Emerging consumer attitudes toward privacy threaten to overturn long-standing industry assumptions about customer data and personalization.

The latest cyberattacks pointing to the Russian government show that U.S. federal agencies and banks still lack a clear, collaborative game plan.

Fallout from the coronavirus pandemic consumed the industry this year, but other events, including a scandal at the National Credit Union Administration and a credit union under fire for lack of board diversity, also made waves.

As risk rises and budgets tighten post-pandemic, training all employees about security risks and conducting quarterly penetration tests helps to offset threats and potential losses.

By upgrading permissions and defining access, firms can get ahead of the new threat, says vArmour's Marc Woolword.

Remote learning and work heightens the security risk, says Pulse Secure's Mike Riemer.

Federal banking agencies want to give the industry a hard deadline for notifying their regulators about serious security breaches and failed system upgrades.

It has been 15 years since the federal banking agencies issued guidance on an institution’s obligation to inform its regulator about a cyberattack. A proposal to be unveiled this week could establish a more specific notification deadline.

It's important that breach mitigation strategies take younger people, gaming and school into account, says ForgeRock's Ben Goodman.

Whenever a technology moves into the payments or financial data ecosystem, it alerts fraudsters to probe it more intensely — and ultimately, figure out a way to use it as an attack vector.