Data security

A recent spate of cyber-attacks leveraging POS (Point-of-Sale) malware against big retailers is drawing attention to a relatively new malware strain called "multigrain."

Although complete migration to EMV is expected to take up to seven years, CNP (card-not-present) merchants will struggle with increased fraud as criminals shift online to more vulnerable remote payments.

Deloitte is partnering with five blockchain companies as it seeks practical uses for the emerging technology in its consulting business.

Banks and their merchant clients face a costly problem stemming from how prepared they are to deal with attacks that sidestep the point of sale.

The expansion of devices connected to the Internet of Things is raising security and privacy concerns, spurring the Smart Card Alliance (SCA) to take action.

WASHINGTON — Federal Deposit Insurance Corp. Chairman Martin Gruenberg has been called to testify on recent cybersecurity breaches in front of a House committee this month.

IBM has released a set of blockchain cloud services built to meet security and compliance standards for companies in regulated industries — particularly, financial services, healthcare and government.

There is some good and bad EMV-related news for the U.S. when it comes to chargebacks and false declines.

New details unearthed about how cybercriminals stole $81 million out of a Bangladesh Bank account at the Federal Reserve Bank of New York provide insight into how the theft occurred, some of the vulnerabilities that were exploited and what banks can learn from the incident.

New details unearthed about how cybercriminals stole $81 million out of a Bangladesh Bank account at the Federal Reserve Bank of New York provide insight into how the theft occurred, some of the vulnerabilities that were exploited and what banks can learn from the incident.

EMV chip card protections at the point of sale and a general corporate awareness of card data security are helping lower the number of data compromises worldwide. But fraudsters are moving quickly to bigger targets.

An organization could go to great lengths to protect its internal network only to have all that effort undone by its third party service provider failing to take proper security measures.

Wells Fargo will soon roll out eyeprint verification for its commercial customers using its mobile banking platform.

Visa issuers will be required by October of this year to provide a transaction alert service to cardholders — but if they don't have a plan in place this week, Visa will step in with its own offering.

The hurdles to broader EMV adoption in the U.S. have many causes, but to the consumer the end result is typically the same: A longer payment process with no immediate gain.

Nearly half of bank data security incidents in 2015 involved compromised web applications, according to a closely watched annual report from Verizon released Tuesday.

When you make a payment on a website using a HTTPS connection, Transport Layer Security (TLS) encryption is what makes your payment transfer over the public internet secure. Unfortunately, it's riddled with security flaws.

Multi-factor authentication will be required for administrative access to card data and systems for Payment Card Industry data security compliance this week.

The breach experienced by Mossack Fonseca did more than expose sensitive tax documents for global figures in politics and business. It's also a warning sign for any company that manages large amounts of financial and transaction data.

There's plenty of criticism of the U.S. chip card migration, including its pace, the pressure on merchants to upgrade and the lingering confusion over how to use the cards. But Visa painted a more bullish picture of the migration.