BankInfoSecurity.com

The Latest News

Why Skimming Won't Go Away
New Pay-at-the-Pump Incidents Part of Troubling Trend
Chuck Groat, VP of bankcard risk management at Zions Bank, says his department has spent the New Year just trying to keep up with compromises - including the latest pay-at-the-pump attacks. Read more...
NIST Issues Public Cloud Guidance
SP 800-144: Guidelines on Security and Privacy in Public Cloud
"Accountability for security and privacy in public cloud deployments cannot be delegated to a cloud provider and remains an obligation for the organization to fulfill," NIST Computer Scientist Tim Grance says. Read more...
Why Debit Fraud Grows
ABA Survey Looks at Top Banking Fraud Threats
Losses linked to debit fraud now exceed losses connected to check fraud, according to a new survey by the American Bankers Association. How are banks responding to the threat? Read more...
FBI: Insider Stole from Fed Reserve
Programmer Charged With Stealing Proprietary Code
Prosecutors have charged a former computer programmer at the Federal Reserve with stealing software used by the Department of Treasury to track federal collections and payments. Read more...
Visa on EMV in the U.S.
Exec: Shift to Chip Payments Must be Swift
The Europay, MasterCard, Visa standard, commonly used in most global markets, is coming to the U.S. The sooner issuers, acquirers and merchants initiate migrations, the better, says Stephanie Ericksen, head of authentication product integration at Visa. Read more...

Article
Privacy Policy: Paying Clients Exempt?
Google Says Yes, Advocacy Group Raises Doubts By Eric Chabrow

Google says its new privacy policy that has some privacy advocates up in arms will not have the same impact on paying customers. But an advocacy group contends some Google customers' contracts state they must adhere to the published privacy policy.
Blog
A New Angle on Phishing
Banking, Security Groups Launch Anti-Fraud Initiative By Tracy Kitten

Spear phishing, or targeted phishing, schemes are the industry's most concerning trend, according to a new report from the APWG. So, what can we do to curb phishing attacks? Executives at BITS and FS-ISAC have a new idea.
Article
Human Element of Info Risk Management
Continuous Monitoring, Education Seen as Critical By Jeffrey Roman

People, as much as anything else, are a critical aspect of information risk management, and businesses and government agencies must monitor employees - and educate them, as well - to thwart a potential threat from within.
Article
EU Data Reform Raises Global Challenges
Stronger Privacy Protections Mean More Work for CISOs By Jeffrey Roman

Security and privacy officers for global organizations can expect increased work in protecting customer data if a proposed regulation introduced before the European Commission becomes law, cyber and privacy lawyer Francoise Gilbert says.
Article
Stay Above the Security Poverty Line
Tips for Ensuring Security and Compliance By Tracy Kitten

What steps can smaller organizations and their vendors take to ensure security and regulatory compliance? They must transcend what researcher Wendy Nather calls the 'Security Poverty Line.' See how.

More news...

Featured Interviews

How Fraud Prevention Starts with E-mail
E-mail Registration Service Aims to Curb Losses to Phishing Attacks
Online security starts with e-mail monitoring. BITS and FS-ISAC have partnered to launch a new registry service that aims to thwart phishing attacks.
Elements of a Social Media Policy
Make it About What People Can Do, Not What They Can't
You know your company's social media policy is a good one when it starts sounding less like a checklist and more like common sense, says Sherrie Madia, social media expert and author.

More interviews...

Webinars

Money Laundering Update: The Latest Threats to Your Institution

Money laundering is the criminal practice of filtering "dirty" money through a series of transactions, so the funds are "cleaned" to look like proceeds from legal activities. The Currency and Foreign...
Fighting Fraud: Stop Social Engineers in Their Tracks

Despite all the media hype about hackers and viruses, the greatest threats to an organization's information security are the employees of the company. They're the ones who too often, too willingly,...

More webinars...

White Papers

Best Practices for Securing Administrative Privileges & Preferences

This white paper explains, defines and enforces the necessity to implement policies for systems that contain and allow access to sensitive data. These policies are in place to help mitigate problems...
Merchants & Retailers: Tips to Prevent Data Loss, Retain & Gain Customers

Sensitive company data is everywhere, from server-based e-mail databases, file servers, desktops, laptops, smartphones and cloud-based file transport and storage systems - and most of it is not...

More whitepapers...

ARTICLE Pace Launches Cyber Institute

Pace University's Seidenberg Cyber Security Institute plans to leverage public-private partnerships...