2021, Blog, Financial Services and Security - Information Management Today

Mitigating the impact of climate change in insurance and other financial services

IBM Big Data Hub

MARCH 25, 2024

These climate events have a huge potential impact on financial institutions. In 2021, large-scale floods affected the European countries of Austria, Germany, Belgium, the Netherlands and Luxembourg, causing USD 43 billion worth of damage in addition to a tragic loss of life. Financial services firms can use the tool for “what if?”

Financial Services

Financial Services Insurance Risk Agriculture

Financial Services Data – More at risk than you’d believe

Thales Cloud Protection & Licensing

DECEMBER 5, 2018

One of the top findings from the 2018 Thales Data Threat Report, Financial Services Edition was that data breaches in U.S. financial services organizations are increasing at an alarming rate. Two other key drivers are digital transformation and poor investments in IT security tools needed to protect data.

Financial Services

Financial Services Risk Digital transformation Data breaches

New York Department of Financial Services Issues First Guidance by a U.S. Regulator Concerning Cyber Insurance

Data Matters

FEBRUARY 10, 2021

On February 4, 2021, the New York Department of Financial Services (NYDFS) issued Circular Letter No. The post New York Department of Financial Services Issues First Guidance by a U.S. Regulator Concerning Cyber Insurance appeared first on Data Matters Privacy Blog. 1 See W.B.

Insurance

Insurance Financial Services Cybersecurity Risk

erwin’s Predictions for 2021: Data Relevance Shines at the End of the Tunnel

erwin

JANUARY 7, 2021

Our predictions for 2021 are rooted in what we’ve learned from the past year and the relevance of data in getting us to where we are and where we need to go. Data Becomes a Matter of Life or Death: To say that data will be the difference between life and death in 2021 is not hyperbole. COVID changed everything.

Metadata

Metadata Compliance Artificial Intelligence Government

Remcos RAT campaign targets US accounting and tax return preparation firms

Security Affairs

APRIL 16, 2023

In 2021, CISA added Remcos to the list of top malware strains due to its use in mass phishing attacks using COVID-19 pandemic themes targeting businesses and individuals. Remcos is a legitimate remote monitoring and surveillance software developed by the company BreakingSecurity.

Phishing

Phishing Financial Services Education Cybersecurity

5 things to know: IBM Cloud’s mission to accelerate innovation for clients

IBM Big Data Hub

AUGUST 1, 2023

We are bringing the power of foundation models with the availability of a GPU as a service on IBM Cloud offering to help organizations tap into artificial intelligence (AI) in a secured environment while aiming to mitigate third- and fourth-party risk.

Financial Services

Financial Services Computer and Electronics Cloud Digital transformation

Scary Fraud Ensues When ID Theft & Usury Collide

Krebs on Security

JANUARY 25, 2022

But Jim has long had a security freeze on his credit file with the three major consumer credit reporting bureaus , and none of the lenders seemed willing to proceed without at least a peek at his credit history. ” According to the Native American Financial Services Association (NAFSA), a trade group in Washington, D.C.

Financial Services

Financial Services IT Data breaches Passwords

GUEST ESSAY: Why Microsoft Exchange users ‘must have’ robust data recovery policies, practices

The Last Watchdog

DECEMBER 21, 2021

In 2021, on-premises Microsoft Exchange Server mailboxes commanded a 43 percent global market share as compared to 57 percent for cloud Exchange mailboxes, according to this report from Statista. Clearly, due diligence from any company continuing to rely on Microsoft Exchange servers is in order, strictly from a security standpoint.

Cloud

Cloud Financial Services Communications Ransomware

Cloudflare: Mirai Botnet Launched Record-Breaking DDoS Attack

eSecurity Planet

AUGUST 22, 2021

Cloudflare last month fought off a massive distributed denial-of-service (DDoS) attack by a botnet that was bombarding 17.2 million requests per second (rps) at one of the internet infrastructure company’s customers in the financial services space. That prediction proved correct. Mirai Still on the Loose.

Financial Services

Financial Services IoT Education Passwords

CaixaBank CIO Pere Nebot discusses modernizing business operations for an enhanced, customer-centric experience

IBM Big Data Hub

JULY 12, 2023

For years, the bank has been part of IBM’s growing ecosystem of financial institutions and technology partners leveraging IBM Cloud for Financial Services to help deliver more improved customer services and products better tailored to each individual customer’s financial needs.

Digital transformation

Digital transformation Financial Services Cloud Customer Experience

SEC Announces Settled Charges Against First American for Cybersecurity Disclosure Controls Failures – Lessons Learned

Data Matters

JUNE 24, 2021

On June 15, 2021, the SEC announced settled charges against First American Title Insurance Company (First American) for disclosure controls and procedures violations related to a cybersecurity vulnerability that exposed sensitive customer information. This resolution highlights the SEC’s continued focus on cybersecurity.

Cybersecurity

Cybersecurity Financial Services Risk Compliance

GUEST ESSAY: The drivers behind persistent ransomware — and defense tactics to deploy

The Last Watchdog

SEPTEMBER 7, 2022

The FBI’s Internet Crime Complaint Center (IC3) received 3,729 ransomware complaints in 2021, representing $49.2 Healthcare and public health, financial services, and IT organizations are frequent targets, although businesses of all sizes can fall victim to these schemes. million in adjusted losses. The impact of ransomware.

Ransomware

Ransomware Education Phishing Financial Services

Exclusive: Welcome “Frappo” – Resecurity identified a new Phishing-as-a-Service

Security Affairs

MAY 10, 2022

“Frappo” is actively advertised in the Dark Web and on Telegram where it has a group with over 1,965 active members – there cybercriminals discuss how successful they’ve been at attacking the customers of various online services. The last update of the service was registered May 1, 2022. To nominate, please visit:? Pierluigi Paganini.

Phishing

Phishing Retail Financial Services Data breaches

Risk Management under the DORA Regulation

IT Governance

NOVEMBER 23, 2023

The financial sector is quite heavily regulated, and involves a lot of confidential data. You’d therefore expect that the sector fares better at data security than your average organisation. Perhaps even more concerning to EU lawmakers is how dependent society at large is on banking and other financial services.

Risk

Risk Data breaches Authentication Financial Services

Understanding China’s Data Regulatory Regime: What Are Important Data? And Can They Be Transferred Outside Of China?

Data Matters

APRIL 11, 2022

The Cyber Security Law (2017) (the CSL ) prohibits operators of critical information infrastructures ( CIIs ) from transferring their “important data” and personal information outside of China. Network Data Security Regulation. The concept of “important data” is a cornerstone of China’s data regulatory regime.

Military

Military Artificial Intelligence Security Financial Services

CENTRAL BANK DIGITAL CURRENCIES

Thales Cloud Protection & Licensing

FEBRUARY 27, 2023

Even in regions like Europe a lot of Citizens do not have a bank account: Source: World Bank Findex 2021 report Global CBDC initiatives Central banks are responsible for promoting monetary and financial stability in the best interests of the public. According to the World Bank account ownership rates vary across the world.

Financial Services

Financial Services Access Risk Security

Attackers Use Bots to Circumvent Some Two-Factor Authentication Systems

eSecurity Planet

SEPTEMBER 30, 2021

Underground services are cropping up that are designed to enable bad actors to intercept one-time passwords (OTPs), which are widely used in two-factor authentication programs whose purpose is to better protect customers’ online accounts. By using the services, cybercriminals can gain access to victims’ accounts to steal money.

Authentication

Authentication Phishing Financial Services Passwords

MY TAKE: Why companies and consumers must collaborate to stop the plundering of IoT systems

The Last Watchdog

NOVEMBER 9, 2020

IoT-enabled scams and hacks quickly ramped up to a high level – and can be expected to accelerate through 2021 and beyond. The challenge of the moment is that many companies already have their hands full trying to improve their security posture as they migrate their legacy, on premises, IT systems to the cloud.

IoT

IoT Passwords Artificial Intelligence Risk

The compliance challenges of hybrid working

IT Governance

AUGUST 26, 2021

In this blog, we look at the key issues that you will face. For example, financial services firms may be worried about employees breaching insider trading laws. A hybrid working model creates new security risks for organisations – not least because data is frequently transferred between office-based and remote employees.

Compliance

Compliance Data breaches Privacy Risk

CyberheistNews Vol 13 #13 [Eye Opener] How to Outsmart Sneaky AI-Based Phishing Attacks

KnowBe4

MARCH 28, 2023

Security awareness training still has a place to play here." Email and other elements of software infrastructure offer built-in fundamental security that largely guarantees we are not in danger until we ourselves take action," Tyson writes. Is the email enticing you to click on a link?' I'm being asked to do something here.'"

Phishing

Phishing Security awareness Insurance Cybersecurity

FCA Letter to E-Money Institutions: Why All UK Payment Service Providers Should Review Their Marketing Practices Now

Data Matters

MAY 27, 2021

On May 18, 2021, the UK Financial Conduct Authority (FCA) published a “Dear CEO” letter (the Letter) asking e-money institutions to ensure that their customers understand how their money is protected. In addition, in February 2021, the FCA publicly censured Premier FX Limited for failing to properly safeguard its customers’ money.

Marketing

Marketing Communications Compliance Financial Services

CyberheistNews Vol 13 #07 [Scam of the Week] The Turkey-Syria Earthquake

KnowBe4

FEBRUARY 14, 2023

Blog post with links: [link] [New PhishER Feature] Immediately Add User-Reported Email Threats to Your M365 Blocklist Now there's a super easy way to keep malicious emails away from all your users through the power of the KnowBe4 PhishER platform! Blog post with links: [link] Are Your Users Making Risky Security Mistakes?

Phishing

Phishing Security awareness Compliance Risk

UK FCA Consults on Changes to Strong Consumer Authentication, Dedicated Interfaces, and Guidance on Payment Services

Data Matters

FEBRUARY 25, 2021

On January 28, 2021, the UK Financial Conduct Authority (FCA) published Consultation Paper CP21/3 , “Changes to the SCA-RTS and to the guidance in ‘Payment Services and Electronic Money – Our Approach’ and the Perimeter Guidance Manual” (Consultation Paper). its Perimeter Guidance Manual (PERG). Temporary COVID Guidance.

Authentication

Authentication Paper Risk Insurance

Institutional Investor’s Introduction to Blockchain and Digital Asset Investing

Data Matters

NOVEMBER 2, 2021

We will also discuss a developing range of services referred to as digital asset “prime brokerage” — describing the suite of services typically provided by these prime brokers and comparing them to traditional offerings of prime brokers in the securities space.

Blockchain

Blockchain Marketing Access Risk

New York Regulators Call on Insurers to Strengthen the Cyber Underwriting Process

Hunton Privacy

FEBRUARY 25, 2021

As reported on the Hunton Insurance Recovery blog , on February 4, 2021, the New York Department of Financial Services (“NYDFS”), which regulates the business of insurance in New York, has issued guidelines, in the Insurance Circular Letter No.

Insurance

Insurance Cybersecurity Risk Education

Modernizing payments without disrupting legacy checks systems

IBM Big Data Hub

FEBRUARY 5, 2024

Across the globe, financial institutions are rapidly modernizing to deliver secure, seamless payment experiences that meet the demands of digital-first consumers. Financial institutions face the challenge of enabling digital payments while simultaneously managing existing payment capabilities like checks.

Financial Services

Financial Services Cloud Risk Compliance

8 Interesting Predictions for the Intelligent Information Capture Market in 2022

Info Source

MARCH 16, 2022

They have been able to secure impressive amounts of VC funding and valuation levels that were unheard of in the Information Capture market. But there is also a new breed of Capture vendors, those that come with a core expertise in AI technology and found the ingestion of unstructured and semi-structured business inputs a prime target.

Information capture

Information capture Marketing Digital transformation Cloud

8 Interesting Predictions for the Intelligent Information Capture Market in 2022

Info Source

MARCH 16, 2022

They have been able to secure impressive amounts of VC funding and valuation levels that were unheard of in the Information Capture market. But there is also a new breed of Capture vendors, those that come with a core expertise in AI technology and found the ingestion of unstructured and semi-structured business inputs a prime target.

Information capture

Information capture Marketing Digital transformation Cloud

GUEST ESSAY: Few consumers read privacy policies — tools can now do this for them

The Last Watchdog

MARCH 14, 2022

Related: What happened to privacy in 2021. Financial services, health, home security, governance and all other mission critical services are now provided online. Service providers update privacy policies on a regular basis with limited or no notifications to end users at all. The question is at what price?

Privacy

Privacy Artificial Intelligence Financial Services Archiving

3 keys to building a robust hybrid cloud risk strategy

IBM Big Data Hub

OCTOBER 23, 2023

There are three keys to developing a successful hybrid cloud risk management strategy : security, compliance and resiliency. Security: Keeping sensitive data and workloads safe Protecting critical data amid a heightened threat landscape is top of mind for many business leaders, and for good reason. But what does such a strategy entail?

Cloud

Cloud Risk Compliance Data breaches

GUEST ESSAY: Why organizations need to prepare for cyber attacks fueled by quantum computers

The Last Watchdog

MAY 26, 2022

For example, in 2021 the Colonial Pipeline was hacked, and the company decided to pay $5 million in ransom since most of the East Coast’s fuel supply was shut down. About the essayist: Skip Sanzeri is COO of QuSecure , supplier of QuProtect™, a state-of-the-art, software-based quantum security solution.

Ransomware

Ransomware Government Agriculture Encryption

Top Data Management Trends for Chief Data Officers (CDOs)

erwin

MARCH 18, 2021

The role of chief data officer (CDO) is becoming essential at forward-thinking organizations — especially those in financial services — according to “ The Evolving Role of the CDO at Financial Organizations: 2021 Chief Data Officer (CDO) Study ” just released by FIMA and sponsored by erwin.

Metadata

Metadata Compliance Government Financial Services

Reltio Advances in Gartner Magic Quadrant for MDM Solutions

Reltio

FEBRUARY 3, 2021

Gartner published its 2021 edition of the Magic Quadrant for Master Data Management Solutions. . The Reltio Connected Data Platform provides agility, scale, simplicity, security, and performance unmatched by competitors. No developments after June 30, 2020 influence Gartner’s evaluations in the 2021 MDM MQ. Methodology Matters.

MDM

MDM Cloud Marketing B2C

Top Data Management Trends for Chief Data Officers (CDOs)

erwin

MARCH 18, 2021

The role of chief data officer (CDO) is becoming essential at forward-thinking organizations — especially those in financial services — according to “ The Evolving Role of the CDO at Financial Organizations: 2021 Chief Data Officer (CDO) Study ” just released by FIMA and sponsored by erwin.

Metadata

Metadata Compliance Government Financial Services

Ten Years Later, New Clues in the Target Breach

Krebs on Security

DECEMBER 14, 2023

However, in a classic failure of operational security, many of these employees had their MegaPlan account messages automatically forwarded to their real ChronoPay email accounts. ru — sold a variety of consulting services, including IT security assessments, code and system audits, and email marketing. Kink,” “Mr.

Computer and Electronics

Computer and Electronics Marketing Sales Healthcare

Regulatory Update: NAIC Summer 2019 National Meeting

Data Matters

SEPTEMBER 4, 2019

Securities and Exchange Commission on June 5, 2019, broker-dealers and associated persons are required to act in the best interest of a retail customer when recommending a securities transaction or investment strategy involving securities to a retail customer. 43R — Loan-Backed and Structured Securities and SSAP No.

Insurance

Insurance Paper Risk Analytics

SEC Requests Comment on Regulation of Information Providers Under the U.S. Investment Advisers Act

Data Matters

JUNE 24, 2022

Securities and Exchange Commission (Commission) issued a request for comment with respect to whether certain index, model, pricing, and other information providers should be regulated as investment advisers under the Investment Advisers Act of 1940. Peirce, Statement on S&P Dow Jones Indices LLC (May 17, 2021), available at [link].

Marketing

Marketing Financial Services Analytics Sales

Regulatory Update: NAIC Fall 2020 National Meeting

Data Matters

DECEMBER 28, 2020

The International Insurance Relations (G) Committee will be scheduling a conference call in early 2021 to discuss the NAIC’s comments to the IAIS’ draft document ahead of the January 22 comment deadline. 43R —Loan-Backed and Structured Securities. These revisions are exposed for comment until January 11, 2021.

Insurance

Insurance Paper Risk Analytics

FFIEC Guidance on Authentication and Access to Financial Institution Services and Systems

Data Matters

AUGUST 17, 2021

On August 11, 2021, the Federal Financial Institutions Examination Council (FFIEC)1 issued guidance establishing risk management principles and practices to support the authentication of users accessing a financial institution’s information systems and customers accessing a financial institution’s digital banking services (the Guidance).

Authentication

Authentication Access Risk Financial Services

Federal Bank Regulators Require Notifications For Material Cybersecurity Incidents

Data Matters

NOVEMBER 22, 2021

On November 18, 2021, a group of federal bank regulators announced a final rule requiring banks to notify their primary federal regulator of any “significant computer-security incidents.” The rule was initially proposed in January 2021. These occurrences are “computer-security incidents.”. Background.

Cybersecurity

Cybersecurity Insurance Financial Services Marketing

Microsoft Azure Attack Illustrates Ongoing DDoS Threats

eSecurity Planet

OCTOBER 14, 2021

The DDoS attack originated from about 70,000 sources through a range of Asian countries, including Malaysia, Vietnam, Taiwan, Japan and China, Dahan wrote in a blog post this week. The company was able to fend off the assault with a range of protective measures in Azure’s security arsenal, according to Dahan. The attack, which hit 2.4

IoT

IoT Cloud Ransomware Financial Services

EU data governance regulation – a wave of digital, regulatory and antitrust reform begins – Part 1

Data Protection Report

DECEMBER 17, 2020

This is part one of a series of three blog posts. In this first blog post, we outline key aspects of the DGR, set it in the context of other reforms proposed by the EC, consider public-sector data sharing under the DGR, and look at its potential impact on businesses. These are described in our second blog post.

Government

Government Personal data Marketing Artificial Intelligence

Nation-State-Sponsored Attacks: Not Your Grandfather’s Cyber Attacks

Data Matters

MAY 17, 2022

For example: On May 12, 2021, President Biden signed an Executive Order on Improving the Nation’s Cybersecurity. 26,633 (May 12, 2021). Agency (July 19, 2021, revised Aug. Memorandum on Improving the Cybersecurity of National Security, Department of Defense, and Intelligence Community Systems (Jan. 14,028, 86 Fed.

Cybersecurity

Cybersecurity Government Authentication Ransomware

How better key management can close cloud security gaps troubling US government

Thales Cloud Protection & Licensing

FEBRUARY 28, 2024

How better key management can close cloud security gaps troubling US government madhav Thu, 02/29/2024 - 05:38 In my first blog on this topic I noted a Treasury Department report released last year listed six cloud security challenges financial sector firms face. Thales can help address the following four challenges: 1.

Cloud

Cloud Government Encryption Security

Mitigating the impact of climate change in insurance and other financial services

Financial Services Data – More at risk than you’d believe

Trending Sources

New York Department of Financial Services Issues First Guidance by a U.S. Regulator Concerning Cyber Insurance

erwin’s Predictions for 2021: Data Relevance Shines at the End of the Tunnel

Remcos RAT campaign targets US accounting and tax return preparation firms

5 things to know: IBM Cloud’s mission to accelerate innovation for clients

Scary Fraud Ensues When ID Theft & Usury Collide

GUEST ESSAY: Why Microsoft Exchange users ‘must have’ robust data recovery policies, practices

Cloudflare: Mirai Botnet Launched Record-Breaking DDoS Attack

CaixaBank CIO Pere Nebot discusses modernizing business operations for an enhanced, customer-centric experience

SEC Announces Settled Charges Against First American for Cybersecurity Disclosure Controls Failures – Lessons Learned

GUEST ESSAY: The drivers behind persistent ransomware — and defense tactics to deploy

Exclusive: Welcome “Frappo” – Resecurity identified a new Phishing-as-a-Service

Risk Management under the DORA Regulation

Understanding China’s Data Regulatory Regime: What Are Important Data? And Can They Be Transferred Outside Of China?

CENTRAL BANK DIGITAL CURRENCIES

Attackers Use Bots to Circumvent Some Two-Factor Authentication Systems

MY TAKE: Why companies and consumers must collaborate to stop the plundering of IoT systems

The compliance challenges of hybrid working

CyberheistNews Vol 13 #13 [Eye Opener] How to Outsmart Sneaky AI-Based Phishing Attacks

FCA Letter to E-Money Institutions: Why All UK Payment Service Providers Should Review Their Marketing Practices Now

CyberheistNews Vol 13 #07 [Scam of the Week] The Turkey-Syria Earthquake

UK FCA Consults on Changes to Strong Consumer Authentication, Dedicated Interfaces, and Guidance on Payment Services

Institutional Investor’s Introduction to Blockchain and Digital Asset Investing

New York Regulators Call on Insurers to Strengthen the Cyber Underwriting Process

Modernizing payments without disrupting legacy checks systems

8 Interesting Predictions for the Intelligent Information Capture Market in 2022

8 Interesting Predictions for the Intelligent Information Capture Market in 2022

GUEST ESSAY: Few consumers read privacy policies — tools can now do this for them

3 keys to building a robust hybrid cloud risk strategy

GUEST ESSAY: Why organizations need to prepare for cyber attacks fueled by quantum computers

Top Data Management Trends for Chief Data Officers (CDOs)

Reltio Advances in Gartner Magic Quadrant for MDM Solutions

Top Data Management Trends for Chief Data Officers (CDOs)

Ten Years Later, New Clues in the Target Breach

Regulatory Update: NAIC Summer 2019 National Meeting

SEC Requests Comment on Regulation of Information Providers Under the U.S. Investment Advisers Act

Regulatory Update: NAIC Fall 2020 National Meeting

FFIEC Guidance on Authentication and Access to Financial Institution Services and Systems

Federal Bank Regulators Require Notifications For Material Cybersecurity Incidents

Microsoft Azure Attack Illustrates Ongoing DDoS Threats

EU data governance regulation – a wave of digital, regulatory and antitrust reform begins – Part 1

Nation-State-Sponsored Attacks: Not Your Grandfather’s Cyber Attacks

How better key management can close cloud security gaps troubling US government

Stay Connected