Readers respond to a bill designed to modernize the anti-money-laundering rules, applaud the acting head of the CFPB’s decision to fire the members of the bureau’s advisory councils, opine on when a bank ought to communicate it has been hacked and more.

PCI compliance can take time and is expensive, but it's a vital part of security and there are ways to mitigate the resource challenges, according to Justin Shipe, vice president of information security for CardConnect.

That’s the question executives of publicly traded banks are asking themselves as they try to make sense of new — and somewhat vague — guidance from the SEC on procedures for disclosing data breaches.

Agency says it wants “smaller memberships to ensure streamlined discussions;” the bank hired a U.K. firm to help it better defend against cyberattacks.

Many of these attacks have been server side ransomware and other sophisticated hacks, leading companies to examine the immature security processes, the technology of application security, and the insufficient expertise of development, writes Jeannie Warner, the security manager at WhiteHat Security.

Belgian security researcher Xavier Mertens has discovered a piece of a banking malware campaign that appears to target customers of various U.K. banks.

Two major Canadian banks, Bank of Montreal and Simplii Financial, have become victims of hacks that affected some 50,000 and 40,000 customers respectively. Neither bank decided to pay the ransom by the hackers' May 28 deadline.

We need to rethink how we acquire and manage consumer data, and any business using enterprise software needs to be accountable for how information is being processed, transported or shared, writes Chris Wong, CEO of LifeSite.

A direct correlation between the chip migration and rampant merchant data breaches is hard to prove. But experts say retailers' prioritization of EMV compliance contributed to other payment card security gaps, leading to the current high level of merchant data breaches.

Canadian Imperial Bank of Commerce and Bank of Montreal are alerting clients that "fraudsters" claimed to have accessed personal and financial information of some customers.

A new round of consolidation may be about to begin, starting in Europe; looser corporate underwriting standards and lower rates draw OCC attention.

New phishing attacks on payment systems and banks are more sophisticated, with disguises that can trick staff into turning over sensitive information, writes Adrien Gendre, chief solutions architect at Vade Secure.

Phishing is the likely culprit behind the recent Saks and Lord & Taylor breaches. Stronger email protection required to combat the threat, according to Matthew Vernhout, 250ok's director of privacy.

With President Trump signing the regulatory relief bill into law on Thursday, credit unions expect to see a host of benefits, including changes to MBL regs, HMDA exemptions, changes to the QM rule and more.

At the 2018 CUNA CFO Council conference, an NCUA staffer offered examples of how the regulator aims to improve the exam process and make it easier for credit unions to do business.

European financial institutions and central banks, along with critical European banking and payments infrastructure providers, face an increasing onslaught from hackers that has prompted two major responses from the EU.

Banks feeling the pressure in commerical lending from lightly-regulated, cash-flush competitors; financial institutions take "an increasingly militarized approach" to fighting cybercrime.

Deadlines imposed by U.S. and EU regulators are giving banks intercontinental whiplash.

Mark Begor said Wednesday that banks and other customers will receive regular updates on the credit reporting agency’s efforts to improve its cybersecurity in the wake of last year’s massive data breach.

Regalii has changed its name to arcus and switched from cross-border bill payment to helping banks use tokenization to reissue lost, stolen or breached cards.