Leading Technology Vendor Discusses the Need for Vulnerability Assessments & Remediation Processes for Applications Whether Developed In-House or By a Third-Party
Application security is a key focus of regulatory agencies - ensuring that financial institutions pay as much attention to third-party applications as...
I have issues with weak passwords and easy to guess answers for challenge questions on password resets. This was Sarah Palin's (Republican vice presidential candidate)apparent problem with her personal Yahoo! email account. It only took a Google search and some thought on a young hacker's part to find out the...
I was presenting at a credit union conference this week, where the session before mine covered current economic conditions. The timing was perfect in a macabre sort of way, as the 24 hours prior were filled with news about the Merrill Lynch rescue and Lehman Brothers collapse. As part of the Q&A phase, a prediction...
A Guide for Merchants and Member Service Providers
This white paper reviews the basics of PCI, including who must comply, compliance requirements, validation requirements and penalties. It also examines key things to look for when selecting a PCI network testing service.
Topics include:
Compliance...
There were two crashes heard within the banking industry on Monday.
One was the stock market, which suffered its biggest drop since the aftermath of the terrorist attacks of 2001 - the Dow Jones industrial average alone lost 504 points, or 4.4%. The Nasdaq composite lost 3.6%.
But the second crash may have been...
As regulators turn up the heat on banking institutions to improve vendor management, the industry's emerging standard assessment program has a new look and a new version set to debut this fall.
The Shared Assessments Program, formerly known as the Financial Institution Shared Assessment Program (FISAP), is promoted...
Anti-money laundering has been one of the dominant stories in financial services this year, and the trend isn't likely to abate anytime soon.
In this exclusive interview, attorney and AML expert Ross Delston discusses:
The latest AML trends, including Trade-Based Money Laundering;
How institutions are...
To quote from his own biography, Eugene H. Spafford is one of the most senior and recognized leaders in the field of computing. He has an on-going record of accomplishment as a senior advisor and consultant on issues of security and intelligence, education, cybercrime and computing policy to a number of major...
This whitepaper presents an overview of the security options that can help thwart fraud today and into the future, including multi-factor authentication and fraud detection solutions. With a clear understanding of the tools available and a way to effectively begin and evolve, organizations can take the essential steps...
Sahba Kazerooni is a senior security consultant with Security Compass, a security consulting and training firm specializing in application security based in New Jersey. He is also an internationally-renowned speaker on security topics, and has provided presentations at security conferences around the world, including...
With all the focus on banks and credit unions' work to comply with the ID Theft Red Flags Rule, many in the financial services industry have forgotten that the largest share of entities impacted by this new regulation are non-banking institutions -- finance companies, automobile dealers, mortgage brokers, etc.
And...
It was a busy weekend for bank regulators, with the FDIC closing a bank in Nevada on Friday evening and the Treasury's takeover of mortgage giants Fannie Mae and Freddie Mac on Sunday morning. Both events are symptomatic of the country's troubled economy, as well as signal flares to other financial services entities...
To me, this is one of the sleeper stories of the year.
The ID Theft Red Flags Rule, Business Continuity and Anti-Money Laundering have dominated the headlines - and banking/security priorities. But recent attention paid to Application Security has the potential to fuel one major fire drill in 2009.
When I started this job a year ago and reached out to banking/security leaders, the overwhelming message I got was "Security awareness - we don't do it well."
For banking institution employees, maybe there was an information security training seminar when they first started. Or an occasional workshop on identity...
With an estimated damage toll that may reach $12 billion, the aftermath of hurricane Gustav's track through Mississippi, Louisiana and other states finds banks and credit unions cleaning up and reopening their institutions.
Now being the "prime time" for hurricanes, all eyes remain closely fixed to television...
Our website uses cookies. Cookies enable us to provide the best experience possible and help us understand how visitors use our website. By browsing bankinfosecurity.com, you agree to our use of cookies.