Microsoft warned on Monday that Russia-linked attackers are gaining access to corporate networks through poorly configured devices, such as office printers and VOIP phones. The remedy is paying more attention to deployed IoT devices, including establishing security policies and regular testing.
For financial institutions, every new customer heralds an opportunity - but if the organization doesn't know enough about that customer there may be risks as well. Using know your client (KYC) and customer due diligence (CDD) checks as an initial first line of defense in reducing the risk of money laundering and...
The fast-evolving, sophisticated, and increasingly global threat of financial crime is one of banking's biggest challenges. To be truly future-proof, institutions must move faster than the criminals who seek to attack them - which makes one thing clear: The most successful and profitable banks of tomorrow will be...
Disruption continues to reshape the financial services industry. Time-proven products and services have been rendered obsolete in the blink of an eye, rewriting the banking landscape and leaving it scattered with new challenges.
Online banking and faster payments have been embraced by customers, but money launderers...
More lawsuits have been filed in the wake of the Capital One breach that exposed the data of more than 100 million individuals. GitHub is also a target of one of those lawsuits, which alleges the code-sharing site failed to promptly remove breached data.
A new strain of ransomware called MegaCortex is beginning to fill part of the void left by GandCrab and other variants that have been discontinued, targeting large corporations with huge ransom demands, according to a new analysis released Monday by Accenture's iDefense.
Capital One's enormous data breach is a subject of intense scrutiny as well as fear. A definitive post mortem is likely months away. But security professionals have ideas as to how the breach was achieved and the weaknesses that led to it.
Protecting your enterprise from breaches and account takeovers has never been a bigger challenge. New tools make it possible for even unsophisticated actors to perform advanced, widespread attacks that put your organization at risk. According to the 2019 Verizon Breach Report, stolen credentials are the leading attack...
The latest edition of the ISMG Security Report analyzes the root causes of the Capital One data breach. Also featured: breach remediation advice and compliance with New York's new third-party risk management requirements.
Adapting fraud systems from desktop to mobile is no simple task. Retailers may misinterpret legitimate shopping behavior as 'risky' due to the nature of cellular connections (e.g. a mobile carrier may shift your browsing to another location).
To deal with the increase in mobile usage, organizations must also make...
The digitalization of business processes and advent of mobile computing have given rise to the next generation of fraud. Cyber-criminals have a variety of tools and techniques - as well as opportunities to steal money and services.
Companies need a new approach to fraud prevention - one that stops fraud early and...
The EU Payment Services Directive (PSD2),
presents any business that processes online
payments or provides account related services
in the European Economic Area (EEA) with the
challenge of balancing the Strong Customer
Authentication (SCA) requirements with a seamless
To gain competitive...
Account takeover is the fastest growing fraud vector in retail banking. It's lucrative. It's a service you never want to provide.
Motivated fraudsters attack from every angle, limiting the effectiveness of the best one-dimensional defenses.
iovation offers the most secure, seamless, and comprehensive solution....
A newly discovered vulnerability in Visa's contactless payment cards could allow fraudsters to bypass payment limits of 30 British pounds ($37) at U.K. banks, according to researchers at Positive Technologies, who claim the vulnerability could be exploited in other countries as well.