Data security

There is a visible shift in attack patterns immediately following a breach, from initial attacks focusing on high-value loan applications at online lenders to low-value identity testing on charities and social media sites to determine if a stolen credential will work.

PayPal has suspended the operations of TIO Networks, a bill-payment company it purchased earlier this year, following the discovery of security vulnerabilities that require investigation.

When a coder locked $150 million of digital currency stored in Parity digital wallets last week, many bankers probably saw it as another reason to ignore cryptocurrencies. Instead they should recognize the business opportunity (key custody) that the incident presents.

It is important to have the right layers of security in place, ideally those that evaluate passive and behavioral biometrics, as they are proving to be the most reliable, writes Robert Capps, authentication strategist and vice president of NuData Security.

Because wearable payments technology is still considered experimental, it is important to address security before the market for such products gets much bigger.

In mid-2015, several thousand banks registered for dot-bank domains. More than two years later, only a few hundred have converted.

Outsiders gained access to customer information at Southern National Bancorp of Virginia using a malicious email. Other financial institutions, meanwhile, are implementing policies in hopes of avoiding the same fate.

Equifax Inc.’s massive data breach is proving costly.

Company’s first earnings report since the data breach also discloses lots of suits and investigations; Senate bill also calls for one-year delay in corporate tax rate cut to 20%.

Readers chime in on the idea of a state-backed bank to serve the cannabis industry, data-sharing between banks and fintechs, whether community banks can just focus on tech laggards, and more.

Barros has no answer for Senate committee on encryption; a bitcoin network split won’t happen … for now.

More than a dozen state leagues and credit unions have signaled their intent to sue Equifax, but to what end?

As blockchain becomes increasingly popular, heightened levels of data protection and customer awareness of its use become a reality, writes Abhishek Pitti, CEO of Nucleus Vision.

The heads of some of the largest U.S. banks are calling for a new security-focused mindset among executives, better forms of ID and collective action in the aftermath of the Equifax breach.

The new vice chairman of supervision at the Fed said the agency will seek comment on its rules for stress tests, capital and other areas, as well as look at how fintech has impacted the industry.

Four executives who sold stock after the company discovered a security breach had no knowledge of the incident when they made the trades, the company said. However, the status of federal investigations is unclear.

The Minnesota league follows on the heels of Pennsylvania, Nebraska and the Mountain West CU Association, all of whom joined the suit this week.

Jeanne Tisinger spent three decades working at the CIA, where her most recent position was deputy director overseeing the agency’s physical and cybersecurity and information technology spanning more than 100 countries.

Finance organizations serious about protecting their customers need two-factor authentication, which involves the mobile phone when logging in to transfer money, writes Michael Patterson, CEO of Plixer.

Readers weigh in on a blockchain-based credit bureau, react to the CFPB’s arbitration rule and chime in on calls to invest more in women.