Data security

The ransomware threat is likely to get a lot worse before it gets better — if it ever does. And small merchants and ATMs may be the most at risk.

Point-to-point encryption (P2PE) advanced with the Payment Card Industry data security standard's updated guidelines in 2015, but the technology has not held the spotlight much since then.

As the digital age reduces the wear on physical cards, how is it that some consumers are requesting new cards more frequently?

Readers react to USAA teaming up with Amazon’s Alexa, how a new Wells Fargo’s scandal could affect arbitration rules, a digital identity startup’s ambitions, and more.

A "smart" token is a regular token on steroids, transmitting the information needed to authorize the transaction together, including enhanced counterpart identity, transaction and invoicing data, writes Marten Nelson, vice president and co-founder of Token.

San Francisco-based startup UnifyID is developing an “implicit authentication” platform that requires no conscious actions by users to authenticate identities, and it’s just closed $20 million in fresh funding to support its growth.

A jumble of security vendors and lack of cohesive planning weaken many banks’ cybersecurity defenses, experts say.

As the digital age reduces the wear on physical cards, how is it that some consumers are requesting new cards more frequently?

Large banks like Wells Fargo have started using "cyber ranges" and "red teams" to respond to real cyberattacks on virtual versions of their real systems.

When breaches occur it is the standard practice for the notification to come directly from the company affected. The difference with Discover's service is that, because it's an opt-in program, its users may already be bracing themselves for bad news.

UniCredit, Italy's No. 1 bank, said hackers took biographical and loan data from 400,000 client accounts in one of the biggest breaches of European banking security this year.

The bank is drawing renewed scrutiny after a lawyer’s unauthorized release of sensitive client details for tens of thousands of accounts belonging to wealthy customers of its brokerage unit.

Cyberattacks are on the rise, but that doesn't mean becoming a victim is inevitable. The right preventative measures and best practices can help secure digital assets and customer data, writes Robert Fifield, co-founder of Payably.

Because of the opaque nature of internet retailing and widely publicized data breaches, security concerns remain a pervasive gating factor to digital commerce. Key to countering this is providing consumers with the tools to monitor and control where their payment credentials are stored online.

Credit card or personal data transactions getting processed through IBM equipment will soon benefit from "one-click" data encryption in a powerful new mainframe.

The system can run more than 12 billion encrypted transactions per day and can automatically keep applications, cloud services and databases hashed.

Some merchants, issuers and processors are concerned that the card brands will tout their "ownership" of payment card prefixes as a basis for requesting that mobile transactions on their cards be routed to their networks and screened through tokenization services they provide.

Guests include Carl Ryden of PrecisionLender, Felipe Echandi Lacayo of PanaFintech, Sam Shawki of Magic Cube.

Military and intelligence agencies around the world have grappled with data breach challenges for years, and have relied on Secure KM (Keyboard/Mouse) switches to manage the risk.

More e-commerce and multi-channel merchants are accepting payments from mobile devices, even though they haven't addressed all of the security gaps inherent to the technology.