Data security

The timing of the breach at Connex aligns with data breaches by threat actor ShinyHunters, which uses phone calls to socially engineer victim organizations.

Theft of paper checks and their use in identity theft constitute a major blind spot in the private sector's fraud detection networks. Banks and regulators need to come together to find solutions.

The security problem affects organizations with a hybrid Exchange environment, running applications in both on-premises servers and Microsoft's cloud.

With federal oversight easing, Rhode Island joins states pushing cybersecurity laws for finance companies not covered by federal bank regulators.

A threat group used physical implants and evasive malware to infiltrate ATM networks and attempt fraudulent withdrawals. Here are their tactics and techniques.

Companies that lack artificial intelligence governance may spend hundreds of thousands of dollars more in responding to cyberattacks, IBM found.

U.S. banks should look to Sweden, where the identity verification measures put in place by banks also give users access to both government and private-sector platforms.

A report Wednesday detailed Scattered Spider's advanced social engineering tactics and the escalating threat the group poses to financial institutions.

American Banker's Frictionless Fraud report finds not all institutions are well assured their customer verification tools can keep up with new schemes.

Texting a password recovery link to a customer presents the risk of someone else taking over the account. Researchers found this happens somewhat frequently.

A new MITRE framework breaks down how cybercriminals attack cryptocurrency systems and helps institutions secure them. Plus, it's a free, open standard.

The OCC, Fed and FDIC issued a letter this week clarifying the rules governing crypto safekeeping, which emphasize proper management of cryptographic keys.

Cyber firms are teaming up with cloud providers to build faster, smarter AI-powered defenses.

The case has put chief information security officers on notice that they could be personally liable for false statements about security policies and practices.

Listen to Gasan Awad, SVP, Fraud Director, Enterprise Fraud Product Management at PNC Bank, Chris Briggs, Chief Product Officer at Mitek and Jay Leal, CIO at Vantage Bank.

GodFather malware mimics and manipulates real financial apps on Android devices, exposing sensitive data without user suspicion.

The Financial Technology Association — which had been granted the right to defend the Consumer Financial Protection Bureau's open banking rule after the bureau declined to defend it — filed a motion Sunday to preserve the rule.

Experts told lawmakers that quantum computers will soon render today's encryption obsolete — and foreign adversaries know it.

Following strikes on nuclear sites, the U.S. warned of a heightened threat environment. Here's how Iran has targeted American banks in the past.