Compliance

Network security

Merchants are not immune to the dangers of Meltdown and Spectre

Payments security experts are warning of the risks to some merchants with payment systems that transmit cardholder data from the processor back to the point of sale from the Spectre and Meltdown computer chip flaws.

By Kate Fitzgerald
Senior Editor, Payments

January 16
Morning scan

JPM, Wells on divergent paths; Citi talks gender pay

The two banks' tax reform expectations differ as they move in opposite directions; bank bows to pressure to report pay discrepancies.

By George Yacik

January 16
BankThink Data threats and tough rules lurk in all corners of the globe

To date, the vast majority of security investment has focused firmly on keeping the bad guys out. It only ever works to a certain extent. This is because there is much greater impetus for the hackers to devise new methodologies to gain access and the security industry at large is only ever playing catch up, writes James Barham, chief commercial officer at PCI Pal.

January 16

James Barham

PCI Pal
Payment processing

Cannabis payment firms push ahead despite Jeff Sessions' opposition

Despite the growing legality of marijuana sales, banks have largely written off the industry as being too high-risk. Recent remarks by Attorney General Jeff Sessions would seem to reinforce that position.

By John Adams
Executive Editor, Payments

January 16
BankThink PCI's breach-era authentication standards are complex, but necessary

With less than three months before the PCI DSS Requirement 8.3 takes effect, all involved in the handling of cardholder data must take definitive steps to review, implement and upgrade their multifactor authentication strategies and implementation to assure compliance, writes Dirk Denayer, business solutions manager at VASCO Data Security.

January 15

Dirk Denayer

VASCO Data Security
Cloud computing

Fears mount about Meltdown, Spectre threats to cloud computing

Bankers could see higher costs as cloud computing vendors struggle to protect their systems from the latest hacking vulnerabilities.

By Penny Crosman
Executive Editor, Technology at Arizent

January 12
Network rules

Visa to drop signature requirement in North America, joining other major card brands

If it wasn't before, it's official now. Signature authorization in North America will largely cease to exist in April.

By David Heun
Associate Editor

January 12
Morning scan

Earnings season begins; MoneyGram to test Ripple’s XRP

JPMorgan Chase, Wells Fargo are the first to report; payments company will run pilot to see if digital currency speeds transactions and lowers costs.

By George Yacik

January 12
Credit scores

'This guy lives in Fantasyland’: Comments of the week

Readers react to the Federal Housing Finance Agency considering changing its credit scoring policy, slam the possibility of enforcing mandatory penalties for data breaches at credit reporting agencies, weigh the possible nomination of a credit union regulator to the CFPB, and more.

By Mary Wisniewski
Deputy editor

January 11
Law and regulation

Data security takes center stage as state legislatures convene

If Congress doesn’t take the lead on protecting consumers from data breaches, states are more than ready to offer their own fixes. Bankers will also be keeping close tabs on bills related to marijuana, PACE loans and elder financial abuse.

By Laura Alix
Staff Writer

January 11