As the movement to adopt PCI-validated point-to-point encryption as a way to deter POS malware attacks spreads, Bluefin has patented a new process to identify compromised payment devices.

The former Amazon employee got info from 30 other entities, prosecutors say; another bad day for bank stocks, with 3% losses typical.

The Massachusetts Democrat is questioning a claim by the agency about the amount of redress available to those affected by the credit bureau's 2017 data breach.

Tussles over risk-based capital have preoccupied the agency of late, but Rodney Hood says he also wants to foster growth of minority-owned institutions and make sure credit unions are taking the hacker threat seriously.

There is no silver bullet when it comes to cybersecurity—and that goes double for the cloud, says Justin Fier, director for cyber intelligence and analysis at Darktrace.

From housing finance to Facebook’s crypto plans, moderators questioning the presidential candidates in Texas next month would have no shortage of financial policy topics from which to pick.

The rate on a 30-year fixed-rate mortgage dropped to 3.6%, a three-year low; Mary C. Erdoes, a top bank executive, allegedly pushed back against compliance department suggestions to jettison the controversial client.

The Massachusetts senator asked Richard Fairbank in a letter why the bank didn’t detect the breach for nearly four months and how it plans to prevent future cyber intrusions.

The payments system, called FedNow, would go head-to-head against one built by big banks; the senator from Oregon wants Amazon to address vulnerabilities in its cloud data storage.

Many businesses are not doing enough to protect their client sensitive PII information. They do not realize that internet and cloud services are not bullet-proof, says Pravin Kothari, founder and CEO of CipherCloud.

The CEO's tenure lasted just 18 months; the former FDIC chair says having Congress more involved in setting accounting standards "could well backfire on the banks."

Under the regulation, banks and financial services providers must secure their own systems as well as implement third-party risk management programs, which can mitigate insider threats from third parties, says Michael Magrath, director of global regulations and standards for OneSpan.

JPMorgan Chase ends business loan partnership with OnDeck; Truist out to prove it can best the megabanks in tech; Capital One's data breach was bad, but it could've been worse; and more from this week's most-read stories.

The question of upgrading to 3D Secure 2.0 authorization will become easier for European e-commerce merchants if it proves to be a path to compliance with a provision of PSD2, the revised Payment Services Directive.

A Fed team toured an Amazon facility at about the same time Capital One’s data was hacked; House oversight members want answers from the CEOs of the two companies.

Most cloud storage systems have gaps that open the door to account takeover, API attacks and other threats, argues Pravin Kothari, founder and CEO of CipherCloud.

Readers react to Capital One's massive data breach and The Bancorp's expansion in CRE securitizations, defend fintechs offering retirement plans and more.

Three GOP members of Congress have sent letters to the companies requesting staff-level briefings on the breach in which an ex-employee of Amazon Web Services illegally accessed data of more than 100 million people who had Capital One credit cards or had applied for them.

The Federal Trade Commission just updated its website with disappointing news: No, you aren’t getting $125 because of the Equifax Inc. data breach.

The FBI is looking into whether Italy’s largest bank was also hacked; about 4.5 million people have already inquired about getting a cash settlement with the credit bureau.