Data security

For years, bitcoin believers have tried to distance the digital coin from the perception that it's only used for criminal activity. New insights into Russian meddling in the U.S. election aren't helping.

Mastercard has become the latest major card network to suffer a high profile crash. With its Thursday incident coming hard on the heels of Visa’s crash last month many experts wonder if blockchain technology could prevent future card network outages.

About a month after Visa's European outage, Mastercard encountered a similar glitch for a brief period of time on Thursday.

As banks beef up defenses, hackers are targeting the weaker link: customers.

Even though much of PCI data is stored and maintained on mainframes, many are currently not being evaluated or scanned accurately for PCI DSS compliance, writes Ray Overby, co-founder and president of Key Resources.

The Bank of England, together with the Financial Conduct Authority and the Prudential Regulation Authority, has cautioned U.K. banks to prepare for cyberattacks and technical failures.

Fallout from the Equifax breach is coming into clearer focus as more companies begin pinpointing its effects over the last several months.

Bancor, an Israeli startup that facilitates trading in digital tokens, said a criminal made off with a $13.5 million cache, mostly comprised of Ether.

When GDPR went into effect in May, it was expected that the European law would touch a lot of U.S. payment companies because of their international scope. Now it's clear that even purely domestic U.S. firms will have to adhere to some version of the data-privacy law.

The consortium's Corda Enterprise is designed to let blockchain applications exist behind a company’s firewall but still interact with outside partners.

All service providers, even those with a strong security posture, are only as secure as the Home Depots, LinkedIns and Equifaxes of the world, argues George Avetisov, chief executive of HYPR.

A new malicious spam campaign that has been targeting Internet users in the U.K. serves as an important example of how banking malware targets business as well as home users.

Hotels have elaborate systems to capture lodging fees and other purchases charged to rooms, but when customers book special events such as weddings or conferences, payment security can be more of a problem.

Nonlisted encryption solutions are designed for easier deployment, but often lack many of the key attributes of PCI-listed point-to-point encryption products, writes Ruston Miles, founder and chief strategy officer of Bluefin.

Turnover of chief risk officers is on the rise as CEOs look to add executives whose experience goes far beyond assessing credit risk. Sometimes they are promoting from within, but often they are poaching talent from rival banks.

Phone-based customer service opens opportunity for voice phishing, or "vishing," and other types of attacks linked to card not present transactions, according to Rafael Lourenco, an executive vice president at ClearSale.

The Illinois commercial bank gained a new role when it realized it shared the same digital transformation challenges as its customers.

Eight states want the credit bureau to show what it’s doing to improve data security; Goldman, Morgan Stanley and Wells Fargo will be the focus of this set.

In the past few years of fighting against cyberattacks, security teams have developed "kill chain" models that document what steps the bad guys take to infiltrate a network and how to thwart them. The problem is, a significant number of data breaches occur from insider threats, which these models often overlook.

Under a consent order with Texas and seven other states, the Atlanta-based credit reporting firm agreed to shore up its information security efforts, but it will not have to pay any financial penalties.