Swift has warned its customers about a newly identified malware found at a “commercial bank”, which it has declined to identify. This latest development follows yesterday’s (12 May) news where Swift rejected the allegations made by Bangladesh Bank and Bangladesh Police’s Criminal Investigation Department (CID) officials about the first cyber fraud scandal in February. Details […]
FICO, an analytics and decision management software provider, and tech consultancy firm Capgemini have teamed up to provide analytic solutions in financial services. The alliance will provide FICO’s risk and fraud management products through Capgemini’s consulting and integration services in North America. Anirban Bose, global head of banking and financial services, Capgemini, says “many of […]
NICE Actimize hopes to muscle into the mid-tier banking sector with the launch of AML Essentials, an anti-money laundering cloud-based platform. It will be delivered on the Amazon Web Services (AWS) cloud. The solution offers transaction monitoring, CDD (customer due diligence) and KYC (know your customer), and watch list filtering to reporting and SAR (suspicious […]
Payment companies need to collaborate, not compete, when it comes to dealing with the threat of card fraud. At this morning’s (5 April) session, “Innovations in card not present fraud” at Money 20/20 in Copenhagen, a panel discussed the issue in a lively and quick chat. Present were moderator Andrew Jamieson, head of innovations, UL; […]
A $101 million cyber heist has central bank officials from Bangladesh to New York quarrelling over what may be one of the biggest and boldest bank raids in history, according to CNBC. Hackers allegedly breached the Bangladesh central bank’s security system and then pretended to be Bangladeshi officials to send a series of requests for […]
Equiniti Group has completed the purchase of Risk Factor and KYCnet. The acquisitions are part of Equiniti’s strategy of buying specialist technology platforms to provide regulation driven services for its clients. Last year it bought Transglobal Payment Solutions, while back in 2012 it acquired investment system supplier Peterevans. It also purchased a UK-based lending software […]
As financial institutions across the board gear up for 2016, the year ahead poses some notably regulatory challenges. Not least among these is the impending Market Abuse Regulation (MAR) from the European Commission; there will also be further progress on MiFID II. On 3 July this year, an event will take place which will mark […]
Chainalysis, a New York-based cyber security start-up, has signed a memorandum of understanding (MoU) with Europol’s European Cybercrime Centre (EC3) on collaborating to fight online crime. Chainalysis aims to change “negative headlines where digital currencies have been connected to fraud and cybercrime” and is tracking digital identities on the blockchain. The start-up says its software […]
MasterCard has unveiled its MasterCard IQ series that uses real-time intelligence to tackle fraud and the increasing number of false declines. The plan is for cardholders and merchants to see a reduced number of transactions unnecessarily declined, while maintaining the “highest levels” of security. Javelin Strategy & Research estimates that one out of every six […]
While mention of bank robberies will often conjure images of masked criminals and high-speed car chases, most modern instances of the crime are being conducted from behind computer screens. In addition to the lure of stealing cash, these criminals are going after banks for valuables such as the personal data of customers, details of mergers and acquisitions between companies and the private tax information of corporations, data is fast becoming an incredibly valuable commodity in its own right
De-risking, motivated by short-term risk-reward calculations, should not be allowed to kill off one of the cornerstones of the global financial system. Rather than abandon correspondent banking relationships, banks should be thinking about investing in and automating their risk controls, according to a new whitepaper by PwC.
A lack of information in securities messages creates problems for financial institutions screening them for regulatory compliance. But if the audience in a session yesterday is representative, only around half of them are screening anyway.
Money laundering is a global phenomenon, evident in many parts of the world. Techniques have ranged from simple bulk cash movements across borders to more sophisticated techniques hidden in trade transactions. As trade between the Middle East and the rest of the world continues to grow, the threat of trade based money laundering becomes more […]
The majority of businesses do not have cyber security insurance, with many not even aware such protection exists – and even those that do have insurance in place may find themselves at a loss if they don’t have the correct cover. The solution may be to mandate more data sharing and raise public awareness, according to speakers at a roundtable organised by software security company Kaspersky Lab.
Data breaches are getting worse with 246 million records compromised by criminal activity in the first six months of 2015, according to new figures published by digital security company Gemalto. The numbers suggest cyber-crime will remain a top priority for banks for the foreseeable future.
The International Securities Services Association adopted a set of compliance principles to address the “critical challenges” posed by financial crime. The new principles aim to establish “a clear global standard for the opening and maintenance of cross-border securities accounts”.
The rate of mobile fraud is highest on Android devices, according to new data from cyber security company Kount, with mobile fraud also outpacing that of online and in-store fraud for the first time this year. The data also shows that average transaction amounts on iOS mobile devices are greater than those made from Android devices.
Contrary to popular belief, the financial sector is now far more aware and better prepared for cyber attacks. The Bank of England’s Financial Stability Report, issued 1 July, states that threat awareness has grown exponentially and the sector is leading efforts to combat cybercrime. Perhaps this isn’t surprising given 90% of large businesses across the sector had suffered a malicious attack over the past year. But what is worrying is that the financial sector is falling into a familiar trap: by focusing so much on defence, it has failed to make provisions for an effective recovery
With governments, retailers, banks and (not least) consumers increasingly crying out for a means of confirming someone’s identity beyond any doubt, the search for a common, international standard of payment authentication is in full flow.
Banks are at risk from a new kind of ‘client side injected malware’ attack, in which attackers install malware on the customer’s device and use it as a base for injected ads, spyware scripts, unauthorised cookies and fake surveys designed to look like they are part of the bank’s website or app, but which actually steal a customer’s private information.
Banks will always be targeted by criminals and cyber attacks have become their most vulnerable attack surface. It isn’t simply about technology. It extends through people and process, and reaches from the central infrastructure all the way out to end users conducting online banking or financial transactions on laptops, tablets or smart phones. Because banks and financial firms have very large and sophisticated systems, this means that end-to-end security is notoriously difficult
The Biometrics Institute, Mobey Forum and Natural Security Alliance have launcehd a cross-association collaboration to promote the use of biometrics in digital services. The organisations plan to have their inaugural meeting, on biometrics for non-government services, in Paris on 1 July.
Financial services organisations can, and do, prevent many criminal acts through adequate controls, proper supervisory procedures, and sophisticated detection and incident management technology. However, there are a handful of shortcomings that derail the best preventive measures and result in negative news headlines and increased regulatory scrutiny for individual employees and entire institutions alike
The financial sector is a slow mover in innovation, however no single industry is leading the way in the Digital Identities economy. Banking is one sector that can take advantage of Digital Identities to better develop customer experience given the nature of the engagement and relationship between Banks and their customers. Banks fulfil a very […]
The Italian Financial Police (Guardia di Finanza), supported by Europol, arrested 10 members of a transnational criminal group yesterday. The criminals, mainly Nigerian citizens, were involved in laundering the proceeds of online fraud, amounting to more than €2.5 million.
As greater convergence between asset classes and the unification of trading desks and trading strategies across multiple asset classes becomes more common, the opportunities for sophisticated market abuse may be on the rise. That may mean that the need for surveillance is greater than ever, according to Tony Sio, head of SmartsTrade Surveillance, exchange and regulators at Nasdaq.
Security specialist RiskIQ says the growth in digital business is producing an increasing threat to banks across the world, with the largest banks owning an average of 7,500 public facing digital assets – 60% of which are outside the company firewall.
A former head of the UK Security Service better known as MI5 says banks need to beware the danger of state agencies and others stealing or destroying confidential information.
Banks need to recognise that building a wall to keep cyber security threats out will not work. With breaches from both sides of the wall inevitable, financial institutions would do better to pare down their activities and focus on defending their core assets – including intellectual property and transactional systems.
Bankers should watch what they say in public, or risk a devastating computer network attack on their business from state-sponsored hackers. This was the stark warning offered by speakers at the FIX Trading Community conference in London yesterday.
Swift has added peer assessment to its Sanctions Testing service. An optional service it will allow financial institutions to compare the performance of their sanctions filters against those of other participating institutions.
To counter cyber-crime, an organisation must have a person providing leadership and oversight in the strategic planning, execution, and assessment of security strategies, policies, procedures and guiding practices. Ensuring compliance with legal obligations in respect of information and information security is also a key responsibility. What many companies need is a chief information security officer
In a joint international operation Europol’s European Cybercrime Centre seized servers said to have controlled the Ramnit botnet that had infected 3.2 million computers internationally. The operation involved investigators from Germany, Italy, the Netherlands, and the UK – which led the operation – along with partners from private industry.
Financial institutions are being urged to revisit their cyber-security following revelations that an online gang using the Carbanak malware stole up to $1 billion from banks in 30 countries around the world in a series of highly-sophisticated attacks over the last two years.
The cyber-attack on Sony Pictures at the end of last year highlighted something that IT and security people in financial services have known for some time – the modern networked environment is far less secure than most people are prepared to admit …
Protecting your banking infrastructure from cybercriminals is one of the toughest IT challenges in banking. It keeps getting harder, even though banks are working tirelessly to protect both customers and assets. Attacks are growing in size, and new developments such as the Internet of Things mean attack surfaces are growing, as well as the number of endpoints that can be used to launch attacks.
Securities market regulators are beginning to clamp down on market abuse linked to complex high-frequency trading strategies – but there is much more to be done, according to a new report by financial consultancy Kinetic Partners.
A range of social, political, cultural and economic factors drives cyber attacks. How well banking and financial institutions understand the drivers for an attack and how effectively they respond in the 48 hours following the discovery of an attack has a major effect on the resultant impact.
With Sony the latest victim of hacking, large organisations are witnessing yet again how data breaches cause serious damage, to the tune of millions. The prevalence of hacking in the media begs the question, what’s in store for 2015?
A platform for sharing cyber-security threat intelligence among financial services companies has been launched by US post-trade utility the DTCC and non-profit security organisation FS-ISAC. Called Soltra Edge, the platform gathers data about cyber-security threats and converts it into a standardised format for sharing.
