Encryption and Financial Services - Information Management Today

Defending Financial Services Against Fraud in a Shifting Cyber Landscape

Thales Cloud Protection & Licensing

NOVEMBER 13, 2023

Defending Financial Services Against Fraud in a Shifting Cyber Landscape sparsh Tue, 11/14/2023 - 05:05 As we approach International Fraud Awareness Week during 12-18 November 2023, taking stock of the evolving threat landscape and the vulnerabilities that financial services organizations face is crucial.

Financial Services

Financial Services Blockchain Encryption Cloud

DORA: 1 year to go! Key recommendations for Financial Services to improve cybersecurity and resilience in multi-clouds

Thales Cloud Protection & Licensing

JANUARY 16, 2024

Key recommendations for Financial Services to improve cybersecurity and resilience in multi-clouds madhav Wed, 01/17/2024 - 05:46 The Digital Operational Resilience Act (DORA) will apply to the EU financial sector from 17 January 2025. As set out in its Article 2, DORA applies to the entire financial services sector.

Financial Services

Financial Services Cloud Cybersecurity Encryption

News Alert: Vaultree partners with Tableau to uniquely blend encryption, data visualization

The Last Watchdog

AUGUST 3, 2023

3, 2023 — Vaultree, a cybersecurity leader pioneering Fully Functional Data-In-Use Encryption (FFDUE), today announces a strategic integration with Tableau, a renowned platform for data visualization and business intelligence. San Francisco and Cork, Ireland, Aug.

Encryption

Encryption Analytics Data Privacy Cybersecurity

Webinars

Peak Performance: Continuous Testing & Evaluation of LLM-Based Applications

MORE WEBINARS

Financial services continue to lead in cybersecurity preparedness, but chinks appear in the armor

Thales Cloud Protection & Licensing

AUGUST 31, 2022

Financial services continue to lead in cybersecurity preparedness, but chinks appear in the armor. It highlights the leadership of financial services in cybersecurity relative to other industries, but it also uncovers some surprising chinks in their cybersecurity armor. Thu, 09/01/2022 - 05:15.

Financial Services

Financial Services Cybersecurity Computer and Electronics Cloud

CHINA: New draft proposes more stringent requirements for processing data in the financial services industry

DLA Piper Privacy Matters

AUGUST 8, 2023

Access controls, storage media, backups, encryption, transfer controls and retention period must be determined based on the category, grade and level of Regulated Data. The Draft Measures reflects PBOC’s approach in implementing the DSL requirements within the financial services industry.

Financial Services

Financial Services Personal data Compliance Data collection

NYDFS releases major update to Part 500 cybersecurity requirements for financial services companies

Data Protection Report

NOVEMBER 8, 2023

On November 1, 2023, the New York Department of Financial Services (“NYDFS”) released the finalized amendments of Part 500 of its cybersecurity regulations. CISO and senior governing body requirements; 500.15: Encryption requirements; 500.16: Incident response plan requirements; and, 500.19(a):

Financial Services

Financial Services Cybersecurity Compliance Government

Financial Services Organizations Need to Adapt their Security Practices to the Shifting Environment

Thales Cloud Protection & Licensing

NOVEMBER 4, 2020

Financial Services Organizations Need to Adapt their Security Practices to the Shifting Environment. Even “traditional banks” seek to drive more revenue from digital products, personalized services and experiences. At the same time, financial services organizations need to adapt to a shifting global environment.

Financial Services

Financial Services Security Digital transformation Encryption

LockFile Ransomware uses a new intermittent encryption technique

Security Affairs

AUGUST 31, 2021

Recently emerged LockFile ransomware family LockFile leverages a novel technique called intermittent encryption to speed up encryption. Sophos researchers discovered that the group is now leveraging a new technique called “intermittent encryption” to speed up the encryption process.

Encryption

Encryption Ransomware Financial Services Manufacturing

Why Financial Service Companies Are Turning to Cloud PKI

HID Global

JANUARY 17, 2023

PKI enables companies to securely authenticate and authorize users, servers, applications and devices and encrypt all data and communication between them.

Financial Services

Financial Services Cloud Encryption Authentication

Historic Charges: First Enforcement Action Filed by New York Department of Financial Services Under Cybersecurity Regulation

Data Matters

AUGUST 19, 2020

On July 21, 2020, the New York State Department of Financial Services (NYDFS or the Department) issued a statement of charges and notice of hearing (the Statement) against First American Title Insurance Company (First American) for violations of the Department’s Cybersecurity Requirements for Financial Services Companies, 23 N.Y.C.R.R.

Financial Services

Financial Services Cybersecurity Insurance Risk

Protecting Sensitive Data with Luna Key Broker for Microsoft Double Key Encryption

Thales Cloud Protection & Licensing

APRIL 1, 2021

Protecting Sensitive Data with Luna Key Broker for Microsoft Double Key Encryption. Thales has integrated its Luna HSMs with DKE for Microsoft 365, which work together to enable organizations to protect their most sensitive data while maintaining full control of their encryption keys. Thu, 04/01/2021 - 14:04.

Encryption

Encryption Compliance Cloud GDPR

Putting data storage at the forefront of cloud security

IBM Big Data Hub

NOVEMBER 7, 2023

Securing sensitive data in an evolving landscape Advancements like those in AI and quantum computing can pose new challenges to customers, especially those in highly regulated industries such as financial services, healthcare, telecommunications and more.

Cloud

Cloud Financial Services Security Compliance

GUEST ESSAY: 7 tips for protecting investor data when it comes to alternative asset trading

The Last Watchdog

JULY 11, 2023

Implement strong data encryption. Data encryption is fundamental for protecting sensitive information in alternative asset trading. Industry-standard algorithms for encryption can ensure all data, in transit and at rest, is safe. Prioritize continuous threat detection.

IT

IT Encryption Risk Financial Services

Slack Launched Encryption Key Addon For Businesses

Security Affairs

MARCH 18, 2019

Slack announced today to launch encryption keys that will help businesses to protect their data. Slack announced today to launch encryption keys that will help businesses to protect their data. Slack announced today to launch encryption keys that will help businesses to protect their data.

Encryption

Encryption Risk Financial Services Privacy

Black Friday and Cyber Weekend: Navigating the Tumultuous Waters of Retail Cybersecurity

Thales Cloud Protection & Licensing

NOVEMBER 20, 2023

The IBM 2023 Cost of a Data Breach Report , for example, highlights the continuous financial burden on retailers, which, coupled with potential reputational damage, emphasizes the dire need for retailers to prioritize and bolster their cybersecurity measures. The security of our financial data is of paramount importance.

Retail

Retail Cybersecurity Financial Services Encryption

LoanDepot data breach impacted roughly 16.6 individuals

Security Affairs

JANUARY 23, 2024

Financial services company LoanDepot disclosed a data breach that impacted roughly 16.6 LoanDepot is a financial services company that primarily operates as a mortgage lender. The company provides a range of mortgage and non-mortgage loan products and services. million individuals. million individuals. .

Data breaches

Data breaches Financial Services Cybersecurity Ransomware

RSAC Fireside Chat: The need to stop mobile apps from exposing API keys, user credentials in runtime

The Last Watchdog

MAY 23, 2023

Mobile apps work by hooking into dozens of different APIs, and each connection presents a vector for bad actors to get their hands on “API secrets,” i.e. backend data to encryption keys, digital certificates and user credentials that enable them to gain unauthorized control.

Digital transformation

Digital transformation Financial Services Encryption Communications

An introduction to Wazi as a Service

IBM Big Data Hub

NOVEMBER 14, 2023

With flexible consumption-based pricing, it provides on-demand access to z/OS systems, dramatically improving developer productivity by accelerating release cycles on secure, regulated hybrid cloud environments like IBM Cloud Framework for Financial Services (FS Cloud). The IBM Cloud Framework for Financial Services a.k.a

Financial Services

Financial Services Cloud Compliance Digital transformation

$8 million penalty to NYDFS – and another case of over-retention

Data Protection Report

JANUARY 18, 2024

On January 3, 2024, the New York Department of Financial Services announced a consent order with GGT, where GGT agreed to pay NYDFS $8 million and to surrender its BitLicense (for cryptocurrency trading), due to alleged violations of NYDFS’ cybersecurity and its virtual currency regulations.

Cybersecurity

Cybersecurity Financial Services Compliance Encryption

5 things to know: Driving innovation with AI and hybrid cloud in the year ahead

IBM Big Data Hub

DECEMBER 18, 2023

For organizations of all types—and especially those in highly regulated industries such as financial services, government, healthcare and telco—considerations including the rise of generative AI, evolving regulations and data sovereignty laws and ongoing security challenges must be top of mind.

Cloud

Cloud Financial Services Compliance Digital transformation

BlackCocaine Ransomware, a new malware in the threat landscape

Security Affairs

JUNE 5, 2021

Recently Cyber researchers for Cyble investigated an attack suffered by on May 30, 2021, by Nucleus Software, an India-based IT company in the Banking and Financial Services sector. Nucleus Software declared that it does not store customers’ financial data. . BlackCocaine ” to the filenames of encrypted files.

Ransomware

Ransomware Encryption File names Financial Services

The Clock is Ticking for PCI DSS 4.0 Compliance

Thales Cloud Protection & Licensing

SEPTEMBER 18, 2023

According to the 2022 Thales Data Threat Report – Financial Services Edition , 52% of U.S. financial services organizations report that they have experienced a data breach in the past. Secure data storage is closely related to encryption and key management. million, second only to healthcare.

Compliance

Compliance Financial Services Data breaches Encryption

Navigating the digital wave: Understanding DORA and the role of confidential computing

IBM Big Data Hub

FEBRUARY 5, 2024

The Digital Operational Resilience Act (DORA) marks a significant milestone in the European Union’s (EU) efforts to bolster the operational resilience of the financial sector in the digital age. Furthermore, the RTS Article 6 highlights the necessity for all networked traffic, both internal and external, to be encrypted.

Encryption

Encryption Data Privacy Compliance Cloud

IBM Cloud delivers enterprise sovereign cloud capabilities

IBM Big Data Hub

FEBRUARY 22, 2024

IBM’s Enterprise Cloud for Regulated Industries Building on our expertise working with enterprise clients in industries such as financial services, government, healthcare and telco, we saw the need for a cloud platform designed with the unique needs of these heavily regulated industries in mind.

Cloud

Cloud Computer and Electronics Compliance Financial Services

5 things to know: IBM Cloud’s mission to accelerate innovation for clients

IBM Big Data Hub

AUGUST 1, 2023

With IBM Cloud for Financial Services , a first-of-its-kind cloud with built-in controls informed by the industry, we are working to help clients on their missions to mitigate this risk, positioning financial services and other regulated industries to host applications and workloads in the cloud in a secured environment.

Financial Services

Financial Services Computer and Electronics Cloud Digital transformation

The Most Popular Data Security Webinars of 2022: Sovereignty, Cloud Security and Compliance Top the List

Thales Cloud Protection & Licensing

JANUARY 11, 2023

Security & Compliance for SAP Data in Financial Services. Financial services companies keep some of their most valuable data in SAP applications, triggering the need for both additional security and taking steps toward meeting compliance requirements. Key Findings from 2022 Global Data Threat Report.

Compliance

Compliance Cloud Security Financial Services

Thales & Prime Factors’ 30 Year Collaboration Continues to Deliver Simplicity, Flexibility, and Security for Payment Applications

Thales Cloud Protection & Licensing

SEPTEMBER 14, 2023

A great number of financial services companies buy off-the-shelf, turn-key payment applications, and we know that Thales has many great partners, many of which I worked with directly during my tenure at Thales, that deliver these types of solutions.

Financial Services

Financial Services Security Cloud Marketing

NYDFS Imposes Fine of $5 Million on Carnival for Cybersecurity Breaches

Hunton Privacy

JULY 1, 2022

On June 24, 2022, the New York State Department of Financial Services (“NYDFS” or the “Department”) announced it had entered into a $5 million settlement with Carnival Corp.

Cybersecurity

Cybersecurity Insurance Phishing Financial Services

DEEP TECH NEWS: Respecting individual rights by using ‘privacy preserving aggregate statistics’

The Last Watchdog

JANUARY 28, 2024

To sell us more goods and services, the algorithms of Google, Facebook and Amazon exhaustively parse our digital footprints. Related: The role of ‘attribute based encryption’ There’s nothing intrinsically wrong with companies seeking to better understand their customers.

Privacy

Privacy Data Privacy GDPR Personal data

The Many Challenges of a Multi-Cloud Business Environment

Thales Cloud Protection & Licensing

OCTOBER 27, 2021

Cloud security tools (cloud security posture management, cloud workload protection, cloud identity and entitlement management), data loss prevention, encryption, and multi-factor authentication (MFA) are the most common technologies used for securing cloud environments. Who’s responsible for encryption and key management?

Cloud

Cloud Encryption Financial Services Authentication

Delivering security and scalability in today’s business landscape requires more than setting up a front line of defense

IBM Big Data Hub

DECEMBER 14, 2023

The data security capabilities that are provided by IBM Cloud® Hyper Protect Crypto Services help clients on their confidential computing journey by providing complete control of cloud data encryption keys and cloud hardware security modules.

Cloud

Cloud Security Data breaches Cybersecurity

EventBot, a new Android mobile targets financial institutions across Europe

Security Affairs

APRIL 30, 2020

Security experts from Cybereason Nocturnus team discovered a new piece of Android malware dubbed EventBot that targets banks, financial services across Europe. Researchers from Cybereason Nocturnus team discovered a new piece of Android malware dubbed EventBot that targets banks, financial services across Europe.

Financial Services

Financial Services Libraries Encryption Authentication

Firmware attacks, a grey area in cybersecurity of organizations

Security Affairs

APRIL 5, 2021

Firmware is becoming a privileged target of threat actors because it usually holds sensitive information like credentials and encryption keys. The lack of investments focused on firmware protection, such as Kernel data protection (KDP), or memory encryption, is one of the most worrisome data emerged from the report. UK, and Japan.

Cybersecurity

Cybersecurity Encryption Financial Services Risk

Security Compliance & Data Privacy Regulations

eSecurity Planet

AUGUST 9, 2022

Other industry standards too can have the force of “pseudo-law” – notably, the NIST Cybersecurity Framework, which federal regulators often apply to financial-services firms and government contractors. Thus, it can be difficult for even small enterprises to keep up with information security and data privacy compliance.

Data Privacy

Data Privacy Compliance Privacy Security

How Jamworks protects confidentiality while integrating AI advantages

IBM Big Data Hub

JANUARY 12, 2024

Robust encryption, granular access controls and privacy-preserving techniques become imperative to counter the risks of unauthorized data access and use. How to protect data with full authority at rest, in transit and in use Protecting sensitive data requires a holistic approach including computing, containers, databases and encryption.

Cloud

Cloud Data Privacy Encryption Privacy

NYDFS Cybersecurity Regulations: A glimpse into the future

Thales Cloud Protection & Licensing

NOVEMBER 27, 2018

The cybersecurity regulation ( 23 NYCRR 500 ) adopted by the New York State Department of Financial Services (NYDFS) is nearly two years old. Leading up to that date, companies have had to meet several milestones including hiring a CISO, encrypting all its non-public consumer data and enabling multi-factor authentication.

Cybersecurity

Cybersecurity Financial Services Encryption Data Privacy

How Can We Secure The Future of Digital Payments?

Thales Cloud Protection & Licensing

JANUARY 10, 2022

The financial services ecosystem has evolved tremendously over the past few years driven by a surge in the adoption of digital payments. Retailers and financial organizations need to understand what controls and mitigations they have to put in place to secure their customers’ transactions. Tue, 01/11/2022 - 06:35.

Retail

Retail Security Financial Services Authentication

MITRE ResilienCyCon: You Will Be Breached So Be Ready

eSecurity Planet

NOVEMBER 17, 2022

That double threat — exfiltration and destruction/encryption — makes backup and encryption of data critically important for recovery and to avoid extortion when hackers threaten to release sensitive data. “ Immutable backups ” are often touted as the answer here. Prepare Now. The conference — held in McLean, Va.,

Cloud

Cloud Ransomware Encryption Cybersecurity

Avoslocker ransomware gang targets US critical infrastructure

Security Affairs

MARCH 19, 2022

. “AvosLocker is a Ransomware as a Service (RaaS) affiliate-based group that has targeted victims across multiple critical infrastructure sectors in the United States including, but not limited to, the Financial Services, Critical Manufacturing, and Government Facilities sectors.

Ransomware

Ransomware Passwords Encryption Financial Services

New LockFile ransomware gang uses ProxyShell and PetitPotam exploits

Security Affairs

AUGUST 21, 2021

.” The victims of the Lockfile ransomware gang are in the manufacturing, financial services, engineering, legal, business services, and travel and tourism sectors. Once encrypted the files, the ransomware will append the .lockfile lockfile extension to the encrypted file’s names.

Ransomware

Ransomware Encryption Financial Services Manufacturing

Cuba Ransomware received over $60M in Ransom payments as of August 2022

Security Affairs

DECEMBER 2, 2022

Like other ransomware gangs, Cuba used ‘double extortion’ techniques which means that it exfiltrates data from the target systems before encrypting them and demanding a ransom payment, threatening to publicly release it if payment is not made. “FBI has identified a sharp increase in the both the number of compromised U.S.

Ransomware

Ransomware Financial Services Manufacturing Phishing

Morgan Stanley discloses data breach after the hack of a third-party vendor

Security Affairs

JULY 8, 2021

The American multinational investment bank and financial services firm Morgan Stanley discloses a data breach caused by the hack of an Accellion FTA server of a third-party vendor. The company pointed out that exposed files did not contain passwords that could be used to access financial accounts.

Data breaches

Data breaches Encryption Financial Services Access

Why organizations need to prioritize a PQC-readiness lab

Thales Cloud Protection & Licensing

FEBRUARY 12, 2024

It will involve various components such as crypto discovery (finding your keys and encrypted data), mapping them back to where they are stored, and then re-defining the algorithms and protections in place today. Encryption Jenn Nuttall | Product Marketing Manager More About This Author > Schema

Artificial Intelligence

Artificial Intelligence Cloud Risk Digital transformation

API Security in 2024: Imperva Report Uncovers Rising Threats and the Urgent Need for Action

Thales Cloud Protection & Licensing

MARCH 6, 2024

Nearly one-third (28%) of all DDoS attacks on APIs focus on financial services organizations, the most targeted industry for this type of attack. Encryption Lebin Cheng | VP, API Security More About This Author > Schema The sheer volume of API traffic gives attackers a larger and more attractive target.

Security

Security Authentication Risk Cybersecurity

Defending Financial Services Against Fraud in a Shifting Cyber Landscape

DORA: 1 year to go! Key recommendations for Financial Services to improve cybersecurity and resilience in multi-clouds

Webinars

Trending Sources

News Alert: Vaultree partners with Tableau to uniquely blend encryption, data visualization

Webinars

Financial services continue to lead in cybersecurity preparedness, but chinks appear in the armor

CHINA: New draft proposes more stringent requirements for processing data in the financial services industry

NYDFS releases major update to Part 500 cybersecurity requirements for financial services companies

Financial Services Organizations Need to Adapt their Security Practices to the Shifting Environment

LockFile Ransomware uses a new intermittent encryption technique

Why Financial Service Companies Are Turning to Cloud PKI

Historic Charges: First Enforcement Action Filed by New York Department of Financial Services Under Cybersecurity Regulation

Protecting Sensitive Data with Luna Key Broker for Microsoft Double Key Encryption

Putting data storage at the forefront of cloud security

GUEST ESSAY: 7 tips for protecting investor data when it comes to alternative asset trading

Slack Launched Encryption Key Addon For Businesses

Black Friday and Cyber Weekend: Navigating the Tumultuous Waters of Retail Cybersecurity

LoanDepot data breach impacted roughly 16.6 individuals

RSAC Fireside Chat: The need to stop mobile apps from exposing API keys, user credentials in runtime

An introduction to Wazi as a Service

$8 million penalty to NYDFS – and another case of over-retention

5 things to know: Driving innovation with AI and hybrid cloud in the year ahead

BlackCocaine Ransomware, a new malware in the threat landscape

The Clock is Ticking for PCI DSS 4.0 Compliance

Navigating the digital wave: Understanding DORA and the role of confidential computing

IBM Cloud delivers enterprise sovereign cloud capabilities

5 things to know: IBM Cloud’s mission to accelerate innovation for clients

The Most Popular Data Security Webinars of 2022: Sovereignty, Cloud Security and Compliance Top the List

Thales & Prime Factors’ 30 Year Collaboration Continues to Deliver Simplicity, Flexibility, and Security for Payment Applications

NYDFS Imposes Fine of $5 Million on Carnival for Cybersecurity Breaches

DEEP TECH NEWS: Respecting individual rights by using ‘privacy preserving aggregate statistics’

The Many Challenges of a Multi-Cloud Business Environment

Delivering security and scalability in today’s business landscape requires more than setting up a front line of defense

EventBot, a new Android mobile targets financial institutions across Europe

Firmware attacks, a grey area in cybersecurity of organizations

Security Compliance & Data Privacy Regulations

How Jamworks protects confidentiality while integrating AI advantages

NYDFS Cybersecurity Regulations: A glimpse into the future

How Can We Secure The Future of Digital Payments?

MITRE ResilienCyCon: You Will Be Breached So Be Ready

Avoslocker ransomware gang targets US critical infrastructure

New LockFile ransomware gang uses ProxyShell and PetitPotam exploits

Cuba Ransomware received over $60M in Ransom payments as of August 2022

Morgan Stanley discloses data breach after the hack of a third-party vendor

Why organizations need to prioritize a PQC-readiness lab

API Security in 2024: Imperva Report Uncovers Rising Threats and the Urgent Need for Action

Stay Connected