Security risk

Fraud targeting accounts payable departments had been on the rise to begin with, but a new sense of urgency has taken hold in the wake of a recent incident that cost Facebook and Google $100 million.

Security companies report a recent spike in spearphishing campaigns originating in Iran and targeting banks.

In the U.K., next-level fraud types — involving technologies such as push payments and P2P — are gaining traction now that EMV has been in place for more than a decade.

After criticizing the prevalence of social sign-in buttons on the internet, Craig Federighi, Apple's senior vice president of software engineering, unveiled one of his company's own. It's essentially Apple Pay without the payments.

Data protection strategies need to consider how data travels and how that impacts vulnerabilities and breach risk, according to comforte AG's Jonathan Deveaux.

At first blush, Netflix may seem to have a fairly simple payment process: Collect a card number once, and keep charging it every month until the customer cancels. But even this process can be demanding.

There are almost no vulnerabilities that aren't covered by some sort of intelligence or data, says Steven Rogers, president and CEO of Centripetal.

The short-term disruption is worth the benefits of improved security and user experience, writes IIya Dubinsky, head of the CTO office at Credorax.

It is human nature to do as little as possible when it comes to secure passwords. The new NIST standard helps solve that problem.

Given the risks of improperly securing a multicloud environment, it's crucial to engage with partners who understand networking, says Mounir Hahad, head of threat research for for Juniper Networks.

The growing sophistication of artificial intelligence is making fraud detection faster and more accurate, which opens up new possibilities for new products and services because of consumer confidence in secure payments, writes Margaret Reid, senior vice president of North America Risk for Visa.

Web-based key users can have secure access to an online management application from anywhere in the world and can change key access permissions, profiles, schedules and validity, even revoking their use virtually at the click of a button, writes Pip Courcoux, sales and product manager for CLIQ Systems at Abloy UK.

By allowing instant issuance to be executed from the most secure infrastructure available, PCI-CP introduces greater flexibility and protection than older standards, according to Ranjeet Khanna, vice president of financial issuance at Entrust Datacard.

When deploying connected devices, firms much balance the mix of innovation and security, writes Pip Courcoux, sales and product manager for CLIQ Systems at Abloy UK.

Before we can advertise the security benefits of digital wallets, we have to address their vulnerabilities, writes Jared McClure, co-founder and COO of CrayPay.

However, before we put all of our eggs in the blockchain basket, we need to examine whether the technology is ready to protect merchants from chargebacks and fraud, contends Suresh Dakshina, president of Chargeback Gurus.

Even as regulations are getting tougher, criminals are getting more sophisticated and creative, writes Ron Teicher, CEO of EverCompliant.

The days of odd emails are gone. Phishing has become a complex big business for crooks, according to Rafael Lourenco, an executive vice president at ClearSale.

Cybersecurity is about protecting the house, the corporation, the people, process, technology and the data, writes Harley Lippman, founder and CEO of Genesis10.

As machine learning generally benefits from lots of examples, by the time a model can be implemented to tackle the new threat, the threat has generally moved on, so frequent updates to models are necessary, writes Oliver Tearle, head of research at The ai Corporation