The latest edition of the ISMG Security Report describes new details emerging from the SolarWinds supply chain hack investigation. Also featured: A discussion of why security education is so crucial in 2021 and tips on how to retain security and operations center analysts.
Although some of the most prolific fraud sites exist on the clear web, the research captured in this report reveals numerous instances where data was leaked or
sold for the purposes of committing fraud.
Dark web vendors have thoroughly systematized the fraud trade. From basic to more sophisticated sites, hosts...
As of January 1, 2018, all SWIFT customers must self-attest to their compliance with the new SWIFT Customer Security Program (CSP). The program is designed to respond to the wave of cybercrime targeting SWIFT installations that began with the Bank of Bangladesh breach back in February 2016 and has swept across the...
There is no greater challenge for customer-facing organizations than finding the balance between security and convenience. In fact, 72% of consumers state that they have abandoned a transaction due to security concerns.
3D Secure 2.0 was designed to put the shopper's experience front and center. While the...
Card issuers continue to find themselves victims of ongoing attacks perpetrated by fraudsters looking to rapidly exploit any opening they can find in e-commerce transactions. Fraudsters often exploit cards from multiple issuers, which is why they are transitioning to a model that uses real-time device information from...
Too often card-issuing banks suffer significant losses from fraudsters stealing credit card credentials. Typically, these fraudsters use multiple cards from various issuers to complete purchases from a single device before the stolen cards can be blocked. The goal for banks is to immediately identify and stop these...
The Faster Payments Initiative may help businesses shorten clearing times for financial transactions, and benefit personal banking consumers by ensuring that transactions and bill payments are completed in a timely fashion. However, fraudsters will look to exploit any system vulnerabilities to their advantage. Shorter...
Target has reached a record settlement agreement with 47 states' attorneys general over its 2013 data breach. The breach resulted in hackers compromising 41 million customers' payment card details and contact details for more than 60 million customers being exposed.
An investigation into last year's attempted theft of $170 million at India's state-owned Union Bank has found strong similarities with the Bangladesh Central Bank heist, which was attributed to North Korea, and resulted in an $81 million loss.
The nature of sophisticated fraud is changing, argues NPCI's Bharat Panchal. He shares experiences from his sector to support this idea, and he shares insights on how this will affect the security practitioner roles.
The SWIFT messaging platform, which was hacked during the Bangladesh Bank heist, is used widely by most Indian banks for international financial transactions. Institutions that rely on the platform must be more vigilant, experts warn.
With the U.S. accelerating its adoption of the EMV chip, encryption and tokenization, life is going to get tougher for fraudsters, and card-not-present fraud will rise, says PCI Council Director Jeremy King. Regions with poor data security must beware.
With a majority of ATMs continuing to run on archaic WinXP platforms, questions arise around why these devices are not being built secure by design. EPS COO Prakash Joshi on ATM security challenges and developments.
As industry participants are beginning to prepare for the US card payments ecosystem to migrate to EMV (Europay, MasterCard, Visa), the role of the EMV standard in fraud control is not so clear. While we know that one of the key benefits of EMV is its ability to prevent fraud, can it prevent all fraud types? The EMV...
Organizations in all sectors can improve their compliance with the PCI Data Security Standard by taking five critical steps, says Rodolphe Simonetti of Verizon Enterprise Solutions, which just issued a new PCI compliance report.
Our website uses cookies. Cookies enable us to provide the best experience possible and help us understand how visitors use our website. By browsing paymentsecurity.io, you agree to our use of cookies.