Compliance

Bankers were given a chance to weigh in on a new breach notification proposal, and federal regulators apparently took their comments to heart before issuing the final rule.

A new report finds that financial companies are the most targeted by fraudsters seeking to steal usernames and passwords. They're fighting back with specialized tracking technology, special domain names and other increasingly sophisticated techniques.

Banks must report major cyberattacks to regulators within 36 hours if the incident is likely to disrupt their business, according to a new rule from U.S. regulators.

The data aggregator assembled a group of technology companies that has developed a set of security standards for startups. It is open for comment ahead of an anticipated implementation in the second half of next year.

Criminals are finding weaknesses in the complex network of applications on banks' sites and exploiting them to launch attacks.

The company, whose software is used by four of the top five U.S. banks, says it will use the money to improve its identity verification and fraud detection technology.

After vowing for months to crack down on ransomware, the Biden administration and allied countries unleashed a string of actions Monday against one of the most prolific hacking groups and also issued sanctions against cryptocurrency entities that allegedly enable such attacks.

If law enforcement concludes that the company's devices were used in a cyberattack on U.S. companies, banks may need to change the way they choose, test and monitor point-of-sale equipment.

The decision came prior to news of a federal investigation of PAX Technology and a raid of its Florida locations that has prompted inquiries from customers about the security of devices that they have relied on for making and receiving payments.

The DeFi protocol Cream Finance suffered yet another 2021 hack in an exploit that stole at least $130 million and could be one of the largest thefts in decentralized finance.