Risk management

Visa is using AI agents to streamline payment disputes, while Mastercard launched "digital executives" for small businesses.

Cybercriminals say they stole sensitive records by exploiting an unpatched vulnerability known as React2Shell and using the password Lexis1234.

U.S. banks are bracing for retaliatory cyberattacks following military strikes in Iran that killed Ayatollah Ali Khamenei.

The threats posed by financial criminals, from fraudsters to money launderers, are evolving at a pace that far outstrips the education of bankers charged with combating them. That needs to change.

The Epstein files show the real-world business consequences of bankers' personal and business relationships, but the revelations come as the Trump administration is moving to marginalize reputational risk as a factor in bank examinations.

A public-private group led by the Treasury issued the first two of six planned resources to help banks navigate the risks and opportunities of AI.

Bank employees are likely adopting the OpenClaw AI assistant on the sly to boost productivity, but the tool's deep integration exposes networks to cyber threats.

While "Q-Day" may be years away, experts warn hackers are already harvesting encrypted data to decrypt later, making the transition to new standards urgent.

An internal memo from the Federal Reserve's supervisory staff will begin reviewing outstanding "matters requiring attention" and "matters requiring immediate attention" to ensure that they meet the standards laid out in an October directive.

An immediate effort to unload some of the central bank's assets could do more harm than good. Fed chair nominee Kevin Warsh should first turn his attention to problems affecting banks' liquidity.

Renat Abramov, a former relationship manager in Brooklyn, bypassed know-your-customer protocols to open accounts for shell companies involved in a $14.6 billion scheme.

Prosecutors allege Curtis Weston and a bank insider used fraudulent loans to fund stock market trades, leaving the bank with $20 million in losses.

Banking trade associations told the Office of the Comptroller of the Currency that regulators should reform rules around third-party risk, saying concentration and limited choice of core service providers places an undue burden on banks.

As tokenization increasingly brings instant settlement to transactions, the liquidity buffer that batch settlement has provided for decades is going to shrink and then disappear. Banks will need to rethink liquidity management.

Supply chain attacks have doubled since 2021, with professional services firms increasingly acting as "stepping stones" to access bank data.

TD Bank's Ruchira Ghosh, Northwest Bank's John Fick and Visa's Nikolaus "Nik" Walser, with moderation by American Banker's Penny Crosman

The U.K. conducted simulated cybersecurity attacks on its banks' live systems and found they lack basic patching and identity controls.

Howard Green's new book Gimme a Crisis offers a deep dive into the former Scotiabank CEO's career, from bringing the NBA to Toronto to navigating 2008.

San Diego County Credit Union and California Coast Credit Union, which last year announced plans to merge, are now duking it out in court. SDCCU alleges there are widespread compliance problems at Cal Coast, which Cal Coast denies.

As artificial intelligence is integrated into more and more core banking operations, bank boards of directors need to make sure business continuity plans account for the possibility of AI system failures.