Data Breach Today

SEPTEMBER 23, 2021

Deepak Kumar, guest speaks at the keynote session at ISMG Virtual Cybersecurity Summit Asia: Financial Services The session addresses how the banking and financial services organizations can take steps to invest for operational speed, drive value from new investments, enhance their training and cybersecurity collaboration, and work to sustain what (..)

Cybersecurity 173

Cybersecurity Financial Services 173

KnowBe4

SEPTEMBER 28, 2023

A recent panel discussion of banking CISOs and experts at the SIBOS conference focused on the current state of ransomware and what institutions should do to protect themselves.

Financial Services 124

Financial Services Ransomware Security awareness Phishing 124

Data Protection Report

NOVEMBER 8, 2023

On November 1, 2023, the New York Department of Financial Services (“NYDFS”) released the finalized amendments of Part 500 of its cybersecurity regulations. Covered entities shall also provide at least annual training and cybersecurity awareness programs that anticipate social engineering attacks (500.14).

Financial Services 111

Financial Services Cybersecurity Compliance Government 111

DLA Piper Privacy Matters

AUGUST 8, 2023

Regular training and periodic audits shall be conducted to ensure the effectiveness of data security measures in place. The Draft Measures reflects PBOC’s approach in implementing the DSL requirements within the financial services industry.

Financial Services 98

Financial Services Personal data Compliance Data collection 98

Rocket Software

MARCH 14, 2022

Analyst firm IDC recently published a Vendor Spotlight report featuring ASG Mobius Content Services (Mobius) and its applications in the financial service and insurance industries. Solving these challenges requires employee training and prioritization of documents to manage the increasingly high volume.

Financial Services 82

Financial Services Insurance Digital transformation Paper 82

HL Chronicle of Data Protection

APRIL 17, 2020

Continuing its focus on COVID-19’s impact on its regulated entities, on April 13, the New York Department of Financial Services (NYDFS) released new cybersecurity guidance in response to the COVID-19 pandemic. Third Party Risk. Third-party vendors may struggle to deal with COVID-19 restrictions.

Financial Services 75

Financial Services Risk Cybersecurity Phishing 75

The Last Watchdog

MAY 1, 2019

Related: Why diversity in training is a good thing. He came up with a new approach to testing and training the bank’s employees – and the basis for a new company, LucySecurity. People tend to be very resistant to training,” Bastable told me. How much better? But as soon as you stop, the number quickly goes back up.”

Phishing 166

Phishing Financial Services Manufacturing Education 166

The Last Watchdog

MAY 24, 2021

billion hitting financial services organizations — an increase of more than 45 percent year-over-year in that sector. billion web app attacks last year, with more than 736 million targeting financial services. billion web attacks globally; 736 million in the financial services sector. A: Everything.

Financial Services 178

Financial Services Passwords Data breaches Authentication 178

Data Matters

FEBRUARY 10, 2021

On February 4, 2021, the New York Department of Financial Services (NYDFS) issued Circular Letter No. This includes not only recruitment of those with cybersecurity experience and skills but a commitment by insurers to these employees’ training and development so as to “properly understand and evaluate cyber risk.”. 1 See W.B.

Insurance 79

Insurance Financial Services Cybersecurity Risk 79

Hunton Privacy

APRIL 22, 2020

On April 13, 2020, the New York Department of Financial Services (“NYDFS”) issued guidance (“April guidance”) to all New York State entities covered under NYDFS’s cybersecurity regulation regarding assessing and addressing heightened cybersecurity risks due to the COVID-19 pandemic.

Financial Services 71

Financial Services Cybersecurity Risk Phishing 71

The Last Watchdog

NOVEMBER 9, 2020

IoT devices help remotely control our household appliances, power plants, smart buildings, factories, airports, shipyards, trucks, trains and military. In one very recent caper, the attackers targeted the CFO of a financial services firm, as he worked from home, Sherman says. And we’re just getting started.

IoT 279

IoT Passwords Artificial Intelligence Risk 279

Schneier on Security

MAY 9, 2024

Compared to last year, criminals seem to have abandoned any attempt at training real criminal large language models (LLMs). We are finally seeing the emergence of actual criminal deepfake services, with some bypassing user verification used in financial services. Instead, they are jailbreaking existing ones.

Financial Services 106

Financial Services Artificial Intelligence 106

Data Matters

AUGUST 19, 2020

On July 21, 2020, the New York State Department of Financial Services (NYDFS or the Department) issued a statement of charges and notice of hearing (the Statement) against First American Title Insurance Company (First American) for violations of the Department’s Cybersecurity Requirements for Financial Services Companies, 23 N.Y.C.R.R.

Financial Services 68

Financial Services Cybersecurity Insurance Risk 68

IBM Big Data Hub

DECEMBER 8, 2023

The IBM Center for Cloud Training has been busy creating and delivering training and certification programs that prepare you to work with the infrastructure and data that Cloud requires. Being proactive in your learning can significantly boost your career and empower you as these inevitable changes become our new reality.

Cloud 65

Cloud Financial Services Access IT 65

The Last Watchdog

JULY 11, 2023

Conduct employee training and awareness programs. Investing in comprehensive employee training and awareness programs is essential for a security-conscious environment. Active awareness of security developments allows for adaptable strategies in addressing emerging risks and effectively protecting investor data.

Encryption 189

Encryption IT Risk Financial Services 189

Data Protection Report

MARCH 1, 2021

On March 3, 2021, the New York Department of Financial Services (NYDFS) announced a Consent Order with a NYDFS-licensed Maine-based mortgage banker and loan servicer settling alleged violations of the NYDFS cybersecurity regulations. ( In the matter of Residential Mortgage Services, Inc., March 3, 2021).

Cybersecurity 98

Cybersecurity Financial Services Risk IT 98

Hunton Privacy

NOVEMBER 23, 2022

On November 9, 2022, the New York Department of Financial Services (NYDFS) released its second, proposed amendments to the Part 500 Cybersecurity Rule. The proposed amendments revise several aspects of the draft Cybersecurity Rule amendments released on July 29, 2022.

Financial Services 55

Financial Services Cybersecurity Ransomware Compliance 55

Data Protection Report

OCTOBER 17, 2024

On October 16, 2024, the New York Department of Financial Services (“NYDFS” or “DFS”) issued guidance raising awareness about combatting cybersecurity risks arising from artificial intelligence (“AI”) used by DFS licensees, such as insurers and virtual currency businesses.

Artificial Intelligence 56

Artificial Intelligence Financial Services Risk Cybersecurity 56

The Last Watchdog

MARCH 31, 2020

Over the years processes, training and tooling to account for data privacy and data integrity have been woven in, driven by data breach lawsuits and the rise of data handling regulations. Fast-and-risky DevOps has forced a philosophy shift at large companies accustomed to top down decision making. Enter DevOps.

Security 194

Security Privacy Risk Financial Services 194

KnowBe4

OCTOBER 5, 2023

Menlo Security warns that a social engineering campaign is using the EvilProxy phishing kit to target senior executives across a range of industries, including banking and financial services, insurance, property management and real estate, and manufacturing.

Phishing 119

Phishing Financial Services Insurance Manufacturing 119

AIIM

MARCH 3, 2020

Too often I hear one of two, equally bad answers: Keep Records for Seven years: This seems to be the de facto answer, especially for financial services records. Internal Revenue Service rules around when they can audit individual and corporate tax returns. As near as I can tell, this comes from the U.S. And they will!

Records Management 166

Records Management Financial Services Big data Analytics 166

IT Governance

APRIL 11, 2019

Financial services firms must do more to educate employees about cyber security, according to the FCA (Financial Conduct Authority). Organisations need to make staff awareness training a board-level priority. Staff awareness training is a crucial part of this.

Retail 52

Retail Risk Education Financial Services 52

The Last Watchdog

JANUARY 30, 2019

Turn the corner into 2019 and we find Citigroup, CapitalOne, Wells Fargo and HSBC Life Insurance among a host of firms hitting the crisis button after their customers’ records turned up on a database of some 24 million financial and banking documents found parked on an Internet-accessible server — without so much as password protection.

Risk 147

Risk Financial Services Insurance Cybersecurity 147

Hunton Privacy

AUGUST 15, 2022

On July 29, 2022, the New York Department of Financial Services (“NYDFS”) posted proposed amendments (“Proposed Amendments”) to its Cybersecurity Requirements for Financial Services Companies (“Cybersecurity Regulations”). As part of the “training and monitoring” requirements under Section 500.14

Financial Services 55

Financial Services Cybersecurity Risk Passwords 55

Hunton Privacy

JULY 1, 2022

On June 24, 2022, the New York State Department of Financial Services (“NYDFS” or the “Department”) announced it had entered into a $5 million settlement with Carnival Corp.

Cybersecurity 115

Cybersecurity Insurance Phishing Financial Services 115

Hunton Privacy

JUNE 9, 2022

Licensees are wholly exempt from the law if they are compliant with the New York Department of Financial Services Cybersecurity Requirements for Financial Services Companies (23 NYCRR §§ 500.0 to 500.23) and they submit a written statement to the Commissioner certifying such compliance.

Insurance 107

Insurance Security Information Security Cybersecurity 107

Security Affairs

JUNE 20, 2020

Malicious Chrome browser extensions were used in a massive surveillance campaign aimed at users working in the financial services, oil and gas, media and entertainment, healthcare, government organizations, and pharmaceuticals. The tech giant removed over 100 Chrome browser extensions from the official Web Store.

Healthcare 144

Healthcare Financial Services Security Communications 144

Thales Cloud Protection & Licensing

OCTOBER 24, 2024

New Cybersecurity Rules for Financial Institutions in New York State Take Effect November 1, 2024 madhav Fri, 10/25/2024 - 06:09 The next major deadline for compliance with the updated cybersecurity rules from the New York State Department of Financial Services (NYDFS) is November 1, 2024.

Cybersecurity 62

Cybersecurity Financial Services Encryption Compliance 62

eSecurity Planet

AUGUST 9, 2022

Other industry standards too can have the force of “pseudo-law” – notably, the NIST Cybersecurity Framework, which federal regulators often apply to financial-services firms and government contractors. See the Best Cybersecurity Awareness Training for Employees. Automating IT Compliance with Security Compliance Tools.

Data Privacy 144

Data Privacy Compliance Privacy Security 144

Collibra

OCTOBER 31, 2023

With every financial services organization focused on making better and faster decisions, data professional and business leaders are eager to better understand how AI can facilitate their strategic goals. Financial services orgs, especially those in capital markets, frequently has been on the forefront of generative AI investment.

Marketing 105

Marketing Government Financial Services Artificial Intelligence 105

Data Protection Report

JANUARY 18, 2024

On January 3, 2024, the New York Department of Financial Services announced a consent order with GGT, where GGT agreed to pay NYDFS $8 million and to surrender its BitLicense (for cryptocurrency trading), due to alleged violations of NYDFS’ cybersecurity and its virtual currency regulations.

Cybersecurity 111

Cybersecurity Financial Services Compliance Encryption 111

Hunton Privacy

JULY 12, 2021

On June 30, 2021, the New York State Department of Financial Services (“NYDFS,” the “Department”) issued guidance to all New York state regulated entities on ransomware (the “Guidance”), identifying controls it expects regulated companies to implement whenever possible.

Ransomware 102

Ransomware Security Financial Services Cybersecurity 102

Security Affairs

FEBRUARY 14, 2022

The European Central Bank remarks on the importance of training the staff on cyber threats, the central bank has also been running specific cyber drills to simulate cyber attacks against their infrastructure. Enria explained that European banking institutions need more cybersecurity experts.

Financial Services 98

Financial Services Cybersecurity Risk Security 98

eSecurity Planet

JUNE 16, 2022

Capital markets, insurance, financial services, and banking are now online. Educating and training employees is a must-do in modern endpoint security. Cybersecurity training and awareness. Cybersecurity training and awareness have evolved to respond to modern threats. Other methods.

Ransomware 144

Ransomware Cybersecurity Phishing Encryption 144

eSecurity Planet

SEPTEMBER 21, 2024

Here’s a brief overview of industry-specific cybersecurity regulations: Financial Services Financial services firms are subject to stringent cybersecurity regulations to protect sensitive financial data. Policies should cover data protection, access controls, incident response, and employee training.

Cybersecurity 117

Cybersecurity Computer and Electronics Compliance Privacy 117

Hunton Privacy

JULY 24, 2020

On Wednesday, July 22, the New York Department of Financial Services (the “NYDFS”) announced that it had filed administrative charges against First American Title Insurance Co. under the NYDFS Cybersecurity Regulation , marking the agency’s first enforcement action since the rules went into effect in March 2017. NYCRR 500.14(b):

Cybersecurity 85

Cybersecurity Risk Financial Services Insurance 85

Data Protection Report

APRIL 22, 2021

On April 14, 2021, the New York Department of Financial Services (NYDFS) announced a $3 million settlement with insurance company National Securities Corp. Training and monitoring materials. NSC), relating to violations of three different requirements of the NYDFS cybersecurity regulation during the period 2018 to 2020.

Cybersecurity 94

Cybersecurity Financial Services Phishing Compliance 94