The Last Watchdog

MARCH 31, 2020

Related: A firewall for microservices DevSecOps arose to insert security checks and balances into DevOps, aiming to do so without unduly degrading speed and agility. If you’re thinking that speed and security are like oil and water, you’re right. For a full drill down on our discussion, please give the accompanying podcast a listen.

Security 194

Security Privacy Risk Financial Services 194

Hunton Privacy

JANUARY 20, 2023

On January 20, 2023, The Centre for Information Policy Leadership (“CIPL”) at Hunton Andrews Kurth published “Digital Assets and Privacy,” a discussion paper compiling insights from workshops with CIPL member companies that explored the intersection of privacy and digital assets, with a particular focus on blockchain technology.

Paper 134

Paper Blockchain Privacy Financial Services 134

The Last Watchdog

SEPTEMBER 21, 2018

It’s rise in popularity has helped drive a new trend for start-ups to go “Cloud Native,” erecting their entire infrastructure, from the ground up, leveraging cloud services like Amazon Web Services, Microsoft Azure and Google Cloud. Security burden. Rising API exposures are another big security concern, by the way.

Cloud 203

Cloud Security Mining Financial Services 203

Krebs on Security

MAY 3, 2019

A Pennsylvania credit union is suing financial industry technology giant Fiserv , alleging that “baffling” security vulnerabilities in the company’s software are “wreaking havoc” on its customers. Most alarmingly, this security control was purely illusory.

Security 220

Security Passwords Financial Services Sales 220

OpenText Information Management

AUGUST 26, 2024

Fast, easy, personalized, and engaging experiences are the name of the game in financial services. Here are six ways financial services organizations are tapping into the power of conversational experiences with mission-critical messaging: 1. Multi-factor authentication Security and privacy are key to building trust.

Financial Services 69

Financial Services Marketing Insurance Communications 69

The Last Watchdog

AUGUST 30, 2021

One of the most commonly repeated phrases in the security industry is, “Security teams hate their SIEM!”. Security Information and Event Management (SIEM) is not what it was 20 years ago. Here are five misconceptions, or myths, related to the SIEM, now security analytics platforms: • SIEMs are only good for compliance.

Analytics 230

Analytics Security Marketing Compliance 230

Krebs on Security

JUNE 18, 2021

In May 2019, KrebsOnSecurity broke the news that the website of mortgage settlement giant First American Financial Corp. NYSE:FAF ] was leaking more than 800 million documents — many containing sensitive financial data — related to real estate transactions dating back 16 years. First American Financial Corp.

Insurance 320

Insurance Risk Financial Services Mining 320

Hunton Privacy

FEBRUARY 22, 2021

Lastly, the Alert provides recommendations to secure data, noting that (1) regulated entities should review whether it is necessary to display any NPI (even redacted NPI) and (2) NPI should not be displayed on public-facing sites unless there is a compelling reason to do so.

Financial Services 86

Financial Services Insurance Cybersecurity Analytics 86

Data Matters

MAY 4, 2022

Sidley announced today that David Lashway and John Woods have joined as partners in the firm’s Privacy and Cybersecurity practice in Washington, D.C. Adding significant bench strength to our Chambers-ranked Privacy and Cybersecurity practice is a win for Sidley and our clients,” said Yvette Ostolaza, Sidley’s Management Committee Chair.

Cybersecurity 167

Cybersecurity Marketing Security Privacy 167

DLA Piper Privacy Matters

AUGUST 8, 2023

Authors: Carolyn Bigg, Amanda Ge and Venus Cheung On July 24, 2023, the People’s Bank of China (“ PBOC ”) released the Measures for the Management of Data Security in the Business Areas Falling into PBOC’s Jurisdiction (Draft for Comment) (“ Draft Measures” ) for public consultation, which closes on August 24, 2023.

Financial Services 98

Financial Services Personal data Compliance Data collection 98

Thales Cloud Protection & Licensing

JANUARY 16, 2024

Key recommendations for Financial Services to improve cybersecurity and resilience in multi-clouds madhav Wed, 01/17/2024 - 05:46 The Digital Operational Resilience Act (DORA) will apply to the EU financial sector from 17 January 2025. As set out in its Article 2, DORA applies to the entire financial services sector.

Financial Services 83

Financial Services Cloud Cybersecurity Encryption 83

Data Protector

JANUARY 29, 2017

Does it really mean that in 481 days, European privacy regulators will be heralding the first megafine for non-compliance with one of the GDPR’s more obscure requirements? And also, what standard of evidence is necessary to be generated, just in case privacy regulators exercise their Article 30(4) right to request it. I think not.

GDPR 136

GDPR Privacy Compliance Personal data 136

The Last Watchdog

AUGUST 15, 2018

In a move to blanket the Internet with encrypted website traffic, Google is moving forward with its insistence that straggling website publishers adopt HTTPS Secure Sockets Layer (SSL). Related: How PKI can secure IoT. This makes any personal information and details of financial transactions typed on HTTP web pages easy pickings.

Security 203

Security Encryption Authentication Financial Services 203

Krebs on Security

AUGUST 13, 2021

Come check out Antinalysis, the new address risk analyzer,” reads the service’s announcement, pointing to a link only accessible via ToR. But with countless criminals now making millions from ransomware, there is certainly a vast, untapped market for services that help those folks improve their operational security.

Blockchain 340

Blockchain Analytics Marketing Ransomware 340

IBM Big Data Hub

JANUARY 16, 2024

The start of 2024 brings forth many questions as to what we can expect in the year ahead, especially in the financial services industry, where technological advances have skyrocketed and added complexities to an already turbulent landscape.

Financial Services 48

Financial Services Customer Experience Cloud Digital transformation 48

Schneier on Security

JANUARY 31, 2024

Beyond these economic effects, the rules have important data security benefits. The CFPB’s rules align with a key security idea: the decoupling principle. When you get a car loan or a house mortgage, that information, along with your Social Security number and other sensitive data, is also shared with unknown third parties.

Financial Services 125

Financial Services Privacy Personal data Marketing 125

ARMA International

NOVEMBER 7, 2019

The scope of a records and information management (RIM) program in financial services can seem overwhelming. Compared to other industries, the complexities of managing records and information in financial services are arguably some of the toughest to solve, primarily because of the intense regulatory scrutiny.

Financial Services 52

Financial Services Communications Compliance Risk 52

The Last Watchdog

SEPTEMBER 23, 2019

Tech consultancy IDC recently estimated that global spending on security-related hardware, software and services is growing at a compound annual growth rate of 9.2% Here are key takeaways: Security benefits Protect the data itself. It bakes security in and at the deepest level. It’s not for lack of trying. Talk more soon.

Security 159

Security Encryption Compliance Data breaches 159

The Last Watchdog

DECEMBER 6, 2022

Much more effective authentication is needed to help protect our digital environment – and make user sessions smoother and much more secure. Let’s be clear, users want a better authentication experience, one that is more secure, accurate and easier to use. Invisible security. Related: Why FIDO champions passwordless systems.

Authentication 203

Authentication Passwords Artificial Intelligence Financial Services 203

The Last Watchdog

JULY 11, 2023

Related: Preserving the privacy of the elderly As more traders and investors engage in these investment avenues, it is crucial to adopt robust security measures to safeguard sensitive and regulated information. Continuous threat detection is a proactive approach to maintaining trading environment security.

Encryption 189

Encryption IT Risk Financial Services 189

Hunton Privacy

JANUARY 24, 2018

On January 22, 2018, the New York Department of Financial Services (“NYDFS”) issued a press release reminding entities covered by its cybersecurity regulation that the first certification of compliance with the regulation is due on or prior to February 15, 2018.

Financial Services 58

Financial Services Cybersecurity Compliance Insurance 58

Krebs on Security

NOVEMBER 19, 2021

In reality, the fraudster initiates a transaction — such as the “forgot password” feature on the financial institution’s site — which is what generates the authentication passcode delivered to the member. Unfortunately, Otsuka said, the scammers are defeating this layered security control as well.

IT 363

IT Passwords Authentication Phishing 363

Data Matters

FEBRUARY 10, 2021

On February 4, 2021, the New York Department of Financial Services (NYDFS) issued Circular Letter No. The post New York Department of Financial Services Issues First Guidance by a U.S. Regulator Concerning Cyber Insurance appeared first on Data Matters Privacy Blog. 1 See W.B.

Insurance 79

Insurance Financial Services Cybersecurity Risk 79

The Last Watchdog

AUGUST 22, 2019

A core security challenge confronts just about every company today. While the benefits of DX are highly-touted , this shift has also spawned a whole new tier of unprecedented privacy and security challenges. The cloud is kind of dragging this movement along and DevOps and security are center stage, at the moment.”

Digital transformation 147

Digital transformation Compliance Risk Security 147

Data Protection Report

DECEMBER 23, 2019

This blogpost summarises our recent webinar: “ An urgent message from Berlin: The importance of record retention in privacy and cybersecurity ”. The authority claimed a violation of data minimisation and privacy by design principles under the EU General Data Protection Regulation (GDPR). . Why should this be a high priority project?

Privacy 144

Privacy Compliance Personal data Risk 144

Hunton Privacy

APRIL 22, 2020

On April 13, 2020, the New York Department of Financial Services (“NYDFS”) issued guidance (“April guidance”) to all New York State entities covered under NYDFS’s cybersecurity regulation regarding assessing and addressing heightened cybersecurity risks due to the COVID-19 pandemic.

Financial Services 71

Financial Services Cybersecurity Risk Phishing 71

Data Matters

JANUARY 28, 2022

The advisory was promptly endorsed by the National Cyber Security Centre, a division of Government Communications Headquarters (“GCHQ”), a UK intelligence agency. The service determines whether an application is malicious or suspicious and, if so, will block it from making changes to any files in a protected folder. The post U.S.

Cybersecurity 157

Cybersecurity Financial Services Authentication Government 157

Data Matters

AUGUST 19, 2020

On July 21, 2020, the New York State Department of Financial Services (NYDFS or the Department) issued a statement of charges and notice of hearing (the Statement) against First American Title Insurance Company (First American) for violations of the Department’s Cybersecurity Requirements for Financial Services Companies, 23 N.Y.C.R.R.

Financial Services 68

Financial Services Cybersecurity Insurance Risk 68

Hunton Privacy

JUNE 9, 2022

515 , making Vermont the twenty-first state to enact legislation based on the National Association of Insurance Commissioners Insurance Data Security Model Law (“MDL-668”). Information Security Program Requirements. Instead, licensees are bound by the notification requirements of the Vermont Security Breach Notice Act, 9 V.S.A.

Insurance 107

Insurance Security Information Security Cybersecurity 107

Security Affairs

MARCH 17, 2020

Security experts from vpnMentor have discovered two corporate finance companies that leak half a million legal and financial documents online. vpnMentor experts uncovered a database exposed online on Amazon Web Services (AWS) that is leaking a huge amount of sensitive legal and financial documents. Pierluigi Paganini.

Financial Services 142

Financial Services Access Privacy Security 142

The Last Watchdog

NOVEMBER 13, 2018

And innovation is percolating among newer entrants, like PerimeterX, Shape Security and Signal Sciences. This week a new entrant in this field, Cequence Security , formally launched what it describes as a “game-changing” application security platform. Shifting security challenge.

Security 140

Security Digital transformation B2C Cloud 140

Security Affairs

OCTOBER 14, 2020

Cyber threats cause significant economic damage and threaten customer protection and data privacy. Experts are observing a significant increase in the number of Ransomware attacks against hospitals, financial institutions, schools, and other critical infrastructure in G7 countries. . ” continues the statement.

Ransomware 141

Ransomware IT Financial Services Data Privacy 141

Thales Cloud Protection & Licensing

JANUARY 11, 2023

The Most Popular Data Security Webinars of 2022: Sovereignty, Cloud Security and Compliance Top the List. Throughout 2022, Thales hosted more than 40 webinars on a wide variety of cybersecurity topics, including, cloud security, data sovereignty, compliance, data threat trends, and rethinking approaches to role-based authentication.

Compliance 83

Compliance Cloud Security Financial Services 83

Hunton Privacy

JUNE 17, 2009

The proposal raises a number of privacy and data security questions, such as the role of the new financial services consumer protection agency in protecting privacy and data security and the continued role of the Federal Trade Commission as the lead agency in this area.

Financial Services 40

Financial Services Privacy Security IT 40

Data Protection Report

JANUARY 6, 2020

The Court of Justice of the European Union (CJEU) will determine the validity of the EU Standard Contractual Clauses (SCCs) ( Data Protection Commissioner v Facebook Ireland Limited, Maximillan Schrems ) whilst the General Court of the EU will consider the future of Privacy Shield (La Quadrature du Net v Commission). In the U.S.,

Privacy 85

Privacy GDPR Data breaches Risk 85

DLA Piper Privacy Matters

AUGUST 23, 2021

Rather than bringing substantial changes to the existing China data privacy framework, the PIPL helpfully consolidates and clarifies obligations on processing of personal information at a national law level. To be clear, this is not China’s own GDPR.

Data Privacy 111

Data Privacy Privacy Compliance Analytics 111

Hunton Privacy

NOVEMBER 23, 2022

On November 9, 2022, the New York Department of Financial Services (NYDFS) released its second, proposed amendments to the Part 500 Cybersecurity Rule. Covered Entities must have a monitoring process that ensures prompt notification of any new security vulnerabilities. Cybersecurity Governance.

Financial Services 55

Financial Services Cybersecurity Ransomware Risk 55