Financial Services, How To and Security - Information Management Today

Financial Services and the Zero Trust Journey

Data Breach Today

AUGUST 19, 2021

Menlo Security's Mark Guntrip on How to Learn to 'Defend Differently' On one hand, rapid cloud migration has been a boon to financial services organization. But it's also exposed some security weaknesses.

Financial Services

Financial Services Cloud Security IT

How to Respond to the New 'Fraud Universe'

Data Breach Today

JULY 7, 2022

The latest edition of the ISMG Security Report discusses how financial service organizations should respond to the new "fraud universe." It also shares how CISOs can incorporate social media into their threat intelligence programs and describes the skills required by today's security leaders.

Financial Services

Financial Services Security IT

Banking Tech Forecast: Cloudy, With a Chance of Cyber Risk

Data Breach Today

JULY 4, 2023

Cloud Adoption in Financial Services has Soared - as Has Security Risk Financial services organizations face unique cloud security challenges, due to special regulatory, data security and privacy considerations that don't necessarily apply to other industries.

Risk

Risk Financial Services Cloud Privacy

Webinars

Automation, Evolved: Your New Playbook For Smarter Knowledge Work

MORE WEBINARS

Takeaways From Viasat Outage

Data Breach Today

MARCH 31, 2022

This edition analyzes how hackers exploited a misconfigured VPN device, gained access to Viasat's satellite network and caused a massive outage in Europe as Russia's invasion of Ukraine began. It also examines the invasion's impact on financial services and how to modernize security operations.

Financial Services

Financial Services Access Security IT

The ‘Zelle Fraud’ Scam: How it Works, How to Fight Back

Krebs on Security

NOVEMBER 19, 2021

In reality, the fraudster initiates a transaction — such as the “forgot password” feature on the financial institution’s site — which is what generates the authentication passcode delivered to the member. Unfortunately, Otsuka said, the scammers are defeating this layered security control as well.

IT

IT Passwords Authentication Phishing

Cloudy, With a Chance of Cyber Risk

Data Breach Today

JULY 4, 2023

Cloud Adoption in Financial Services has Soared - as Has Security Risk Financial services organizations face unique cloud security challenges, due to special regulatory, data security and privacy considerations that don't necessarily apply to other industries.

Risk

Risk Financial Services Cloud Privacy

What is credential stuffing? And how to prevent it?

Security Affairs

MARCH 29, 2022

Earmarked by the FBI as a particular threat to the financial service industry just over a year ago, the increase of internet traffic, data breaches and API usage all contribute to the perfect conditions for successful credential stuffing attacks. How to stop credential stuffing attacks. And how to prevent it?

IT

IT Passwords Authentication Data Privacy

Fraud Awareness Week: How to Effectively Protect Your Data and Combat Fraudsters

Thales Cloud Protection & Licensing

NOVEMBER 18, 2024

Fraud Awareness Week: How to Effectively Protect Your Data and Combat Fraudsters madhav Tue, 11/19/2024 - 05:28 International Fraud Awareness Week (November 17-23) is a critical time to consider the significant risks that fraud poses to individuals and organizations. Offers database encryption to protect against abuse by privileged users.

Financial Services

Financial Services Encryption Digital transformation Compliance

Data Protection in Financial Services Week 2022

Data Matters

FEBRUARY 25, 2022

Sidley and OneTrust DataGuidance are pleased to announce that registration is now open for their annual Data Protection in Financial Services (DPFS) Week. Join us from February 28 – March 3 for DPFS Week 2022 , a series of webinars looking at the impacts of data privacy across the financial sector.

Financial Services

Financial Services Privacy Data Privacy Cybersecurity

SHARED INTEL Q&A: Forrester highlights why companies need to strive for ‘cryptoagility’– today

The Last Watchdog

MARCH 24, 2025

Quantum computings ability to break todays encryption may still be years awaybut security leaders cant afford to wait. Forresters The Future of Quantum Security makes it clear: the transition to quantum-safe cryptography must start now. So where should security leaders focus? Why is that a dangerous mindset?

Encryption

Encryption Financial Services Risk Libraries

Congress Hears Ideas for Battling ID Theft

Data Breach Today

SEPTEMBER 16, 2019

Experts Call for Rethinking Identity Management in Financial Services Sector As cybercriminals adopt new methods to steal and manipulate victims' identities, the U.S. House committee hearing.

Artificial Intelligence

Artificial Intelligence Financial Services Security

OpenText Reimagines Information at Financial Services Summit in NYC

OpenText Information Management

OCTOBER 1, 2024

OpenText is presenting the Financial Services Summit 2024 , which taking place on Oct. This exclusive in-person event focuses on harnessing AI to enhance trust and regulatory compliance in the financial services industry. For more information and registration, visit OpenText Financial Services Summit.

Financial Services

Financial Services Compliance Marketing Cloud

Mitigating the impact of climate change in insurance and other financial services

IBM Big Data Hub

MARCH 25, 2024

For other financial services firms outside of the insurance sector, property accepted as loan security might face climate-related risks as well. Across the financial sector, there are transition risks to consider as we move to a low-carbon economy. Financial services firms can use the tool for “what if?”

Financial Services

Financial Services Insurance Risk Agriculture

NEW TECH: Security Compass streamlines the insertion of security best practices into DevOps

The Last Watchdog

MARCH 31, 2020

Related: A firewall for microservices DevSecOps arose to insert security checks and balances into DevOps, aiming to do so without unduly degrading speed and agility. If you’re thinking that speed and security are like oil and water, you’re right. For a full drill down on our discussion, please give the accompanying podcast a listen.

Security

Security Privacy Risk Financial Services

Infosys McCamish Systems data breach impacted over 6 million people

Security Affairs

JUNE 29, 2024

IMS specializes in providing business process outsourcing (BPO) and information technology (IT) services specifically tailored for the insurance and financial services industries. In February, Bank of America began notifying some customers following the IMS data breach. ” reads a press release published by the company.

Data breaches

Data breaches e-Discovery Ransomware Insurance

The Escalating Problem of Protecting Connected Devices

Data Breach Today

NOVEMBER 2, 2018

The latest edition of the ISMG Security Report features Kevin McDonald of the Mayo Clinic discussing how to secure connected medical devices. Plus, updates on the indictments of Chinese agents for hacking and the unveiling of the Financial Services Sector Cybersecurity Profile.

Financial Services

Financial Services Cybersecurity Security

Mysterious custom malware used to steal 1.2TB of data from million PCs

Security Affairs

JUNE 11, 2021

million unique email addresses, NordLocker found, for an array of different apps and services. These included logins for social media, online games, online marketplaces, job-search sites, consumer electronics, financial services, email services, and more. How to protect your data from such kind of malware?

Computer and Electronics

Computer and Electronics Archiving Encryption Passwords

OCR Labs exposes its systems, jeopardizing major banking clients

Security Affairs

APRIL 6, 2023

Financial services are the main target for cybercriminals, so the threat for the organizations and their customers is severe. The leak also affected Bloom Money and Admiral Money – two financial companies based in the UK, and Reed, which is the UK’s top recruitment agency. env) belonging to idkit.com, owned by OCR Labs.

IT

IT Financial Services Access Risk

RSAC Fireside Chat: The need to stop mobile apps from exposing API keys, user credentials in runtime

The Last Watchdog

MAY 23, 2023

Related: Collateral damage of T-Mobile hack Yet, APIs have also exponentially increased the attack vectors available to malicious hackers – and the software community has not focused on slowing the widening of this security gap. LW provides consulting services to the vendors we cover.) I’ll keep watch and keep reporting.

Digital transformation

Digital transformation Financial Services Encryption Communications

RSAC insights: Introducing ‘CWPP’ and ‘CSPM,’ new frameworks to secure cloud infrastructure

The Last Watchdog

MAY 17, 2021

Related: How credential stuffing fuels account takeovers. In pulling off that milestone hack, Paige Thompson took advantage of CapOne’s lack of focus on cloud security as the banking giant rushed headlong into leveraging Amazon Web Services. The summer of 2019 was a heady time for the financial services industry.

Cloud

Cloud Security Risk Financial Services

New York Department of Financial Services Released New Guidance Addressing COVID-19 Related Cybersecurity Risks

HL Chronicle of Data Protection

APRIL 17, 2020

Continuing its focus on COVID-19’s impact on its regulated entities, on April 13, the New York Department of Financial Services (NYDFS) released new cybersecurity guidance in response to the COVID-19 pandemic.

Financial Services

Financial Services Risk Cybersecurity Phishing

How to achieve data quality excellence for BCBS 239 risk data aggregation compliance

Collibra

JANUARY 9, 2025

Figure 3: Debt to income definition Managing secure access Collibra Data Quality and Observability uses role based access control ( RBAC ) for managing secure access to information. For additional information see security configuration. Learn more about how we can help you with BCBS 239 compliance.

Compliance

Compliance Risk Financial Services Access

NEW TECH: Baffin Bay Networks takes a ‘cloud-first’ approach to securing web applications

The Last Watchdog

SEPTEMBER 10, 2019

That experiment conducted by a reporter for The Atlantic crystalizes the seemingly intractable security challenge businesses face today. million and grown to 42 employees, winning customers in leading media firms, financial services companies and government agencies in the Nordics.

Cloud

Cloud Security Digital transformation Financial Services

Security Compliance & Data Privacy Regulations

eSecurity Planet

AUGUST 9, 2022

Regulatory compliance and data privacy issues have long been an IT security nightmare. GDPR (among other legal requirements in the EU and elsewhere) can expose multinational organizations to hefty financial penalties, additional rules for disclosing data breaches, and increased scrutiny of the adequacy of their data security.

Data Privacy

Data Privacy Compliance Privacy Security

Simplifying Compliance in the Complex U.S. FinServ Regulatory Landscape

Thales Cloud Protection & Licensing

JANUARY 16, 2025

However, as important as PCI may be, United States financial services organizations operate in one of the worlds most stringent and complex compliance landscapes. Understanding the US FinServ Compliance Landscape The US financial services industry is subject to a vast number of laws and regulations.

Compliance

Compliance Financial Services Encryption Insurance

MY TAKE: Coping with security risks, compliance issues spun up by ‘digital transformation’

The Last Watchdog

AUGUST 22, 2019

A core security challenge confronts just about every company today. While the benefits of DX are highly-touted , this shift has also spawned a whole new tier of unprecedented privacy and security challenges. The cloud is kind of dragging this movement along and DevOps and security are center stage, at the moment.”

Digital transformation

Digital transformation Compliance Risk Security

NEW TECH: Cequence Security deploys defense against botnets’ assault on business logic

The Last Watchdog

MARCH 26, 2019

One way to grasp how digital transformation directly impacts the daily operations of any organization – right at this moment — is to examine the company’s application environment. Related: How new exposures being created by API sprawl. Legacy systems simply cannot address the security risks presented by APIs.

Security

Security Digital transformation Financial Services Access

SHARED INTEL: How attacks on web, mobile apps are being fueled by rising API vulnerabilities

The Last Watchdog

APRIL 7, 2020

I had the chance to discuss this with Matt Keil, director of product marketing at Cequence Security , a Sunnyvale, Calif.-based based application security vendor that’s in the thick of helping businesses mitigate web application exposures. A security mindset still needs to take hold at many more levels. We spoke at RSA 2020.

Digital transformation

Digital transformation Financial Services Marketing Retail

Putting data storage at the forefront of cloud security

IBM Big Data Hub

NOVEMBER 7, 2023

Recent advances in areas like AI and quantum computing offer transformative potential for businesses, but may also bring new risks and security challenges. IBM is working to address these challenges and evolving threats by helping organizations support highly secure, resilient and durable storage through technology like Cloud Object Storage.

Cloud

Cloud Financial Services Security Compliance

NEW TECH: How ‘cryptographic splitting’ bakes-in security at a ‘protect-the-data-itself’ level

The Last Watchdog

SEPTEMBER 23, 2019

Tech consultancy IDC recently estimated that global spending on security-related hardware, software and services is growing at a compound annual growth rate of 9.2% Here are key takeaways: Security benefits Protect the data itself. It bakes security in and at the deepest level. It’s not for lack of trying. Talk more soon.

Security

Security Encryption Compliance Data breaches

SHARED INTEL: Akamai reports web attack traffic spiked 62 percent in 2020 — all sectors hit hard

The Last Watchdog

MAY 24, 2021

Akamai, which happens to be the Hawaiian word for “smart,” recently released its annual State of the Internet security report. billion hitting financial services organizations — an increase of more than 45 percent year-over-year in that sector. billion web attacks globally; 736 million in the financial services sector.

Financial Services

Financial Services Passwords Data breaches Authentication

UNRAVELING EternalBlue: inside the WannaCry’s enabler

Security Affairs

SEPTEMBER 1, 2023

Here is how the NSA-developed cyber monster works, and how you should defend against it. EternalBlue is a Windows exploit created by the US National Security Agency (NSA) and used in the 2017 WannaCry ransomware attack. Pro 9600 Windows Server 2021 R2 Standard How to defend against EternalBlue?

Phishing

Phishing Ransomware Search queries Access

Top 12 Cloud Security Best Practices for 2021

eSecurity Planet

SEPTEMBER 10, 2021

From the very beginning of the cloud computing era, security has been the biggest concern among enterprises considering the public cloud. In addition, 95 percent of survey respondents confirmed that they are extremely to moderately concerned about public cloud security. What is cloud security?

Cloud

Cloud Security Encryption Risk

How to Prevent Data Breaches: Data Breach Prevention Tips

eSecurity Planet

AUGUST 22, 2023

And breaches will occur – because bad guys make a living by figuring out ways to circumvent security best practices. Prioritize Data Protection The downfall of many security strategies is that they become too general and too thinly spread. But it requires different levels of security.

Data breaches

Data breaches Big data Cybersecurity Security

The Most Popular Data Security Webinars of 2022: Sovereignty, Cloud Security and Compliance Top the List

Thales Cloud Protection & Licensing

JANUARY 11, 2023

The Most Popular Data Security Webinars of 2022: Sovereignty, Cloud Security and Compliance Top the List. Throughout 2022, Thales hosted more than 40 webinars on a wide variety of cybersecurity topics, including, cloud security, data sovereignty, compliance, data threat trends, and rethinking approaches to role-based authentication.

Compliance

Compliance Cloud Security Financial Services

MY TAKE: Why companies and consumers must collaborate to stop the plundering of IoT systems

The Last Watchdog

NOVEMBER 9, 2020

The challenge of the moment is that many companies already have their hands full trying to improve their security posture as they migrate their legacy, on premises, IT systems to the cloud. The operating systems of home IoT devices today typically get shipped with minimal logon security. This is a sign of IoT attacks to come.

IoT

IoT Passwords Artificial Intelligence Risk

GUEST ESSAY: Massive NPD breach tells us its high time to replace SSNs as an authenticator

The Last Watchdog

SEPTEMBER 24, 2024

The stolen information included full names, Social Security numbers, mailing addresses, phone numbers, and email addresses of millions of U.S., Investigations are ongoing, and several class-action lawsuits have been filed, alleging that the company failed to implement sufficient security measures. Canadian, and British citizens.

Authentication

Authentication IT ROT Compliance

DEEP TECH NEWS: Respecting individual rights by using ‘privacy preserving aggregate statistics’

The Last Watchdog

JANUARY 28, 2024

I had the chance to visit with , senior scientist at NTT Research’s Cryptography & Information Security (CIS) Lab , to learn more about the progress being made on a promising concept called “privacy preserving aggregate statistics.” LW provides consulting services to the vendors we cover.) I’ll keep watch and keep reporting.

Privacy

Privacy Data Privacy GDPR Personal data

Best Managed Security Service Providers (MSSPs)

eSecurity Planet

JANUARY 27, 2022

As threats mount from ransomware gangs , Russian-backed hacker groups , and other nation-sponsored attackers and as the growth in remote work makes security management increasingly complicated, many companies are finding it makes sense to turn to a managed security service provider (MSSP) for help with handling an extremely complex threat landscape.

Security

Security Cloud Compliance Analytics

Best practices for hybrid cloud banking applications secure and compliant deployment across IBM Cloud and Satellite

IBM Big Data Hub

NOVEMBER 29, 2023

Financial Services clients are increasingly looking to modernize their applications. Moreover, many of these financial services applications support regulated workloads, which require strict levels of security and compliance, including Zero Trust protection of the workloads. initiative.

Cloud

Cloud Financial Services Security Compliance

CyberheistNews Vol 13 #13 [Eye Opener] How to Outsmart Sneaky AI-Based Phishing Attacks

KnowBe4

MARCH 28, 2023

CyberheistNews Vol 13 #13 | March 28th, 2023 [Eye Opener] How to Outsmart Sneaky AI-Based Phishing Attacks Users need to adapt to an evolving threat landscape in which attackers can use AI tools like ChatGPT to craft extremely convincing phishing emails, according to Matthew Tyson at CSO. "A Is the email enticing you to click on a link?'

Phishing

Phishing Security awareness Insurance Cybersecurity

Q&A: Why SOAR startup Syncurity is bringing a ‘case-management’ approach to threat detection

The Last Watchdog

MARCH 1, 2019

There’s a frantic scramble going on among those responsible for network security at organizations across all sectors. Enterprises have dumped small fortunes into stocking their SOCs (security operations centers) with the best firewalls, anti-malware suites, intrusion detection, data loss prevention and sandbox detonators money can buy.

Digital transformation

Digital transformation Marketing Analytics Risk

Is there a “right” cloud strategy for banking?

IBM Big Data Hub

JUNE 12, 2023

We see public cloud as an enabler of a better future for financial services, not as a destination. Understand the immediate power and sustained value of great architecture with embedded security controls and continuous monitoring. The future for financial services is bright.

Cloud

Cloud Financial Services Digital transformation Risk

NEW TECH: This free tool can help gauge, manage third-party cyber risk; it’s called ‘VRMMM’

The Last Watchdog

JANUARY 30, 2019

Turn the corner into 2019 and we find Citigroup, CapitalOne, Wells Fargo and HSBC Life Insurance among a host of firms hitting the crisis button after their customers’ records turned up on a database of some 24 million financial and banking documents found parked on an Internet-accessible server — without so much as password protection.

Risk

Risk Financial Services Insurance Data breaches

Financial Services and the Zero Trust Journey

How to Respond to the New 'Fraud Universe'

Webinars

Trending Sources

Banking Tech Forecast: Cloudy, With a Chance of Cyber Risk

Webinars

Takeaways From Viasat Outage

The ‘Zelle Fraud’ Scam: How it Works, How to Fight Back

Cloudy, With a Chance of Cyber Risk

What is credential stuffing? And how to prevent it?

Fraud Awareness Week: How to Effectively Protect Your Data and Combat Fraudsters

Data Protection in Financial Services Week 2022

SHARED INTEL Q&A: Forrester highlights why companies need to strive for ‘cryptoagility’– today

Congress Hears Ideas for Battling ID Theft

OpenText Reimagines Information at Financial Services Summit in NYC

Mitigating the impact of climate change in insurance and other financial services

NEW TECH: Security Compass streamlines the insertion of security best practices into DevOps

Infosys McCamish Systems data breach impacted over 6 million people

The Escalating Problem of Protecting Connected Devices

Mysterious custom malware used to steal 1.2TB of data from million PCs

OCR Labs exposes its systems, jeopardizing major banking clients

RSAC Fireside Chat: The need to stop mobile apps from exposing API keys, user credentials in runtime

RSAC insights: Introducing ‘CWPP’ and ‘CSPM,’ new frameworks to secure cloud infrastructure

New York Department of Financial Services Released New Guidance Addressing COVID-19 Related Cybersecurity Risks

How to achieve data quality excellence for BCBS 239 risk data aggregation compliance

NEW TECH: Baffin Bay Networks takes a ‘cloud-first’ approach to securing web applications

Security Compliance & Data Privacy Regulations

Simplifying Compliance in the Complex U.S. FinServ Regulatory Landscape

MY TAKE: Coping with security risks, compliance issues spun up by ‘digital transformation’

NEW TECH: Cequence Security deploys defense against botnets’ assault on business logic

SHARED INTEL: How attacks on web, mobile apps are being fueled by rising API vulnerabilities

Putting data storage at the forefront of cloud security

NEW TECH: How ‘cryptographic splitting’ bakes-in security at a ‘protect-the-data-itself’ level

SHARED INTEL: Akamai reports web attack traffic spiked 62 percent in 2020 — all sectors hit hard

UNRAVELING EternalBlue: inside the WannaCry’s enabler

Top 12 Cloud Security Best Practices for 2021

How to Prevent Data Breaches: Data Breach Prevention Tips

The Most Popular Data Security Webinars of 2022: Sovereignty, Cloud Security and Compliance Top the List

MY TAKE: Why companies and consumers must collaborate to stop the plundering of IoT systems

GUEST ESSAY: Massive NPD breach tells us its high time to replace SSNs as an authenticator

DEEP TECH NEWS: Respecting individual rights by using ‘privacy preserving aggregate statistics’

Best Managed Security Service Providers (MSSPs)

Best practices for hybrid cloud banking applications secure and compliant deployment across IBM Cloud and Satellite

CyberheistNews Vol 13 #13 [Eye Opener] How to Outsmart Sneaky AI-Based Phishing Attacks

Q&A: Why SOAR startup Syncurity is bringing a ‘case-management’ approach to threat detection

Is there a “right” cloud strategy for banking?

NEW TECH: This free tool can help gauge, manage third-party cyber risk; it’s called ‘VRMMM’

Stay Connected