Analysis, Blog, Financial Services and Security

Mitigating the impact of climate change in insurance and other financial services

IBM Big Data Hub

MARCH 25, 2024

For other financial services firms outside of the insurance sector, property accepted as loan security might face climate-related risks as well. Across the financial sector, there are transition risks to consider as we move to a low-carbon economy. Financial services firms can use the tool for “what if?”

Financial Services

Financial Services Insurance Risk Agriculture

Accelerate hybrid cloud transformation through IBM Cloud for Financial Service Validation Program

IBM Big Data Hub

APRIL 4, 2024

This leaves many organizations hesitant to make the transition, fearing they will lose the control and security they have with their on-prem environments. A third-party investment review, where the ISV provides a bill of material showing what and how services are being used to meet compliance requirements, along with price points.

Financial Services

Financial Services Cloud Compliance Digital transformation

NYDFS releases major update to Part 500 cybersecurity requirements for financial services companies

Data Protection Report

NOVEMBER 8, 2023

On November 1, 2023, the New York Department of Financial Services (“NYDFS”) released the finalized amendments of Part 500 of its cybersecurity regulations. These revisions represent the most significant modifications since the enactment of the rules in March 2017.

Financial Services

Financial Services Cybersecurity Compliance Government

Webinars

Peak Performance: Continuous Testing & Evaluation of LLM-Based Applications

MORE WEBINARS

Payment Processing Giant TSYS: Ransomware Incident “Immaterial” to Company

Krebs on Security

DECEMBER 10, 2020

TSYS provides payment processing services, merchant services and other payment solutions, including prepaid debit cards and payroll cards. In 2019, TSYS was acquired by financial services firm Global Payments Inc. NYSE:GPN ]. ” TSYS declined to say whether it paid any ransom.

Ransomware

Ransomware Financial Services Access IT

The Week in Cyber Security and Data Privacy: 6 – 12 November 2023

IT Governance

NOVEMBER 13, 2023

At the end of each month, these incidents – and any others that we find – will be used to inform our monthly analysis of data breaches and cyber attacks. Some patients also had their Social Security numbers exposed.” Welcome to this week’s round-up of the biggest and most interesting news stories. Approximately 1.3 Records breached: 1.3

Data Privacy

Data Privacy Privacy Security Data breaches

New Anti Anti-Money Laundering Services for Crooks

Krebs on Security

AUGUST 13, 2021

But with countless criminals now making millions from ransomware, there is certainly a vast, untapped market for services that help those folks improve their operational security. “To date, this type of analysis has been used primarily by regulated financial service providers.” ” Update, 1:42 p.m.

Blockchain

Blockchain Analytics Marketing Ransomware

GUEST ESSAY: 5 security steps all companies should adopt from the Intelligence Community

The Last Watchdog

DECEMBER 6, 2018

Businesses at large would do well to model their data collection and security processes after what the IC refers to as the “intelligence cycle.” In the same vein, businesses at large can use the intelligence cycle as a model to detect and deter any attacks coming from foreign intelligence services. infrastructure from cyber attacks.

Security

Security Financial Services Manufacturing Data collection

SAP April 2019 Security Patch Day addresses High severity flaws in Crystal Reports, NetWeaver

Security Affairs

APRIL 10, 2019

SAP released the April 2019 Security Patch Day that is included 6 Security Notes, two of which address High severity flaws in Crystal Reports and NetWeaver. SAP released 6 Security Notes as part of the April 2019 Security Patch Day, two of which address High severity flaws in Crystal Reports and NetWeaver.

Security

Security Financial Services Risk Access

The Rise of One-Time Password Interception Bots

Krebs on Security

SEPTEMBER 29, 2021

“Intel 471 has seen an uptick in services on the cybercrime underground that allow attackers to intercept one-time password (OTP) tokens,” the company wrote in a blog post today. Some services also target other popular social media platforms or financial services, providing email phishing and SIM swapping capabilities.”

Passwords

Passwords Authentication Phishing Access

Exclusive: Welcome “Frappo” – Resecurity identified a new Phishing-as-a-Service

Security Affairs

MAY 10, 2022

Like a SaaS-based services and platform for legitimate businesses, “Frappo” allows cybercriminals to minimize costs for the development of phishing-kits, and to use the same on a bigger scale. Detailed analysis of the Phishing-As-A-Service Frappo is available here: [link]. To nominate, please visit:? Pierluigi Paganini.

Phishing

Phishing Retail Financial Services Data breaches

The Week in Cyber Security and Data Privacy: 12 – 18 February 2024

IT Governance

FEBRUARY 21, 2024

At the end of each month, these incidents – and any others that we find – will be used to inform our monthly analysis of data breaches and cyber attacks. Fowler sent a responsible disclosure notice when he discovered the database and it was secured the following day. Date breached: 384,658,212 records. North Hill Home Health Care, Inc.,

Data Privacy

Data Privacy Manufacturing Privacy Energy and Utilities

The largest Russian bank Sberbank hit by a massive DDoS attack

Security Affairs

NOVEMBER 9, 2023

Sberbank , the Russian banking and financial services giant, announced that it was recently hit by a record-breaking distributed denial of service (DDoS) attack that reached 1 million RPS. Then it did not affect the availability of bank services. reads the post published by Google.

Personal data

Personal data Financial Services Marketing Cloud

Impact of IDP on Business Growth – Customer Onboarding Use Case

Info Source

JULY 6, 2023

t starts with the prospect, who has researched alternatives based on her/his specific needs selecting a financial services provider and type of loan and submitting a request. The financial services institute requests a proof of identity and documentation to ensure that the person qualifies e.g., proof of residence, income etc.

Customer Experience

Customer Experience Communications Financial Services Insurance

The aftermath of an incident – business considerations surrounding record-keeping

Data Protection Report

AUGUST 2, 2022

Organizations should also be aware of sector-specific statutory obligations which may apply to them, for example in health or financial services industries. M&A and Securities law. The authors would like to thank Marilou Bouthiette, law student, for her help in preparing this blog post.

Compliance

Compliance Privacy Risk Financial Services

Critical RCE affects older Diebold Nixdorf ATMs

Security Affairs

JUNE 9, 2019

Automated teller machine vendor Diebold Nixdorf has released security updates to address a remote code execution vulnerability in older ATMs. Diebold Nixdorf discovered a remote code execution vulnerability in older ATMs and is urging its customers in installing security updates it has released to address the flaw. Pierluigi Paganini.

Libraries

Libraries Communications Financial Services Risk

September 2018 Security Notes address a total of 14 flaws in SAP products

Security Affairs

SEPTEMBER 12, 2018

SAP today just released the September 2018 set of Security Notes that address a total of 14 flaws in its products, including a critical flaw in SAP Business Client. The September 2018 Security Patch Day includes other 13 Security Notes, three were rated High severity, 9 Medium risk, and 1 Low severity. Pierluigi Paganini.

Security

Security Financial Services Libraries Authentication

The aftermath of an incident – why keeping records of data breaches and privacy incidents matters

Data Protection Report

JUNE 14, 2022

As privacy incidents and security breaches involving personal information become increasingly frequent, organizations are more and more aware of the importance of implementing a robust privacy program to mitigate the risks and impacts of such incidents. Legal Obligations. Procedural Considerations.

Privacy

Privacy Data breaches Compliance Financial Services

Developments in Health Privacy and Cybersecurity Policy and Regulation: OCR Issues Cybersecurity Warnings and New Health Data Legislation Is Introduced

Data Matters

MARCH 28, 2022

OCR concludes most cyber-attacks could be prevented or substantially mitigated if HIPAA covered entities and business associates implemented HIPAA Security Rule requirements to address the most common types of attacks. implement a security awareness and training program for all workforce members pursuant to the HIPAA Security Rule.

Cybersecurity

Cybersecurity Privacy Insurance Risk

“Cryptoassets are here to stay”: EU Authorities to Provide Guidance on Cryptocurrencies and ICOs

Data Matters

SEPTEMBER 12, 2018

As part of the public discussion, the Commission, the European Securities and Markets Authority (ESMA), the European Banking Authority (EBA) and the UK Financial Conduct Authority (FCA) were present to provide their thoughts. Firms interested in cryptoassets should watch for EU regulatory guidance later this year.

Financial Services

Financial Services Marketing Privacy IT

eIDAS 2.0 REGULATION WILL CHANGE IDP USE CASES INCLUDING ID CAPTURE IN THE EU

Info Source

JULY 18, 2023

The initial eIDAS regulation did not mandate the EU Member States provide their citizens and businesses with a digital identification system enabling secure access to public services or to ensure their use across EU borders. It also lacked provisions for use of digital ID for private services, or with mobile devices.

Authentication

Authentication e-Delivery B2C Marketing

6 Best Threat Intelligence Feeds to Use in 2023

eSecurity Planet

AUGUST 10, 2023

Here are our picks for the top threat intelligence feeds that security teams should consider adding to their defensive arsenal: AlienVault Open Threat Exchange: Best for community-driven threat feeds FBI InfraGard: Best for critical infrastructure security abuse.ch

Cybersecurity

Cybersecurity Access Metadata Energy and Utilities

Tokenization: Ready for Prime Time

Thales Cloud Protection & Licensing

JULY 9, 2018

Individuals and businesses need to combat these threats to secure their own assets and reputations as well as to comply with increasingly numerous and rigorous regulations, such as the EU’s now active General Data Protection Regulation (GDPR). Financial Services. In all these cases, this data needs to be protected.

Digital transformation

Digital transformation Financial Services Encryption Insurance

Keeping Up with New Data Protection Regulations

erwin

APRIL 11, 2019

Some industries, such as healthcare and financial services, have been subject to stringent data regulations for years: GDPR now joins the Health Insurance Portability and Accountability Act (HIPAA), the Payment Card Industry Data Security Standard (PCI DSS) and the Basel Committee on Banking Supervision (BCBS).

GDPR

GDPR e-Discovery Compliance Metadata

Malware researchers analyzed an intriguing Java ATM Malware

Security Affairs

JULY 30, 2019

Experts spotted a Java ATM malware that was relying on the XFS (EXtension for Financial Service) API to “ jackpot ” the infected machine. In that case, the malware was relying on the XFS (EXtension for Financial Service) API to “ jackpot ” the infected machine. Security Affairs – Java ATM malware, hacking).

Financial Services

Financial Services Communications Access IT

Conversational AI use cases for enterprises

IBM Big Data Hub

FEBRUARY 23, 2024

In addition, ML techniques power tasks like speech recognition, text classification, sentiment analysis and entity recognition. When incorporating speech recognition, sentiment analysis and dialogue management, conversational AI can respond more accurately to customer needs.

Analytics

Analytics Artificial Intelligence Marketing Education

Transition period under New York Cybersecurity Regulation ends March 1, 2019

Data Protection Report

JANUARY 7, 2019

The two-year transitional period under the New York State Department of Financial Services (“DFS””) Cybersecurity Regulation , 23 NYCRR 500 (the “Regulation”), will expire on March 1, 2019, with the final remaining requirement becoming effective. Third-party service provider risk management program.

Cybersecurity

Cybersecurity Compliance Financial Services Risk

IBM teams up with organizations on AI incubator for social impact

IBM Big Data Hub

MARCH 2, 2022

Alabama Appleseed is a public policy and direct service organization based in Montgomery and Birmingham that uses policy analysis, original research, public education, and community organizing to build a more just and equitable Alabama. Read more on AI for social good: [link].

Data science

Data science Analytics Education Financial Services

The most valuable AI use cases for business

IBM Big Data Hub

FEBRUARY 14, 2024

Customer-facing AI use cases Deliver superior customer service Customers can now be assisted in real time with conversational AI. Voice-based queries use natural language processing (NLP) and sentiment analysis for speech recognition so their conversations can begin immediately.

Artificial Intelligence

Artificial Intelligence Retail Unstructured data Insurance

UK FCA Consults on Changes to Strong Consumer Authentication, Dedicated Interfaces, and Guidance on Payment Services

Data Matters

FEBRUARY 25, 2021

This follows the FCA’s announcement in its 2020-21 business plan that payment services were one of its main supervisory priorities 1 and its temporary guidance of July 9, 2020, on prudential risk management and safeguarding in light of the COVID-19 pandemic ( Temporary COVID Guidance ). Transaction risk analysis. 3 At PERG 15.

Authentication

Authentication Paper Risk Insurance

8 Interesting Predictions for the Intelligent Information Capture Market in 2022

Info Source

MARCH 16, 2022

The analysis of shipments of Document Scanners and Multi-Functional Peripherals reveals a shift towards lower end devices due to increased demand from home office workers since the start of the pandemic. Sentiment analysis takes customer support to a whole different level. We expect a continued growth in adoption, in 2022 and beyond.

Information capture

Information capture Marketing Digital transformation Cloud

8 Interesting Predictions for the Intelligent Information Capture Market in 2022

Info Source

MARCH 16, 2022

The analysis of shipments of Document Scanners and Multi-Functional Peripherals reveals a shift towards lower end devices due to increased demand from home office workers since the start of the pandemic. Sentiment analysis takes customer support to a whole different level. We expect a continued growth in adoption, in 2022 and beyond.

Information capture

Information capture Marketing Digital transformation Cloud

Institutional Investor’s Introduction to Blockchain and Digital Asset Investing

Data Matters

NOVEMBER 2, 2021

We will also discuss a developing range of services referred to as digital asset “prime brokerage” — describing the suite of services typically provided by these prime brokers and comparing them to traditional offerings of prime brokers in the securities space.

Blockchain

Blockchain Marketing Access Risk

Infosource Global Capture & IDP Vertical Market Analysis 2022-2023 Update

Info Source

DECEMBER 8, 2023

In our vertical market sizing and analysis, we cover horizontal use cases e.g., accounting, HR management, as well as vertical specific use cases e.g., bank account opening, mortgage processing and insurance claims processing. As a result, we predict single digit growth in the next 5 years.

Marketing

Marketing Customer Experience Energy and Utilities Digital transformation

New York Regulators Call on Insurers to Strengthen the Cyber Underwriting Process

Hunton Privacy

FEBRUARY 25, 2021

As reported on the Hunton Insurance Recovery blog , on February 4, 2021, the New York Department of Financial Services (“NYDFS”), which regulates the business of insurance in New York, has issued guidelines, in the Insurance Circular Letter No.

Insurance

Insurance Cybersecurity Risk Education

Accelerating AI & Innovation: the future of banking depends on core modernization

IBM Big Data Hub

JUNE 2, 2023

In the rapidly evolving landscape of financial services, embracing AI and digital innovation at scale has become imperative for banks to stay competitive. By embedding financial services into everyday activities, banks can deliver hyper-personalized and convenient experiences, enhancing customer satisfaction and loyalty.

Financial Services

Financial Services Customer Experience Cloud Digital transformation

Leveraging high performance computing to help solve complex challenges across industries

IBM Big Data Hub

JULY 27, 2023

As enterprises look to solve their most complex challenges, IBM Cloud® HPC is designed to bring an integrated solution across critical components of compute, network, storage and security, and it aims to help enterprises address regulatory and efficiency demands to clients.

Computer and Electronics

Computer and Electronics Financial Services Cloud Artificial Intelligence

The Week in Cyber Security and Data Privacy: 4 – 10 March 2024

IT Governance

MARCH 11, 2024

At the end of each month, these incidents – and any others that we find – will be used to inform our monthly analysis of data breaches and cyber attacks. Source (New) Transport USA Yes 3,815 Okta Source 1 ; source 2 (Update) Cyber security USA Yes 3,800 Shah Dixit & Associates, P.C. UniCredit fined €2.8

Data Privacy

Data Privacy Privacy Security Data breaches

Regulatory Update: NAIC Summer 2019 National Meeting

Data Matters

SEPTEMBER 4, 2019

Securities and Exchange Commission on June 5, 2019, broker-dealers and associated persons are required to act in the best interest of a retail customer when recommending a securities transaction or investment strategy involving securities to a retail customer. 43R — Loan-Backed and Structured Securities and SSAP No.

Insurance

Insurance Paper Risk Analytics

Capital Markets, AI, and the need for governance

Collibra

OCTOBER 31, 2023

With every financial services organization focused on making better and faster decisions, data professional and business leaders are eager to better understand how AI can facilitate their strategic goals. Financial services orgs, especially those in capital markets, frequently has been on the forefront of generative AI investment.

Marketing

Marketing Government Financial Services Artificial Intelligence

GUEST ESSAY: Few consumers read privacy policies — tools can now do this for them

The Last Watchdog

MARCH 14, 2022

Financial services, health, home security, governance and all other mission critical services are now provided online. Service providers update privacy policies on a regular basis with limited or no notifications to end users at all. But these accounts are not all about networking and games.

Privacy

Privacy Artificial Intelligence Financial Services Archiving

How generative AI delivers value to insurance companies and their customers

IBM Big Data Hub

DECEMBER 1, 2023

They must comply with an increasing regulatory burden, and they compete with a broad range of financial services companies that offer investment products that have potential for better returns than traditional life insurance and annuity products.

Insurance

Insurance Digital transformation Customer Experience Cloud

Comments Sought on Proposed Rulemaking: Computer-Security Incident Notification Requirements for Banking Organizations and Their Bank Service Providers

Data Matters

DECEMBER 23, 2020

Federal Deposit Insurance Corporation (FDIC) approved and the federal banking agencies jointly announced on December 18 a notice of proposed rulemaking, Computer-Security Incident Notification Requirements for Banking Organizations and Their Bank Service Providers (NPR). On December 15, 2020, the U.S.

Security

Security Cybersecurity Insurance Communications

The Week in Cyber Security and Data Privacy: 4 – 10 December 2023

IT Governance

DECEMBER 11, 2023

At the end of each month, these incidents – and any others that we find – will be used to inform our monthly analysis of data breaches and cyber attacks. Researchers from the German cyber security company Aplite discovered 3,806 servers from 111 countries accessible on the Internet. Data breached: more than 59 million data records.

Data Privacy

Data Privacy Energy and Utilities Privacy Manufacturing

The Week in Cyber Security and Data Privacy: 8 – 14 January 2024

IT Governance

JANUARY 16, 2024

At the end of each month, these incidents – and any others that we find – will be used to inform our monthly analysis of data breaches and cyber attacks. Welcome to this week’s round-up of the biggest and most interesting news stories. Interested parties are invited to submit their responses to the calls for contributions by 11 March.

Data Privacy

Data Privacy Privacy Manufacturing Retail

Mitigating the impact of climate change in insurance and other financial services

Accelerate hybrid cloud transformation through IBM Cloud for Financial Service Validation Program

Webinars

Trending Sources

NYDFS releases major update to Part 500 cybersecurity requirements for financial services companies

Webinars

Payment Processing Giant TSYS: Ransomware Incident “Immaterial” to Company

The Week in Cyber Security and Data Privacy: 6 – 12 November 2023

New Anti Anti-Money Laundering Services for Crooks

GUEST ESSAY: 5 security steps all companies should adopt from the Intelligence Community

SAP April 2019 Security Patch Day addresses High severity flaws in Crystal Reports, NetWeaver

The Rise of One-Time Password Interception Bots

Exclusive: Welcome “Frappo” – Resecurity identified a new Phishing-as-a-Service

The Week in Cyber Security and Data Privacy: 12 – 18 February 2024

The largest Russian bank Sberbank hit by a massive DDoS attack

Impact of IDP on Business Growth – Customer Onboarding Use Case

The aftermath of an incident – business considerations surrounding record-keeping

Critical RCE affects older Diebold Nixdorf ATMs

September 2018 Security Notes address a total of 14 flaws in SAP products

The aftermath of an incident – why keeping records of data breaches and privacy incidents matters

Developments in Health Privacy and Cybersecurity Policy and Regulation: OCR Issues Cybersecurity Warnings and New Health Data Legislation Is Introduced

“Cryptoassets are here to stay”: EU Authorities to Provide Guidance on Cryptocurrencies and ICOs

eIDAS 2.0 REGULATION WILL CHANGE IDP USE CASES INCLUDING ID CAPTURE IN THE EU

6 Best Threat Intelligence Feeds to Use in 2023

Tokenization: Ready for Prime Time

Keeping Up with New Data Protection Regulations

Malware researchers analyzed an intriguing Java ATM Malware

Conversational AI use cases for enterprises

Transition period under New York Cybersecurity Regulation ends March 1, 2019

IBM teams up with organizations on AI incubator for social impact

The most valuable AI use cases for business

UK FCA Consults on Changes to Strong Consumer Authentication, Dedicated Interfaces, and Guidance on Payment Services

8 Interesting Predictions for the Intelligent Information Capture Market in 2022

8 Interesting Predictions for the Intelligent Information Capture Market in 2022

Institutional Investor’s Introduction to Blockchain and Digital Asset Investing

Infosource Global Capture & IDP Vertical Market Analysis 2022-2023 Update

New York Regulators Call on Insurers to Strengthen the Cyber Underwriting Process

Accelerating AI & Innovation: the future of banking depends on core modernization

Leveraging high performance computing to help solve complex challenges across industries

The Week in Cyber Security and Data Privacy: 4 – 10 March 2024

Regulatory Update: NAIC Summer 2019 National Meeting

Capital Markets, AI, and the need for governance

GUEST ESSAY: Few consumers read privacy policies — tools can now do this for them

How generative AI delivers value to insurance companies and their customers

Comments Sought on Proposed Rulemaking: Computer-Security Incident Notification Requirements for Banking Organizations and Their Bank Service Providers

The Week in Cyber Security and Data Privacy: 4 – 10 December 2023

The Week in Cyber Security and Data Privacy: 8 – 14 January 2024

Stay Connected