Even though a denial-of-service attack on an e-commerce site is not classified as a breach because data is usually not compromised, the 2018 Verizon Data Breach Investigations Report claims it is a growing menace to merchants who rely solely on their websites.

The self-regulatory body says working with data aggregators increases risk of cyber fraud, unauthorized transactions and identity theft. But aggregators say other links in the information chain are more vulnerable.

AI relies on catching the malware itself at a later stage, once it begins to operate in the system, and that's not enough to combat breaches and payment systems, according to Mordechai Guri, chief science officer at Morphisec.

Brand and access to capital can suffer if companies don't take proper care of data from payments and other online activities, according to David Thomas, CEO of Evident ID.

The agency’s acting director uses a reply letter to the senator not to answer her questions but to underscore that Congress lacks the ability to compel answers to such questions.

The one thing more valuable to consumers than their bank accounts might be their internet access — and a new version of the ‘Trickbot’ trojan targets both.

Options include multilayered security solutions that incorporate verification via passive biometrics, without adding friction, by evaluating a consumer’s inherent behavior online during the transaction process, writes NuData Security's Lisa Baergen.

Employees still fall for phishing attacks, but there is technology that can remove the offending code before employees even view emails, writes Aviv Grafi, CEO of Votiro.

The central bank is taking a lead role in trying to combat the longstanding problem. A broad study by the Fed aims to measure the extent of payments fraud and to foster more collaboration in thwarting it.

Fintech firms likely to take a third of traditional bank revenues by 2025, Citigroup report says; Saks, Lord & Taylor say five million card accounts were accessed.