Md. Zobayer Bin Amir & Mohammad Ariful Islam, 2022. "Phenomenon of bank scams in Bangladesh: Analysis on behavioral issues," International Journal of Research in Business and Social Science (2147-4478), Center for the Strategic Studies in Business and Finance, vol. 11(7), pages 189-200, October.
    4. Uddin, Md Hamid & Mollah, Sabur & Islam, Nazrul & Ali, Md Hakim, 2023. "Does digital transformation matter for operational risk exposure?," Technological Forecasting and Social Change, Elsevier, vol. 197(C).
    5. Chiang, Ai-Hsuan & Trimi, Silvana & Lo, Yu-Ju, 2022. "Emotion and service quality of anthropomorphic robots," Technological Forecasting and Social Change, Elsevier, vol. 177(C).
    6. Jin, Justin & Li, Na & Liu, Suyi & Khalid Nainar, S.M., 2023. "Cyber attacks, discretionary loan loss provisions, and banks’ earnings management," Finance Research Letters, Elsevier, vol. 54(C).
    7. Pavlína Kozáková, 2020. "Ověření důvěry a spokojenosti zákazníků na českých slevových portálech metodou modelování strukturních rovnic [Verification of Trust and Customer Satisfaction with Czech Online Group Buying Applyin," Politická ekonomie, Prague University of Economics and Business, vol. 2020(4), pages 381-404.
    8. Utz Weitzel & Michael Kirchler, 2022. "The Banker's Oath And Financial Advice," Working Papers 2022-13, Faculty of Economics and Statistics, Universität Innsbruck.
    9. Yongzhong Wu & Yikuan Lu & Simin Huang, 2022. "Impacts of Delivery Charge on the Possibility of Consumers Using Online Food Delivery," Sustainability, MDPI, vol. 14(3), pages 1-21, February.
    10. Weitzel, Utz & Kirchler, Michael, 2023. "The Banker’s oath and financial advice," Journal of Banking & Finance, Elsevier, vol. 148(C).
    11. Khan, Md. Rahat & Pervin, Most. Tahura & Arif, Md. Zahir Uddin & Hossain, S.M. Khaled, 2024. "The impact of technology service quality on Bangladeshi banking consumers' satisfaction during the pandemic situation: Green development and innovation perspective in banking service," Innovation and Green Development, Elsevier, vol. 3(2).
    12. Jing Jian Xiao & Nilton Porto, 2022. "Financial capability and wellbeing of vulnerable consumers," Journal of Consumer Affairs, Wiley Blackwell, vol. 56(2), pages 1004-1018, June.
    13. Murinde, Victor & Rizopoulos, Efthymios & Zachariadis, Markos, 2022. "The impact of the FinTech revolution on the future of banking: Opportunities and risks," International Review of Financial Analysis, Elsevier, vol. 81(C).
    14. Mohd Naved Khan & Neha Gupta & Manita Matharu & Mohammad Faisal Khan, 2023. "Sustainable E-Service Quality in Tourism: Drivers Evaluation Using AHP-TOPSIS Technique," Sustainability, MDPI, vol. 15(9), pages 1-23, May.
    15. Goto, Tsuyoshi & Yamamoto, Genki, 2023. "Debt issuance incentives and creative accounting: Evidence from municipal mergers in Japan," Journal of the Japanese and International Economies, Elsevier, vol. 68(C).
    16. Swapnilsingh Thakur & Shailesh Rastogi & Neha Parashar & Pracheta Tejasmayee & Jyoti Mehndiratta Kappal, 2023. "The Impact of ICT on the Profitability of Indian Banks: The Moderating Role of NPA," JRFM, MDPI, vol. 16(4), pages 1-16, March.
    17. Pynnönen, Sari & Haltia, Emmi & Hujala, Teppo, 2021. "Digital forest information platform as service innovation: Finnish Metsaan.fi service use, users and utilisation," Forest Policy and Economics, Elsevier, vol. 125(C).
    18. Pierre-François Blin & Trias Aditya & Purnama Budi Santosa & Christophe Claramunt, 2023. "A Methodological Approach towards Cyber Risk Management in Land Administrations Systems," Land, MDPI, vol. 13(1), pages 1-17, December.
    19. Padmalochan Panda & Alekha Kumar Mishra & Deepak Puthal, 2022. "A Novel Logo Identification Technique for Logo-Based Phishing Detection in Cyber-Physical Systems," Future Internet, MDPI, vol. 14(8), pages 1-17, August.
    20. Dalia Hussein Elsayed & Tariq H. Ismail & Eman Adel Ahmed, 2024. "The impact of cybersecurity disclosure on banks’ performance: the moderating role of corporate governance in the MENA region," Future Business Journal, Springer, vol. 10(1), pages 1-15, December.

    Corrections

    All material on this site has been provided by the respective publishers and authors. You can help correct errors and omissions. When requesting a correction, please mention this item's handle: RePEc:pal:risman:v:25:y:2023:i:4:d:10.1057_s41283-023-00130-4. See general information about how to correct material in RePEc.

    If you have authored this item and are not yet registered with RePEc, we encourage you to do it here. This allows to link your profile to this item. It also allows you to accept potential citations to this item that we are uncertain about.

    If CitEc recognized a bibliographic reference but did not link an item in RePEc to it, you can help with this form .

    If you know of missing items citing this one, you can help us creating those links by adding the relevant references in the same way as above, for each refering item. If you are a registered author of this item, you may also want to check the "citations" tab in your RePEc Author Service profile, as there may be some citations waiting for confirmation.

    For technical questions regarding this item, or to correct its authors, title, abstract, bibliographic or download information, contact: Sonal Shukla or Springer Nature Abstracting and Indexing (email available below). General contact details of provider: http://www.palgrave.com .

    Please note that corrections may take a couple of weeks to filter through the various RePEc services.

    IDEAS is a RePEc service. RePEc uses bibliographic data supplied by the respective publishers.