By DDoS attacks against financial infrastructure are no longer measured in minutes. They now sustain for extended durations, overwhelming bandwidth, CPU, web application layers, and DNS simultaneously. At the same time, 96% of organizations have experienced an API incident, and bots now account for the majority of traffic on some financial sites, with no human customer in sight.
In this interview on TFiR, Steve Winterfeld, Advisory CISO at Akamai, walks through the findings from Akamai’s latest financial services industry threat report, covering DDoS evolution, API attack patterns, AI-driven bot activity, and the emerging risks of agentic AI in banking and financial services.
Guest: Steve Winterfeld, Advisory CISO at Akamai
Show: TFiR
Here is what every security leader and CISO in financial services needs to know.
Technical Deep Dive
Q: What does Akamai’s financial services threat report cover and why was it produced?
Steve Winterfeld, Advisory CISO at Akamai, explains that the report is an industry-focused follow-up to a previous global report. Akamai defends many of the top US and European banks and collects attack data across those engagements. The goal was to share specific findings from the financial services sector, covering DDoS, API attacks, bot activity, and AI-driven threats, rather than a broad cross-industry overview.
“What’s old is new again. We always end up talking about denial of service attacks.” — Steve Winterfeld, Advisory CISO, Akamai
Q: Why have DDoS attack durations increased 738% and what is driving this?
Winterfeld attributes the 738% increase in DDoS attack duration to two converging forces: geopolitical conflict and AI-powered attack tooling. Attacks tied to the war in Ukraine and the Middle East conflict have introduced sustained hacktivist campaigns against banks and infrastructure in countries perceived to support either side. AI is then enabling attackers to increase the speed, scope, and adaptability of those attacks in ways that were not previously achievable.
“It’s being driven through AI capabilities. Just as we’re using AI to do natural language queries inside my security operations center, they’re using AI to do the speed and complexity of these attacks.” — Steve Winterfeld, Advisory CISO, Akamai
Q: What are the different types of DDoS attacks and which layers do they target?
Winterfeld outlines four distinct DDoS attack vectors. Bandwidth attacks at Layer 3 and 4 target infrastructure availability through bits per second. Packet floods overwhelm CPU resources through packets per second. Layer 7 application attacks target web infrastructure through requests per second. DNS attacks degrade or disable name resolution through queries per second. Each requires a different mitigation posture.
“You can attack the bandwidth and bits per second. You can overwhelm the CPU with packets per second. You can take out web infrastructure Layer 7 applications with requests per second. You can take out DNS through queries per second.” — Steve Winterfeld, Advisory CISO, Akamai
Q: How should a CISO assess whether longer DDoS attacks change their risk profile?
Winterfeld frames this as a direct risk reassessment question for security leadership. What previously operated as short, minute-long attacks is now sustained pressure. CISOs need to evaluate whether existing mitigation capacity, both in volume and duration tolerance, is still adequate, and whether the threat actors behind these longer attacks represent a new capability tier that changes acceptable residual risk.
“As a CISO, I need to go and say, does this change my risk profile? Do I need to go look at increasing my capability?” — Steve Winterfeld, Advisory CISO, Akamai
Q: Why are APIs the primary attack surface for financial services and what percentage of attacks target them?
Winterfeld reports that 60% of attacks within the financial industry, covering banking, wealth management, and insurance, go through APIs. APIs are the interface layer for mobile banking apps, third-party integrations, and AI-driven zero-click transactions, meaning customers are no longer the visible endpoint. Attackers exploit this to target accounts directly, attempting to steal money without triggering traditional user-facing fraud controls.
“60% of attacks within the financial industry are going against actual banks, going after people’s accounts, trying to get in to steal money straight from them.” — Steve Winterfeld, Advisory CISO, Akamai
Q: What does the Akamai API Security Impact Study show about the scale of API incidents?
The Akamai-sponsored API Security Impact Study found that 96% of companies have experienced an API incident. Winterfeld clarifies that an incident does not require a data breach. The study captures active attacks, including probing, abuse, and unauthorized access attempts. The primary CISO concern this surfaces is visibility and discoverability: knowing where all APIs exist and who is attempting to access them.
“96% of the companies out there have had an API incident. As a CISO, this is where I want visibility and discoverability. I want to make sure I know where all my APIs are and who’s attacking them.” — Steve Winterfeld, Advisory CISO, Akamai
Q: How is AI changing the nature of threats against financial institutions beyond traditional malware?
Winterfeld draws a distinction between traditional malware threats, which target systems through known CVE exploitation, and AI-specific attack surfaces, which include logic attacks against how a model processes data rather than its underlying code. As financial institutions deploy generative AI and agentic AI, the attack surface shifts from files and endpoints to decision pipelines and model inputs.
“You’re going against how it’s processing data, not actual malware. And then from gen AI you get into agentic AI, and the danger here is it’s not answering questions, it’s making decisions.” — Steve Winterfeld, Advisory CISO, Akamai
Q: What specific risk does agentic AI introduce in banking that generative AI does not?
Winterfeld highlights that agentic AI moves beyond answering queries and begins making autonomous decisions, such as approving a loan or executing a transaction on behalf of a customer. This decisional authority creates a qualitatively different risk category. Manipulating an agentic system’s inputs or logic can result in consequential financial actions without any human review step.
“If the bank is using an agent to make a decision on a loan, then you can see where there’s a lot more danger here.” — Steve Winterfeld, Advisory CISO, Akamai
Q: What is a 147% surge in bot activity and what types of bots are targeting financial services?
Winterfeld reports a 147% surge in advanced bot activity and identifies five categories active in financial services. Training or fetcher bots retrieve data or execute purchases autonomously. Scraper bots harvest proprietary or customer data for competitors or criminals. Account takeover bots use credential stuffing, brute force, and other techniques to access accounts and monetize balances or reward points. DDoS bots execute sustained infrastructure attacks. Hoarding bots rapidly acquire limited inventory such as concert tickets or new product releases.
“In one case, 90% of all the site traffic was a scraper bot. That traffic costs money, and if 98% of the traffic I’m getting is just trying to steal from me or gather intelligence against me, that has a huge business impact.” — Steve Winterfeld, Advisory CISO, Akamai
Q: How are attackers using AI to defeat geo-blocking defenses?
Winterfeld explains that AI-coordinated bot networks can dynamically shift traffic origin when a defender blocks a country or region. If an organization blocks a specific country from which attacks originate, the bot operator simply routes traffic through bots located in countries the defender cannot block without also blocking legitimate customers. This makes static geographic access controls ineffective against adaptive bot campaigns.
“If I’m attacking and you block a country, then I shift my bots to the country you’re in and you can’t geo block.” — Steve Winterfeld, Advisory CISO, Akamai
Q: How does zero-click AI purchasing behavior reduce visibility for banks and merchants into their own customers?
Winterfeld notes that when an AI agent makes a purchase on behalf of a user, the merchant or bank only sees the AI as the transacting entity, not the underlying customer. This removes traditional behavioral signals used for fraud detection and customer verification. Banks are losing direct visibility into customer intent and transaction context as AI intermediaries absorb that layer of interaction.
“The people you’re buying from never see you. They just see that AI. They’re losing touch with their customers through those zero clicks.” — Steve Winterfeld, Advisory CISO, Akamai
Resources and Documentation
- Akamai Financial Services Security, platform defending top US and European banks against DDoS, API abuse, and bot-driven attacks
- Akamai API Security Impact Study, Akamai-sponsored research showing 96% of organizations have experienced an API incident
***
👇 Click to Read Full Raw Transcript
Swapnil Bhartiya: What surprised you the most in this year’s finding, either which you may have assumed that these kind of threats will go away, or you are not expecting them to appear at all, certainly.
Steve Winterfeld: So, you know, Akamai defends a number of banks, you know, the, the top US Banks, the top European banks. And so across these global banks, we see a lot of different types of attack. And we wanted to take a moment and you know, unlike the last report was global across attacks against APIs and denial of service attacks, and attacks against generative AI and ransomware and all these kind of things that, you know, these are where we defend. And as we defend against them, we collect data. And we wanted to share this data. And so the last one was kind of a global report. This one is more of an industry report. And so as we dive in, you know, some of the things that are what’s old is new again. And so we always end up talking about denial of service attacks. And so again, we saw a 738% increase in the duration of attacks. And so as you see these new peaks, and we’ve seen a lot of this lately, you talk about the Turbo Mirai, Kim Wolf and these other kind of attacks, they’ve really increased the volume, the scale of which we attack. And so when we talk about DDoS again, a quick refresher for those who don’t think about it every day you can attack the bandwidth and bits per second. You can overwhelm the CPU with packets per second. You can take out Web Infrastructure Layer 7 applications with requests per second. You can take out the domain name service, DNS, which is a phone book, or GPS of the Internet through queries per second. So there are different types of DDoS attacks. And so this first one we’re talking against banks is at layer 3, 4 bandwidth against infrastructure. And so if you’re trying to go in and use some capability, it’s simply your availability is not there. And what used to be these short, minute long attacks is now becoming our attacks or longer, depending on the capabilities are willing to use. And so these new capabilities are increasing the duration of an impact. And so it’s really something as a CISO that I need to go and say, does this change my risk profile? Do I need to go look at, you know, increasing my capability? And there’s a couple things driving this. One is the GEO conflicts. Some of this is coming out of the war in the Ukraine against Europe against, you know, the, the Middle east war in that region and beyond for, for companies or countries that support one side or another. And we see a lot of this is done by Hackivist or you know, people that are cyber criminals during the day, state sponsored, you know, Hackivist at night. So it’s kind of a complex issue, but at the end of the day we really see that volume changing and the speed and you knew I was going to talk about AI eventually. And this is where I talk about it, is it’s being driven through AI capabilities. So just as we’re using them as a CISO to do natural language queries, inside my security operations center, they’re using AI to do the speed and complexity of these attacks. The second half I want to talk about of these key findings is really around APIs. So APIs are those abilities for machines, to talk to machines. So if you’re on an app, on your phone and you’re connecting to your bank, that’s going through an API. If you’re going shopping and you’re inside an AI and you tell that AI to go buy something for you, that is also going through an API, that’s a zero click. So now the, the, you know, the people that you’re buying from never see you, they just see that AI, they’re losing touch. That’s all happening in the banks. We’re losing touch with our customers a little bit through those zero clicks. But this AI is having a big impact in here and, and it’s going through those APIs. And so 60% of that tax within the financial industry, that’s banking, wealth management, insurance, all these different types, most of it is going against actual banks. And so it is going after people’s accounts, trying to get into, to steal money straight from them. We also put out within this a separate study that Akamai sponsored, the API Security Impact Study, and that showed that 96% of the companies out there have had an API incident. Now what’s an incident? It could be something small, it’s not a data breach, but it is showing active attacks. And again, as a ciso, this is where I want visibility and discoverability. I want to make sure I know where all my APIs are and who’s attacking them, what’s going on. So those are kind of the two big things that jumped out at me on this one. For as far as data points.
Swapnil Bhartiya: Thank you. I was at Cisco Live and I was talking to Emmy Chang there and she also said that because of AI, we are looking at new kinds of threads. Because what happens is that most time, most folks, they scan an image, they upload an image for OCR they upload a PDF and they’re like, now what is happening is that, I mean, of course, bad actors, they’re embedding some codes in the image itself that humans cannot see. But when you upload them, so a lot of things are happening. Very many websites you will not see human readable text, but there’s a text that the AI can read and now that can pass on instructions that that AI can do on your behalf. And since agents are now acting autonomously, so that is also becoming a new threat. So I want to talk about AI now when we talk about AI here in this context, I will talk about API also, because AI and API are related. Not everybody is running local LLMs. Most of us use it through API. So it’s going to be connected when it comes to AI, how is AI changing different aspects of security? First of all, of course it can speed up the process. Also it can make attacks more sophisticated. And I, as I give examples that there are certain things that are not even visible to humans when it comes to financial sector, which people are more, more sensitive. But sometime you scan checks and rude. I think from financial sector’s perspective, from both defenders and attackers perspective, how AI is changing security there certainly.
Steve Winterfeld: And that’s a huge question to unpack. So I’m going to start a little bit up front with defining when we say AI. So the first thing you mentioned was the traditional, you know, large language models and even older than that is machine learning. But, but for more of the generative AI, it’s large language models and a lot of those are a little bit closer to, you know, what machine learning words. The CVE is a traditional malware. And then as we get beyond the gen AI and there’s more, there’s some malware, there’s a lot of logic attacks. So you’re going against how it’s processing data, not actual malware. And then you get from gen aa you get into agentic AI and the danger here is it’s not answering questions, it’s making decisions. So if the bank is using an agent to make a decision on a loan, then you can see where there’s a lot more danger here. And so across all of this, what we’re seeing is, you know, a surge in advanced BoT activities. So 147% surge in BoT activities. So again, I’m going to step back for a second because not everybody lives in the bot world. So I want to take a second and describe these. So the first are these training bots or fetcher bots? It’s the AI going out to learn something, going out to buy those shoes. I have to say shoes because I was CSO for Nordstrom Bank. So we always talk about buying shoes up front. You know. Next was scraper bots just going and harvesting data. It could be your competitors harvesting data. It could be cyber criminals harvesting, you know, proprietary information or customer information. You have account takeover bots that are, are using a number of, of attacks, from credential stuffing to brute forcing to a number of different, more advanced attacks to come in and take over your account. It could be your bank account. Or again, going back to before I worked with Akamai back in, in the Nordstrom days in commerce, going after all your reward points because those are easy to monetize. And so taking over different kinds of attacks or different kinds of attacks. We just mentioned it can be running DDoS attacks. It can be doing the speed and scope and duration and, and innovation. Whereas, you know, if I’m attacking and you block a country, then I shift my bots to the country you’re in and, and you can’t geo block. And then finally hoarding or scraper bots, where again, the new tennis shoe comes out, a sporting team just released, tickets, a music concert, all of these, you know, you have bots going in to buy all those tickets. So across all those, we see this. And in fact, in one case, 90% of all the site traffic was a scraper bot, and that’s a use case. But I just want to point out that, you know, that traffic costs money and if now 98% of the traffic I’m getting is just trying to steal from me, you know, or, or gather intelligence against me, that has a huge business impact.
