Security researchers are uncovering widespread vulnerabilities in several popular mobile point-of-sale systems, which have become increasingly popular in recent years among many types of merchants large and small.

Banks — especially smaller ones — are being told to brace themselves for a wave of ATM raids by cybercrooks. Industry officials are uncertain what information the red alert is based on, but experts say swift, sophisticated thefts are very doable.

Financial companies have less than a month to address a third round of cybersecurity requirements, the agency warned.

Consumers are back to their old spending and saving habits; Trump administration is encouraging financial innovation; how the financial crisis shaped today's politics; and more from this week's most-read stories.

In its Thursday board meeting, the regulator extended the interest rate limit, and announced a plan to spend $675,000 on cybersecurity improvements, among other measures.

A legal battle is being waged between a U.S. bank and its insurer over the insurer’s refusal to pay out on a cyber policy, in the wake of hacks on the bank which led to a loss of over $2.4 million. The case flags the problems of insurance in the fast-moving world of digital security.

Nick Shevelyov, former chief security officer, will now serve as its chief information officer. Robin Staples, former head of IT digital, will serve as the new chief technology officer.

Wire and other payments fraud affected a record number of businesses last year, and the FBI is warning in particular about real estate scams.

Mobile e-commerce is growing fast, and online retail fraud levels are keeping pace with this expanded sales volume.

The Trump administration is making more than 80 recommendations to encourage financial innovation within a regulated space, including endorsing the creation of a federal fintech charter.

A community bank in Virginia thought the $2.4 million hackers stole from its customers would be fully covered by its insurance policy, but its carrier begged to differ. Their highly technical legal fight is a cautionary tale for all bankers who assume they are sufficiently covered.

Small banks are being warned to slow down mobile tool development and check vendor arrangements, as researchers repeatedly find vulnerabilities that can be exploited by cybercriminals.

The ongoing threat of data breaches serves as a reminder that every business is subject to PCI DSS compliance, no matter their size. Any company that handles cardholder data in any way must adhere to PCI DSS standards, which can be time-consuming and expensive, writes Matt VanderZwaag, director of product development at US Signal.

The hack's core trick highlights an area of cybersecurity which is often neglected: hardware connected to computer networks which laymen wouldn’t normally consider a computer.

Multifactor authentication is table stakes in today's breach-heavy environment. Falling short of that standard creates a dangerously high threat, according to David Vergara, head of security product marketing for OneSpan.

Within hours of learning about the breach, Brinker International, parent company of the Chili’s chain, issued a news release, website notice and social media advisories informing consumers and other interested parties of the incident, writes John Gunn, CMO of OneSpan.

Overreliance on the smartphone risks mistaking device authentication for user authentication.

The Bank Policy Institute was formed following the merger of The Clearing House Association and the Financial Services Roundtable.

If fintechs can prove effective at overcoming fraud challenges as they scale their customer base, they’ll be able to better capitalize on their unique position of operating independent of legacy platforms as they create a more financially connected consumer experience, writes Dave Excell, founder and CTO of Featurespace.

For years, bitcoin believers have tried to distance the digital coin from the perception that it's only used for criminal activity. New insights into Russian meddling in the U.S. election aren't helping.