Upon issuing its 2011 update to online authentication guidance, the FFIEC put banking institutions on notice: Examiners will assess how institutions satisfy these enhanced expectations starting in January 2012. So, how best should banking/security leaders go about meeting these new directives and ensuring the security...
For banking institutions, the release of the 2011 FFIEC Authentication Guidance is a game-changer, handing down new standards for layered security controls, risk assessments, authentication techniques and customer awareness. But what does all this mean to technology vendors and third-party service providers? Attend...
"I think we'll see some additional investments in fraud prevention tools as a result, and it could be EMV tokens or neural networks," says Jim Schlegel of ACI Worldwide, following the Fed's move on debit interchange fees.
Eddie Schwartz, the new - and first - chief security officer of RSA, says the IT security provider hit by a sophisticated advanced-persistent-threat attack in March is focusing internal security on efforts to reduce the time an intruder can go undetected.
Jeff Kopchik of the FDIC says too much emphasis on what's "missing" from the FFIEC's new guidance detracts from regulators' intent: providing financial institutions with a guideline for securing online transactions.
Private data - so heavily protected on the corporate network - is instantly exposed to risk and attack once it sails onto the public Internet. Yet the business drivers that demand security within the corporate network - compliance with regulations, preservation of customer privacy, and protection of intellectual...
Building on existing contactless NFC technology could bridge the gap between the mag-stripe and chip and PIN. And the Smart Card Alliance says merchants should begin investing in infrastructure upgrades now.
Security experts at this week's Gartner Security and Risk Management Summit agree: Security, not compliance, has to be the new focus. Cyberintrusions cannot be stopped, and the RSA breach should be a lesson to the industry.
Information Security Media Group announces the launch of FFIEC Authentication Guidance, a resource center dedicated to providing in-depth news and views on the pending online authentication guidance.
For many, the lack of security on mobile devices is a major inhibitor to their adoption of mobile banking. As banks look to address these issues and capitalize on the opportunities of the mobile environment, they are also challenged by the need to bolster customer confidence in online banking. With Entrust's...
This TowerGroup Research Note addresses the growing issue of targeted attacks by
cybercriminals on business banking customers. As the sophistication of cybercriminal organizations has developed, they have begun attacking businesses with techniques such as phishing and "man in the middle" Trojan horses, techniques...
The proliferation of mobile devices and mobile services engenders both threats and opportunities in the financial services market. Because they recognize the opportunity to find vulnerabilities in this nascent technology, cybercriminals are turning their focus to the mobile channel to launch new attacks. Yet, both...
"Eddie also will contribute to product strategy, marketing and technical evangelism for RSA," an RSA spokeswoman says. "This role will leverage Eddie's 20-plus years of security expertise."
Victimized by a hack of its SecurID authentication token that resulted in the breaches of several customers' IT systems, security maker RSA is expected to announce its first chief security officer as early as Friday.
Art Coviello, RSA's executive chairman, confirms that information taken from RSA in March had been used as an element of an attempted broader attack discovered late last month on SecurID customer and defense contractor Lockheed Martin.
Our website uses cookies. Cookies enable us to provide the best experience possible and help us understand how visitors use our website. By browsing inforisktoday.co.uk, you agree to our use of cookies.