Financial Services and the Zero Trust Journey

Data Breach Today

Menlo Security's Mark Guntrip on How to Learn to 'Defend Differently' On one hand, rapid cloud migration has been a boon to financial services organization. But it's also exposed some security weaknesses.

Record-Setting DDoS Attack Hits Financial Service Firm

Data Breach Today

Million Request-Per-Second Attack Launched by 20,000 Bots, Cloudflare Says Security firm Cloudflare says it detected and mitigated a 17.2 million request-per-second (rps) distributed denial of service attack, almost three times larger than any previously reported HTTP DDoS attack

Insiders

Sign Up for our Newsletter

This site is protected by reCAPTCHA and the Google Privacy Policy and Terms of Service apply.

Three use cases for cloud fax in financial services

OpenText Information Management

Fax is so secure that faxed documents and signatures are recognized in the courts as being legally binding. It stands to reason, then, that fax would be the bedrock of financial communications, but are there ways to make it even better?

Key Drivers to Enable Digital Transformation in Financial Services

Data Breach Today

Digital transformation (DX) continues to drive growth across financial services firms, creating new opportunities to increase revenue and foster innovation. Cloud - whether public, private or a hybrid approach - is foundational to achieving DX objectives, as is secure, resilient and scalable network connectivity. Customers demand a seamless experience across all digital channels

Key Drivers to Enable Digital Transformation in Financial Services

Data Breach Today

Digital transformation (DX) continues to drive growth across financial services firms, creating new opportunities to increase revenue and foster innovation. Cloud - whether public, private or a hybrid approach - is foundational to achieving DX objectives, as is secure, resilient and scalable network connectivity. Customers demand a seamless experience across all digital channels

The importance of data quality in Financial Services

Collibra

Financial services are highly regulated and maintain a strong focus on compliance and risk management. Considering that major financial organizations handle enormous amounts of data today, they require data accuracy and integrity at all times to minimize risks.

New: 2019 State of the Internet / Security: Financial Services Attack Economy

Dark Reading

Every organization should be paying attention to the attacks targeting financial services systems

Five benefits of eDiscovery software for Financial Services

OpenText Information Management

Financial Service organizations are among the most highly regulated industries and routinely face a myriad of compliance and administrative proceedings. Prominent financial regulators like the UK Serious Fraud Office and the US Securities and Exchange Commission have already adopted the best eDiscovery (electronic discovery) solutions available to enhance their own reviews.

New York Department of Financial Services Released New Guidance Addressing COVID-19 Related Cybersecurity Risks

HL Chronicle of Data Protection

Continuing its focus on COVID-19’s impact on its regulated entities, on April 13, the New York Department of Financial Services (NYDFS) released new cybersecurity guidance in response to the COVID-19 pandemic.

Salesforce DMP, Financial Services Cloud & B2B Analytics Intro

Perficient Data & Analytics

What You Need to Know About Financial Services Cloud. Field Service Updates in Summer ’18 that Will Change How You Work. Self-Service or Bust: Why Connected Customer Portals are Vital to Customer Experience. Gartner Names Salesforce a Leader in Magic Quadrant for Enterprise High-Productivity Application Platform as a Service. What You Need to Know About Financial Services Cloud: A Case Study. Must-Know Salesforce Updates.

Social Media and the Financial Services Industry

InfoGoTo

Over the last seven years, the financial services industry has increasingly adopted social media platforms. However, the Financial Industry Regulatory Authority (FINRA), the Securities and Exchange Commission (SEC) and the Commodity Futures Trading Commission (CFTC) all have rules and retention requirements about communicating with the public, including via social media. Financial Services FINRA social media social media platforms

Financial Services Sector Rife with Hidden Tunnels

Threatpost

Hacks Vulnerabilities Web Security attack technique data exfiltration Equifax breach financial services hidden tunnels uptickAttackers use the approach to look like legitimate traffic and hide data exfiltration in plain sight.

[Guide] Designing a Data Governance Program in Financial Services

Perficient

logs from transaction systems, routers, servers, firewalls) to bolster security and generate real-time alerts for issues potentially affecting enterprise operations or system and network performance. Data that is accurate, timely, complete, and secure is paramount to providing customers with the ultimate experience they demand. database software, servers, routers, firewalls, security appliances). Data is the lifeblood of any company.

The Pulse of ITAD: New Financial Services Webinar

InfoGoTo

Recent IDG research reveals that Financial Services organizations are working to bring their IT asset disposition (ITAD) programs in line with corporate sustainability and security goals.

Components of a Data Governance Strategy in Financial Services

Perficient

Previously, I analyzed the types of data in a governance program for financial services companies. Data Security & Privacy. Requesting access to data should be automated through workflows to facilitate and speed the servicing of requests as to not hinder productivity. Data & Analytics Financial Services data governance Data Governance Strategy in Financial Services Data Strategy financial services data financial services data governance

[Guide] Data Privacy Laws in Financial Services: NYDFS 500 & GDPR

Perficient

It is typically called personally identifiable information (PII) and can be any combination of a person’s name, address, social security number, phone number, email address, bank/financial account number, credit/debit card number, biometric records, health records, or other information. New York State Department of Financial Services (NYDFS 500) and General Data Protection Regulation (GDPR) are two important privacy laws with which many financial services institutions must comply.

Financial Services Organizations Need to Adapt their Security Practices to the Shifting Environment

Thales Cloud Protection & Licensing

Financial Services Organizations Need to Adapt their Security Practices to the Shifting Environment. Even “traditional banks” seek to drive more revenue from digital products, personalized services and experiences. Weak security practices lead to data breaches.

New York Department of Financial Services Issues First Guidance by a U.S. Regulator Concerning Cyber Insurance

Data Matters

On February 4, 2021, the New York Department of Financial Services (NYDFS) issued Circular Letter No. The post New York Department of Financial Services Issues First Guidance by a U.S. Cybersecurity Information Security Insurance Policy2 announcing a Cyber Insurance Risk Framework (the Framework) that describes industry best practices for New York-regulated property/casualty insurers.

Financial Services Data – More at risk than you’d believe

Thales Cloud Protection & Licensing

One of the top findings from the 2018 Thales Data Threat Report, Financial Services Edition was that data breaches in U.S. financial services organizations are increasing at an alarming rate. IT security pros in financial services organizations reporting that their organization already had a data breach – but breaches are increasing at alarming rates. Check out our data security solutions , and follow us on Twitter , LinkedIn and Facebook.

OpenText STP Financial Hub revolutionizes workflows in the Financial Services sector

OpenText Information Management

It’s been a busy 2018 here on our OpenText™ Straight Through Processing (STP) for Securities (STP Financial Hub) platform, with many new clients discovering the benefits of our powerful workflow engine and flexible connectivity methods, along with our constant improvement and enhancement process for our existing clients.

NY Department of Financial Services Issues Cyber Fraud Alert to Regulated Entities Using Instant Quote Websites

Hunton Privacy

Lastly, the Alert provides recommendations to secure data, noting that (1) regulated entities should review whether it is necessary to display any NPI (even redacted NPI) and (2) NPI should not be displayed on public-facing sites unless there is a compelling reason to do so.

Initiating a Data Governance Program in Financial Services

Perficient

To learn more about the components of a data governance program and the steps to take to remediate any weaknesses that can compromise the quality and security of a firm’s data; download our guide here or click the link below. Data & Analytics Financial Services data governance Data Governance Program Data Governance Program in Financial Services financial services data

NYDFS 500 and GDPR in Financial Services – Actions to Take Now

Perficient

The first step any financial institution must take in its response to the laws is to evaluate its exposure and current capabilities in protecting sensitive business and customer data. Implement: Technical services are required to create/ update cybersecurity policies and procedures. For more information on NYDFS 500 and GDPR laws and regulations on the financial services industry, please download our guide here , or click below.

Historic Charges: First Enforcement Action Filed by New York Department of Financial Services Under Cybersecurity Regulation

Data Matters

On July 21, 2020, the New York State Department of Financial Services (NYDFS or the Department) issued a statement of charges and notice of hearing (the Statement) against First American Title Insurance Company (First American) for violations of the Department’s Cybersecurity Requirements for Financial Services Companies, 23 N.Y.C.R.R.

First American Financial Pays Farcical $500K Fine

Krebs on Security

In May 2019, KrebsOnSecurity broke the news that the website of mortgage settlement giant First American Financial Corp. NYSE:FAF ] was leaking more than 800 million documents — many containing sensitive financial data — related to real estate transactions dating back 16 years.

NY Department of Financial Services Issues Guidance to Regulated Entities Regarding Cybersecurity During the COVID-19 Pandemic

Hunton Privacy

On April 13, 2020, the New York Department of Financial Services (“NYDFS”) issued guidance (“April guidance”) to all New York State entities covered under NYDFS’s cybersecurity regulation regarding assessing and addressing heightened cybersecurity risks due to the COVID-19 pandemic.

NY Charges First American Financial for Massive Data Leak

Krebs on Security

In May 2019, KrebsOnSecurity broke the news that the website of mortgage title insurance giant First American Financial Corp. First American Financial Corp. Securities and Exchange Commission each announced they were investigating the company.

Work from Everywhere, Securely

Data Breach Today

CyberEdBoard Executive Member, Charmaine Valmonte, guest speaks at ISMG Virtual Cybersecurity Summit Asia: Financial Services Volmonte is VP, IT security and IT infrastructure, Aboitiz Group of Companies.

Using Machine Learning To Gain an Edge in The Financial Services Market

Rippleshot

When discussions about fraud, payments and security arise, you won't get long into a converstion before machine learning and artificial intelligence (AI) come into the mix. Through the application of high-performance software, machine learning technology has created advanced computing abilities that have a broad-scale reach for community banks that allow them to better compete against the bigger banks.

An introduction to 360 degree threat detection

OpenText Information Management

According to Accenture, the cost of cybercrime to US Financial Services companies rose 40% between 2014 and 2017, on average costing companies over $18 million per year. Add to this much tighter data protection regulations – such as those in the US and Europe – and the need for endpoint security becomes clear.

NY Department of Financial Services Issues Reminder for Cybersecurity Filing Deadline

Hunton Privacy

On January 22, 2018, the New York Department of Financial Services (“NYDFS”) issued a press release reminding entities covered by its cybersecurity regulation that the first certification of compliance with the regulation is due on or prior to February 15, 2018. As DFS continues to implement its landmark cybersecurity regulation, we will take proactive steps to protect our financial services industry from cyber criminals.”.

Spearphishing Attack Spoofs Microsoft.com to Target 200M Office 365 Users

Threatpost

Web Security exact domain spoofing financial services Healthcare Ironscales manufacturing Microsoft Office 365 spearphishing Spoofing telecom utilities vertical markets

NY Investigates Exposure of 885 Million Mortgage Documents

Krebs on Security

New York regulators are investigating a weakness that exposed 885 million mortgage records at First American Financial Corp. That measure, which went into effect in March 2019 and is considered among the toughest in the nation, requires financial companies to regularly audit and report on how they protect sensitive data, and provides for fines in cases where violations were reckless or willful. ” A Little Sunshine Data Breaches First American Financial Corp.

Financial Execs Say Security a Top Cryptocurrency Barrier

Data Breach Today

Oracle Kills 402 Bugs in Massive October Patch Update

Threatpost

Over half of Oracle's flaws in its quarterly patch update can be remotely exploitable without authentication; two have CVSS scores of 10 out of 10.

Open Source Security Foundation Raises $10M

Dark Reading

Industry leaders from technology, financial services, telecom, and cybersecurity sectors respond to Biden's executive order and commit to a more secure future for software

Striking a balance between security and usability of sensitive data

OpenText Information Management

Last year, the number of personal records exposed by cyber attacks on the financial services industry was an incredible 446,575,334 – more than triple from the year before. The financial and reputational damage from these data breaches can be immense.

Akamai Talks Massive Uptick in Credential-Stuffing Attacks Against Bank APIs

Threatpost

Researchers with Akamai say that 75 percent of all credential abuse attacks against the financial services industry were targeting APIs. Hacks Videos Web Security API api attack bank cyber attack credential abuse Credential stuffing DDoS attack financial services sql injection

Oracle Tackles a Massive 405 Bugs for Its April Quarterly Patch Update

Threatpost

Oracle will detail 405 new security vulnerabilities Tuesday, part of its quarterly Critical Patch Update Advisory.

OnDemand | From Endpoint to Cloud: 2021 Best Practices for Securing a Data Path

Data Breach Today

50% of phishing attacks targeting financial services intend on stealing corporate login credentials View this session to learn why mobile threat exposures continue to increase & best practices for mitigating the threats