Data security

A criminal group called Prilex has stolen millions in a scheme involving fake repair people installing malware on point of sale terminals.

FS-ISAC will test banks' cybersecurity defenses in "hyper-realistic" simulations of malware, phishing and ransomware attacks.

The Tennessee company said the cyberattack took place in late January and early February.

The breach was quickly followed by fake text and app messages to customers that appeared to come from the challenger bank.

Morgan Stanley will pay $35 million to settle Securities and Exchange Commission allegations that one of its units failed to secure the personal data of millions of customers when replacing company hard drives and servers.

The Office of the Comptroller of the Currency has stopped requiring the bank to provide quarterly progress reports about its efforts to mitigate cloud computing risks.

The agency in charge of regulating cybersecurity incident reports asked firms Monday to give their input on how the developing set of rules should work.

Shortcomings in security testing and monitoring of clients could also trip up payment industry players who need to meet new requirements by 2025.

In an exclusive interview, the moderate Virginia Democrat and co-chair of the Community Development Financial Institution Caucus touched on the future of community development, cybersecurity and nonbank regulation. 

The bank is looking to educate — and potentially hire — a new generation of tech experts by working with New Jersey's Liberty Science Center and two local high schools in areas where students are at higher risk of not graduating.

The cybersecurity crisis arising from super-fast computing is approaching more quickly than the industry and its regulators may realize.

The state's disclosure laws generated data that indicated millions of consumers had their personal details potentially compromised.

A data breach in 2022 costs companies $4.35 million on average, an all-time high according to IBM research.

In a survey, 88% of financial institutions had experienced a firmware-related attack, which the Department of Homeland Security has called an "overlooked" vector for cyberattacks.

At a time when many crypto companies have seen their fortunes plummet, one corner of the industry is thriving.

To meet the growing demand, banks are faced with a choice of hiring, reskilling or outsourcing.

A recent announcement from the CFPB makes clear that the agency expects banks to adopt multifactor authentication, password management and security patching.

The two major tech firms were targeted in an intricate phishing scheme last week. One fended off the attack; the other was not so fortunate.

In markets such as India, China, the United Arab Emirates and Brazil, more consumers and merchants are testing or deploying facial recognition as a way to authenticate transactions.