Security Affairs

NOVEMBER 9, 2023

Sberbank , the Russian banking and financial services giant, announced that it was recently hit by a record-breaking distributed denial of service (DDoS) attack that reached 1 million RPS. The largest and oldest bank in Russia Sberbank faced the record-breaking DDoS attack that reached 1 million RPS.

Personal data 319

Personal data Financial Services Marketing Cloud 319

Security Affairs

APRIL 20, 2023

If malicious actors accessed the exposed data, the company could have faced devastating consequences and put their clients at risk, as financial services are the main target for cybercriminals. Employees, businesses, and individuals whose data were exposed could be at risk of spear phishing campaigns,” added researchers.

Personal data 246

Personal data Phishing Risk Communications 246

Security Affairs

DECEMBER 17, 2023

Hunters International ransomware gang claims to have hacked the Fred Hutch Cancer Center New NKAbuse malware abuses NKN decentralized P2P network protocol Snatch ransomware gang claims the hack of the food giant Kraft Heinz Multiple flaws in pfSense firewall can lead to arbitrary code execution BianLian, White Rabbit, and Mario Ransomware Gangs Spotted (..)

Security 315

Security Data breaches Ransomware Artificial Intelligence 315

IBM Big Data Hub

JANUARY 16, 2024

The start of 2024 brings forth many questions as to what we can expect in the year ahead, especially in the financial services industry, where technological advances have skyrocketed and added complexities to an already turbulent landscape.

Financial Services 48

Financial Services Customer Experience Cloud Digital transformation 48

Security Affairs

JUNE 29, 2024

Infosys McCamish Systems (IMS) revealed that the 2023 data breach following the LockBit ransomware attack impacted 6 million individuals. IMS specializes in providing business process outsourcing (BPO) and information technology (IT) services specifically tailored for the insurance and financial services industries.

Data breaches 272

Data breaches e-Discovery Ransomware Insurance 272

The Last Watchdog

JANUARY 28, 2024

However, this intensive ingestion of personal data points — in the absence of reasonable oversight — has triggered consumer anxiety , and rightly so. This, in turn, has led to rising data privacy regulations. In addition to developing and getting in position to supply the technology, Boyle says.

Privacy 263

Privacy Data Privacy GDPR Personal data 263

Security Affairs

MARCH 18, 2019

Using Slack EKM, IT admins can revoke access to data within a particular Slack channel, for example, rather than disrupting all users on the entire platform. There are millions of third party app available on the internet that needs permission, integration and access to your personal data. Third Party Apps. Third Party Apps.

Encryption 266

Encryption Risk Financial Services Access 266

Hunton Privacy

APRIL 22, 2020

On April 13, 2020, the New York Department of Financial Services (“NYDFS”) issued guidance (“April guidance”) to all New York State entities covered under NYDFS’s cybersecurity regulation regarding assessing and addressing heightened cybersecurity risks due to the COVID-19 pandemic.

Financial Services 71

Financial Services Cybersecurity Risk Phishing 71

OpenText Information Management

MAY 2, 2025

While this attack was external, the financial services industry faces an even greater threatinsider-driven breaches. In recent months, malicious insiders have been caught selling confidential bank client data , leaving customers vulnerable to fraud and identity theft. Hackers stole $1.5 million in 2024, up from $5.90

Financial Services 52

Financial Services Data breaches Analytics Cybersecurity 52

The Last Watchdog

SEPTEMBER 24, 2024

Online credit bureaus, like Equifax, Experian, and TransUnion, often see an uptick in new users after breaches because consumers realize the potential risks to their financial well-being and identity.

Authentication 216

Authentication IT ROT Compliance 216

Security Affairs

JANUARY 27, 2022

Personal data belonging to millions of customers of large businesses have been exposed due to a flaw in Onfido IDV. Millions of customers of large businesses have been left vulnerable to identity theft, thanks to a security flaw that exposes their personal data to illicit download. Verification process. Looming dangers.

Personal data 246

Personal data Data breaches Phishing Passwords 246

Hunton Privacy

APRIL 7, 2022

The DIFC, a prominent free zone within the UAE, has its own regulatory framework for virtual assets under the jurisdiction of the Dubai Financial Services Authority. VARA’s mandate includes monitoring trading activities in virtual asset services to prevent price manipulation and establish high standards of protection of personal data.

IT 145

IT Blockchain Personal data Financial Services 145

Schneier on Security

JANUARY 31, 2024

In October, the Consumer Financial Protection Bureau (CFPB) proposed a set of rules that if implemented would transform how financial institutions handle personal data about their customers. This would change the economics of consumer finance and the illicit data economy that exists today.

Financial Services 129

Financial Services Privacy Personal data Marketing 129

Hunton Privacy

OCTOBER 17, 2012

On October 15, 2012, the Singapore Parliament passed the Personal Data Protection Act 2012. The new law will apply only to data processing in the private sector as data processing by public agencies (or organizations acting on behalf of public agencies) are already subject to internal government rules.

Personal data 45

Personal data Financial Services Data breaches Data Privacy 45

Hunton Privacy

JULY 1, 2022

On June 24, 2022, the New York State Department of Financial Services (“NYDFS” or the “Department”) announced it had entered into a $5 million settlement with Carnival Corp. Since Carnival was licensed by the Department to sell insurance in NY State, it was treated as a covered entity under the Cybersecurity Regulation.

Cybersecurity 115

Cybersecurity Insurance Phishing Financial Services 115

Data Matters

JANUARY 28, 2022

Other government agencies, like the New York Department of Financial Services and the Federal Trade Commission, are also increasingly focused on the need for broad implementation of MFA. Like an incident response plan, MFA has become a critical element of cybersecurity programs.

Cybersecurity 157

Cybersecurity Financial Services Authentication Government 157

Hunton Privacy

MARCH 11, 2021

On March 3, 2020, the New York Department of Financial Services (“NYDFS”) announced it had entered into a settlement with Residential Mortgage Services, Inc. (“RMS”) RMS”) related to allegations that RMS violated the NYDFS Cybersecurity Regulation in connection with a 2019 data breach.

Data breaches 97

Data breaches Cybersecurity Financial Services Personal data 97

Security Affairs

MARCH 29, 2022

Earmarked by the FBI as a particular threat to the financial service industry just over a year ago, the increase of internet traffic, data breaches and API usage all contribute to the perfect conditions for successful credential stuffing attacks.

IT 246

IT Passwords Authentication Data Privacy 246

Data Protector

JANUARY 29, 2017

The GDPR is (apparently) going to require data controllers to be more transparent about their records retention policies. The potential fine for not informing individuals, as their personal data is being collected, about retention periods is of course significant. I think not. Perhaps this will change.

GDPR 136

GDPR Privacy Compliance Personal data 136

AIIM

JANUARY 10, 2019

One of the most notable blockchain skeptics – David Gerard –argues that if “you were silly enough to put personal data into an append-only ledger which is a proof-of-work blockchain — that’d be flat-out insane.”. While pseudonymization falls within GDPR protection as such data may be re-identified (i.e.

Blockchain 151

Blockchain GDPR Privacy Personal data 151

ARMA International

APRIL 18, 2022

Introduction to Data Protection Laws. Data protection laws, regulations, and rules control the collection, use, transfer, and storage of personal and sensitive information. Personal data protection requirements may be issued by federal, state (provincial), or local governments.

Personal data 121

Personal data GDPR Privacy Records Management 121

The Last Watchdog

SEPTEMBER 23, 2019

“DataKeep itself works off of policies that say who can or cannot access data in the decrypted state. I asked Russert about this; here’s what he told me: “If you look at the compliance requirements, there’s a whole area having to do with the security of processing data. Protecting the data itself is logical and smart.

Security 159

Security Encryption Compliance Data breaches 159

Data Protection Report

DECEMBER 23, 2019

The most significant action came in October, when the Berlin Commissioner for Data Protection and Freedom of Information issued a €14.5million fine against German real estate company, Deutsche Wohnen SE, relating to the excessive retention of personal data. In the U.S.,

Privacy 144

Privacy Compliance Personal data Risk 144

Data Protection Report

JULY 5, 2021

The Commission is assessing the application of the Trade Secrets Directive in the context of the data economy, including a study focusing on four key sectors (automotive, health, energy and financial services) with a view to providing clarifying guidance at a later date. B2B data sharing: Ensuring fairness and competitiveness.

B2B 144

B2B Personal data Cloud Access 144

Collibra

FEBRUARY 11, 2020

Seizing an opportunity to improve data relationships with third parties. Regulators are focusing on the data relationships financial services organizations have with third parties, including how well personal information is being managed. Exploring third party data relationship risk.

Financial Services 59

Financial Services Digital transformation Personal data Compliance 59

DLA Piper Privacy Matters

FEBRUARY 28, 2022

Primary areas of focus for the DPC in 2021 included the safeguarding of children’s data protection rights, progressing ongoing large-scale inquires and prioritising responding to complaints which have raised issues of substance, with a data subject centric approach to resolution. Ongoing Inquiries & Data Transfer Enforcement.

Financial Services 97

Financial Services Data breaches Personal data Compliance 97

IT Governance

OCTOBER 13, 2023

EvilProxy phishing campaign targets Microsoft 365 accounts via indeed.com A phishing campaign identified by Menlo Security has been targeting senior executives in various industries – most notably banking and financial services, property management and real estate, and manufacturing – since July. Can you spot a phishing scam?

Phishing 105

Phishing Financial Services Manufacturing Personal data 105

Thales Cloud Protection & Licensing

OCTOBER 28, 2024

As DORA emphasizes both resilience and cybersecurity, these techniques are indispensable in ensuring that the financial sector can uphold privacy standards while meeting operational resilience goals. AI models can unintentionally expose underlying data through outputs, potentially revealing confidential information.

Privacy 62

Privacy Encryption Compliance Risk 62

DLA Piper Privacy Matters

JULY 22, 2021

The rights around DSARs are set out in the GDPR and Recital 63 makes it clear that it is the intention that “a data subject should have the right of access to personal data… in order to be aware of, and verify, the lawfulness of the processing”. Approach of the Irish Data Protection Commission. Dealing with the DSAR.

Access 119

Access Personal data GDPR Financial Services 119

eSecurity Planet

SEPTEMBER 21, 2024

New York: New York SHIELD Act The New York SHIELD Act (Stop Hacks and Improve Electronic Data Security Act) enhances data security requirements for businesses handling the private information of New York residents. The act mandates that businesses implement reasonable safeguards to protect personal data and timely report data breaches.

Cybersecurity 120

Cybersecurity Computer and Electronics Compliance Privacy 120

Data Protection Report

JANUARY 30, 2023

Which one is NOT on the list?

Privacy 115

Privacy Cybersecurity Personal data Insurance 115

IT Governance

JULY 31, 2019

Tennessee high school students at risk after data breach at Higher Education Commission vendor (unknown). Isle of Man government ‘mislays’ personal data of home care residents (33). Browser extensions are causing data breaches at US-based healthcare software companies (unknown).

Data breaches 111

Data breaches Ransomware Personal data Government 111

DLA Piper Privacy Matters

APRIL 20, 2021

This introduces a data lifecycle security framework, and represents the key guideline for handling personal and other financial information by financial institutions (i.e. similar to the PIS Specification, but focused on the banking and financial services industry). Level 1: public data.

Compliance 111

Compliance Security Financial Services Data collection 111

IT Governance

NOVEMBER 9, 2018

So, you are carrying out profiling if you collect and analyse personal data using algorithms or AI, make associations between habits and characteristics based on that data, and predict individuals’ behaviour based on the demographic or profile that you’ve assigned them. What is profiling under the GDPR?

GDPR 88

GDPR Personal data Compliance Financial Services 88

The Last Watchdog

FEBRUARY 25, 2019

Added pressure came from having to also meet stringent new data security rules that took shape in the form of Europe’s General Data Protection Regulation, New York state’s Cybersecurity Requirements for Financial Services Companies and California’s Consumer Privacy Act. And the massive data breaches just keep on coming.

Access 169

Access Government Authentication Data breaches 169

Collibra

OCTOBER 31, 2023

With every financial services organization focused on making better and faster decisions, data professional and business leaders are eager to better understand how AI can facilitate their strategic goals. Not surprisingly, everyone was talking about Artificial Intelligence (AI). Already using AI?

Marketing 105

Marketing Government Financial Services Artificial Intelligence 105

Data Matters

SEPTEMBER 24, 2019

The GDPR was designed to harmonize data protection laws across Europe and to protect EU residents’ data privacy rights; and, its coming triggered significant privacy and data protection compliance activities amongst organizations doing business in the EU and working with the personal data of EU residents.

Personal data 68

Personal data GDPR Data Privacy Privacy 68