Vendor management

Automatic updates and data encryption have their advantages. As many CrowdStrike customers learned on July 19, they also have disadvantages.

Criminals breached a third-party database storing Santander customer and employee information, a type of intrusion that banks are increasingly facing.

The recent leadership turmoil at OpenAI underscored the importance of the due diligence banks must conduct before working with a generative artificial intelligence vendor.

Financial services companies are still in the early days of utilizing artificial intelligence, meaning they must closely examine any partnership with a third party. This includes demanding evidence to back up any performance claims these outside companies make.

The move by the company's new CEO is designed to promote greater network effects and benefits for paying members. Bank CEOs say the network helps smaller banks compete.

Some banks are gravitating toward API connectivity to build an "ecosystem of applications." Others like a one-stop-shop or ready access to executives.

UMB Financial hired an outside company to provide customer service in connection with some of its credit cards and debit cards. In a lawsuit, the Missouri bank alleges that the vendor suddenly stopped performing its duties, and that the bank's own employees had to step into the void.

True Digital, which helps financial institutions zero in on vendors, says midsize banks have a unique need for its product.

The Financial Services Information Sharing and Analysis Center has created a forum to let technology vendors provide security updates to their bank clients. Whether more steps need to be taken is a matter of debate.

A new study from Black Kite outlines a variety of threats facing the industry and pinpoints the average cost of a breach at large and small institutions alike.