Data security

The current consumer and business demands for contactless payment channels give organizations the opportunity to build new solutions with security at the forefront or to append new workflows to legacy business processes, says Mobiquity's Tyrone Jeffress.

A new study from Black Kite outlines a variety of threats facing the industry and pinpoints the average cost of a breach at large and small institutions alike.

The Michigan bank is the latest company to have customer data compromised through a software vulnerability. The incident reinforces the importance of attack simulations, constant searches for intrusions and exchanges of intel with peers.

The bill introduced by Rep. Patrick McHenry, the top Republican on the Financial Services Committee, would expand CFPB authority to the credit reporting industry and require that certain adverse information be removed from a consumer’s credit history.

Less than half of consumers believe financial services providers adequately protect their personal information, according to an Arizent survey. Banks such as Wells Fargo and Bank of Idaho are offering mobile tools and cybersecurity education that could help rebuild trust.

How consumer attitudes toward privacy threaten to overturn long-standing industry assumptions about customer data and personalization.

Call centers have long had issues around the security of accepting card payments verbally; companies like Semafone and DataDivider are working to keep those centers PCI-compliant as the pandemic compounds the problem.

Emerging consumer attitudes toward privacy threaten to overturn long-standing industry assumptions about customer data and personalization.

City National Bank is working with the fintech startup Extend to further boost contactless payments at the point of sale for business employees through the launch of a virtual Visa commercial credit card.

PaymentSource's Daniel Wolfe sits down with Carey O'Connor Kolaja, AU10TIX's new CEO to discuss the rise in synthetic fraud, the fastest-growing financial crime, and how payments security has been changed by the pandemic.

The latest cyberattacks pointing to the Russian government show that U.S. federal agencies and banks still lack a clear, collaborative game plan.

Fallout from the coronavirus pandemic consumed the industry this year, but other events, including a scandal at the National Credit Union Administration and a credit union under fire for lack of board diversity, also made waves.

With Microsoft, Equifax and others acknowledging that the SolarWinds hack of U.S. government entities had affected their holdings, security teams and vendors have put the holiday aside while continuing around-the-clock surveillance to ensure no financial services or payments networks have been hacked.

As risk rises and budgets tighten post-pandemic, training all employees about security risks and conducting quarterly penetration tests helps to offset threats and potential losses.

By upgrading permissions and defining access, firms can get ahead of the new threat, says vArmour's Marc Woolword.

Remote learning and work heightens the security risk, says Pulse Secure's Mike Riemer.

Federal banking agencies want to give the industry a hard deadline for notifying their regulators about serious security breaches and failed system upgrades.

Paying on delivery with tokenization, biometric fingerprint cards, vein scanning or phone-to-phone with a variety of card payment options helps create a universe of consumer choice, convenience, personal preference and better fraud protection, says Radar Payments' Jane Loginova.

It has been 15 years since the federal banking agencies issued guidance on an institution’s obligation to inform its regulator about a cyberattack. A proposal to be unveiled this week could establish a more specific notification deadline.

It's important that breach mitigation strategies take younger people, gaming and school into account, says ForgeRock's Ben Goodman.