Data security

It's not on consumers to fix this problem, says NuData Security's Justin Fox, who argues organizations must get more cooperative and proactive to improve authentication.

There's equal importance on encrypting data and securing the server, says STEALTHbits Technologies' Adam Laub.

The equation is no mystery to those in payments or financial services: Expand your digital footprint, and you expand the opportunities for hackers to damage your network.

Consumer trust is hard to win, easy to lose, and eroding daily as attackers achieve success with fraudulent transactions, says NuData Security's Justin Fox.

Many companies have tools in place alerting them to possible security issues, but if companies get a large volume of issues, this quickly overwhelms the ability for security and risk professionals to analyze, prioritize, and remediate, writes DivvyCloud's Chris DeRamus.

At the same time, consumers hold banks to tougher disclosure standards than government agencies, health care organizations and retailers, according to Experian.

With lots of day-to-day IT tasks and countless systems to configure, it's easy to make mistakes, says Brian Kelly, CEO of CloudBolt.

Not only does it illustrate the willingness of regulators to impose massive fines for massive data breaches, it also reminds us that this situation could be just the tip of a financial iceberg, says White Hat Security's Mark Rogan.

When lawmakers return from their August recess, a host of unresolved financial policy issues — from marijuana banking to anti-money-laundering rule — will greet them.

House Financial Services Committee Chair Maxine Waters, D-Calif., and a bipartisan congressional delegation met with Swiss government officials last week to discuss Facebook’s plans to launch and operate a digital currency.

As mobile payment applications increasingly integrate with social media platforms, fraudsters are using a mix of bots and human labor to increase their chances of a successful account takeover.

The banks considered an “unusual” investment banking merger; Volcker rule win will be followed by fights on capital rules, liquidity and stress tests.

Mastercard Inc.’s European unit formally notified Belgian and German data-protection regulators of a data lapse concerning a loyalty program, officials said on Friday.

The most popular payment method in Hong Kong is no longer considered safe by many protesters.

There is always the chance that privileged employees will either become bad actors who use their access to confidential data for their own gain, or that they will succumb to a hacking attempt and thereby open the door to an external bad actor, says Unisys' Maria Allen.

Banks, for the most part, have not advanced their core digital technologies as quickly as payments networks and disruptors ahead of the original PSD2 deadline. And the European Banking Authority has also cited the payments networks for not advancing the 3D Secure 2.0 online authentication model far enough to comply with PSD2 provisions.

Bluefin cut its teeth developing point-to-point encryption to protect sensitive payment information from being intercepted by thieves during the transaction process, and now it’s adding tokenization protection for the consumer data merchants keep.

Human error makes credit unions vulnerable to cybersecurity threats, but executives can fight this by setting up the right processes and technology.

Machine learning can build a layered defense, and analysts don't have to spend as much time combing through data to spot threats, says Exabeam's Anu Yamunan.