Krebs on Security

DECEMBER 10, 2020

(TSYS) is the third-largest third-party payment processor for financial institutions in North America, and a major processor in Europe. TSYS provides payment processing services, merchant services and other payment solutions, including prepaid debit cards and payroll cards. NYSE:GPN ].

Ransomware 322

Ransomware Financial Services Access IT 322

Krebs on Security

JULY 23, 2020

In May 2019, KrebsOnSecurity broke the news that the website of mortgage title insurance giant First American Financial Corp. based First American [ NYSE:FAF ] is a leading provider of title insurance and settlement services to the real estate and mortgage industries. billion in 2019.

Insurance 284

Insurance Financial Services Mining Access 284

Data Matters

FEBRUARY 20, 2019

On January 18, 2019, the New York State Department of Financial Services (NYDFS) issued Circular Letter 2019-1 (the Circular Letter), addressing insurers’ use of external consumer data and information sources in underwriting for life insurance.

Insurance 68

Insurance Financial Services Compliance Retail 68

Security Affairs

FEBRUARY 26, 2019

Threat actors in the wild are exploiting the recently patched CVE-2019-6340 flaw in the Drupal CMS to deliver cryptocurrency miners and other payloads. Just three days after the CVE-2019-6340 flaw in Drupal was addressed, threat actors in the wild started exploiting the issue to deliver cryptocurrency miners and other payloads.

Financial Services 80

Financial Services CMS Government Security 80

Security Affairs

APRIL 10, 2019

SAP released the April 2019 Security Patch Day that is included 6 Security Notes, two of which address High severity flaws in Crystal Reports and NetWeaver. SAP released 6 Security Notes as part of the April 2019 Security Patch Day, two of which address High severity flaws in Crystal Reports and NetWeaver.

Security 64

Security Financial Services Risk Access 64

HL Chronicle of Data Protection

FEBRUARY 28, 2019

Please join us for our March 2019 events. Mark Brennan will discuss TCPA issues on the panel, “Financial Services and Litigation Trends,” at the American Financial Services Association (AFSA) Law and Compliance Symposium 2019. ” at the IAPP Data Protection Intensive: UK 2019.

Privacy 40

Privacy Artificial Intelligence Cybersecurity GDPR 40

Security Affairs

MAY 15, 2019

SAP released SAP Security Patch Day for May 2019 that includes 8 Security Notes, 5 of which are updates to previously released Notes. ” reads the security advisory for the CVE-2019-0301. .” ” reads the security advisory for the CVE-2019-0301. SecurityAffairs – SAP Security Patch Day for May 2019 ).

Security 64

Security Financial Services Risk IT 64

Security Affairs

APRIL 3, 2024

Resecurity researchers warn that a new Version of JsOutProx is targeting financial institutions in APAC and MENA via Gitlab abuse. Resecurity has detected a new version of JSOutProx , which is targeting financial services and organizations in the APAC and MENA regions.

Financial Services 92

Financial Services Phishing IT Information Security 92

Krebs on Security

MAY 31, 2019

New York regulators are investigating a weakness that exposed 885 million mortgage records at First American Financial Corp. On May 29, The New York Times reported that the inquiry by New York’s Department of Financial Services is likely to be followed by other investigations from regulators and law enforcement.

Financial Services 203

Financial Services Insurance Sales Authentication 203

Data Protection Report

JANUARY 18, 2024

On January 3, 2024, the New York Department of Financial Services announced a consent order with GGT, where GGT agreed to pay NYDFS $8 million and to surrender its BitLicense (for cryptocurrency trading), due to alleged violations of NYDFS’ cybersecurity and its virtual currency regulations.

Cybersecurity 109

Cybersecurity Financial Services Compliance Encryption 109

Security Affairs

FEBRUARY 19, 2024

pic.twitter.com/SvpbeslrCd — vx-underground (@vxunderground) February 19, 2024 LockBit is a prominent ransomware operation that first emerged in September 2019. Lockbit ransomware group administrative staff has confirmed with us their websites have been seized.

Energy and Utilities 100

Energy and Utilities Ransomware Agriculture Financial Services 100

Security Affairs

OCTOBER 19, 2023

The ransomware operation has been active since late December 2019, the FBI published two flash alert to warn of the operation of the group. This is an important achievement in the fight against cybercrime. Both FBI and Europol declined to comment on the events. More details are expected to be released tomorrow.

Ransomware 100

Ransomware Financial Services Manufacturing Government 100

Krebs on Security

JUNE 18, 2021

In May 2019, KrebsOnSecurity broke the news that the website of mortgage settlement giant First American Financial Corp. NYSE:FAF ] was leaking more than 800 million documents — many containing sensitive financial data — related to real estate transactions dating back 16 years. This week, the U.S.

Insurance 265

Insurance Risk Financial Services Mining 265

Data Protection Report

JANUARY 7, 2019

The two-year transitional period under the New York State Department of Financial Services (“DFS””) Cybersecurity Regulation , 23 NYCRR 500 (the “Regulation”), will expire on March 1, 2019, with the final remaining requirement becoming effective.

Cybersecurity 40

Cybersecurity Compliance Financial Services Risk 40

Data Matters

SEPTEMBER 4, 2019

The National Association of Insurance Commissioners (NAIC) held its Summer 2019 National Meeting (Summer Meeting) in New York City from August 3 to 6, 2019. The amended regulation took effect on August 1, 2019, for annuity products and will become effective on February 1, 2020, for life insurance products.

Insurance 68

Insurance Paper Risk Analytics 68

Info Source

JULY 11, 2019

July 11, 2019 – Automation Anywhere , a global leader in Robotic Process Automation Software, today announced that Gartner, Inc. has named it a Leader in Gartner’s 2019 Magic Quadrant for RPA Software. [1]. 8 July 2019. Inaugural Magic Quadrant for RPA Software Recognizes Automation Anywhere. SAN JOSE, Calif.

Marketing 45

Marketing Financial Services IT Security 45

HL Chronicle of Data Protection

FEBRUARY 25, 2020

Companies should take note of two imminent developments in New York in the area of cybersecurity regulation: enforcement of the New York Department of Financial Services (NYDFS) Cybersecurity Regulation (Regulation) and the effective date of the Stop Hacks and Improve Electronic Data Security Act (SHIELD Act or Act).

Cybersecurity 104

Cybersecurity Financial Services Data breaches Insurance 104

Krebs on Security

AUGUST 13, 2021

. “To date, this type of analysis has been used primarily by regulated financial service providers.” ET: Corrected the story to note that AMLBot has been around since 2019. ” That may not be entirely true. AMLBot’s user interface. “My guess is they’re just white-labeling that.”

Blockchain 290

Blockchain Analytics Marketing Ransomware 290

Data Protection Report

JUNE 2, 2021

On May 13, 2021, the New York Department of Financial Services (NYDFS) announced a $1.8 million settlement with two related insurance companies, relating to violations of two different requirements of the NYDFS cybersecurity regulation during the period 2018 to 2019. Affiliate #1 notified NYDFS on November 25, 2019.

Cybersecurity 70

Cybersecurity Insurance Financial Services Phishing 70

Hunton Privacy

JULY 1, 2022

On June 24, 2022, the New York State Department of Financial Services (“NYDFS” or the “Department”) announced it had entered into a $5 million settlement with Carnival Corp.

Cybersecurity 115

Cybersecurity Insurance Phishing Financial Services 115

Data Protection Report

APRIL 22, 2021

On April 14, 2021, the New York Department of Financial Services (NYDFS) announced a $3 million settlement with insurance company National Securities Corp. According to the consent order, the matter began when NSC reported a cybersecurity event to NYDFS on October 23, 2019. The second incident occurred in March of 2019.

Cybersecurity 94

Cybersecurity Financial Services Phishing Compliance 94

Collibra

FEBRUARY 11, 2020

Regulators are focusing on the data relationships financial services organizations have with third parties, including how well personal information is being managed. There are several areas that the international financial services regulatory community is engaged in that touch on third party personal data relationships.

Financial Services 59

Financial Services Digital transformation Personal data Compliance 59

Hunton Privacy

MARCH 11, 2021

On March 3, 2020, the New York Department of Financial Services (“NYDFS”) announced it had entered into a settlement with Residential Mortgage Services, Inc. (“RMS”) RMS”) related to allegations that RMS violated the NYDFS Cybersecurity Regulation in connection with a 2019 data breach.

Data breaches 97

Data breaches Cybersecurity Financial Services Personal data 97

IT Governance

NOVEMBER 23, 2023

Although the total number of data breaches – or rather, in those reported – decreased by 24% between 2019 and 2022 in the finance sector, the number of incidents increased by 99%. So to account for seasonality, we’ve only looked at Q2–Q4 for all four years (2019–2022). million (about £4.70

Risk 104

Risk Data breaches Authentication Financial Services 104

Security Affairs

AUGUST 7, 2019

The American group of insurance and financial services companies State Farm disclosed a credential stuffing attack it has suffered in July. The American group of insurance and financial services companies State Farm revealed that it was the victim of a credential stuffing attack it has suffered in July. billion per month.

Insurance 85

Insurance Data breaches Financial Services Passwords 85

Data Matters

DECEMBER 4, 2019

On November 18, 2019, the UK Jurisdiction Taskforce, which is part of The English Law Society’s LawTech Delivery Panel , published its Legal Statement on the status of cryptoassets and smart contracts (the Legal Statement). 9 “ESMA Advice: Initial Coin Offerings and Crypto-Assets,” January 9, 2019. See [link]. Available at [link].

Blockchain 60

Blockchain Financial Services Healthcare Marketing 60

Data Matters

DECEMBER 4, 2019

On November 18, 2019, the UK Jurisdiction Taskforce, which is part of The English Law Society’s LawTech Delivery Panel , published its Legal Statement on the status of cryptoassets and smart contracts (the Legal Statement). 9 “ESMA Advice: Initial Coin Offerings and Crypto-Assets,” January 9, 2019. See [link]. Available at [link].

Blockchain 60

Blockchain Financial Services Healthcare Marketing 60

Hunton Privacy

SEPTEMBER 1, 2021

34-92806 ; and In the Matter of KMS Financial Services, Inc. , Release No. According to the SEC order against KMS Financial Services Inc., The cases are In the Matter of Cetera Advisor Networks LLC , Release No. 34-92800 ; In the Matter of Cambridge Investment Research, Inc. , Release No. 34-92807 , August 30, 2021.

Cybersecurity 113

Cybersecurity Financial Services Cloud Access 113

Thales Cloud Protection & Licensing

NOVEMBER 27, 2018

The cybersecurity regulation ( 23 NYCRR 500 ) adopted by the New York State Department of Financial Services (NYDFS) is nearly two years old. The 2017 bill, the first of its kind, will be fully implemented as of March 1st, 2019. Even though these regulations only apply to New York, financial institutions across the U.S.

Cybersecurity 71

Cybersecurity Financial Services Encryption Data Privacy 71

Security Affairs

SEPTEMBER 1, 2020

“The adversary is particularly interested in exploits related to VPNs and network appliances , including CVE-2019-11510, CVE-2019-19781, and most recently CVE-2020-5902; reliance on exploits such as these lends to an opportunistic operational model.” ” reads the report published by Crowdstrike.

Access 85

Access Financial Services Retail Insurance 85

eDiscovery Daily

OCTOBER 21, 2019

As we noted yesterday , the 2019 Relativity Fest conference is going on this week, CloudNine is once again here as a Sponsor and Exhibitor and I will be covering the show for eDiscovery Daily. The 2019 International Panel. Let’s check out some of the sessions lined up for today (including the one I’m speaking at!).

e-Discovery 45

e-Discovery e-Delivery GDPR Education 45

Security Affairs

APRIL 30, 2020

Security experts from Cybereason Nocturnus team discovered a new piece of Android malware dubbed EventBot that targets banks, financial services across Europe. Researchers from Cybereason Nocturnus team discovered a new piece of Android malware dubbed EventBot that targets banks, financial services across Europe.

Financial Services 103

Financial Services Libraries Encryption Authentication 103

Thales Cloud Protection & Licensing

NOVEMBER 22, 2021

trillion in 2019 to $5.2 To compete, financial institutions are investing heavily in digital transformation. The full digitization of contracts, subscriptions and consumption of services. This drive towards digital transformation allowed financial services to be one of the sectors that better weathered the Covid 19 pandemic.

Digital transformation 71

Digital transformation Financial Services Customer Experience Risk 71

Data Matters

JUNE 24, 2021

In the Order, the SEC alleges that First American’s disclosures concerning the vulnerability were deficient because senior executives were not provided all available and relevant information, specifically that First American’s information security personnel had identified and failed to remediate the vulnerability months earlier in January 2019.

Cybersecurity 68

Cybersecurity Financial Services Risk Compliance 68

Krebs on Security

MAY 3, 2019

In late April 2019, Fiserv was sued by Bessemer System Federal Credit Union , a comparatively tiny financial institution with just $38 million in assets. In January 2019, Fiserv announced it was acquiring payment processing giant First Data in a $22 billion all-stock deal. And it’s poised to soon get much bigger.

Security 177

Security Passwords Financial Services Sales 177

AIIM

FEBRUARY 21, 2019

But none will be more informative than a session planned by David Jacopille from Massachusetts Financial Services titled “Bot Bootcamp: How to Manage Your Artificial Employees.” See this informative session and more at The AIIM Conference 2019. David Jacopille is an Automation Architect at Massachusetts Financial Services.

Artificial Intelligence 80

Artificial Intelligence Financial Services Analytics Communications 80

Security Affairs

JANUARY 18, 2019

Oracle released the first critical patch advisory for 2019 that addresses a total of 284 vulnerabilities, 33 of them are rated “critical”. The bug affected the OCA’s Diameter Signalling Router component and its Communications Services Gatekeeper. ” reads the d escription provided by.

Financial Services 65

Financial Services Libraries Mining Retail 65