Data Security

12 Apr

Fintech is Solving Problems in Finance, but Introducing Risk – Part 1 of 3

As financial institutions move away from legacy environments to full digitization, they are realizing that they are not able to offer all of the digital financial services because of prohibitive development costs, speed to market, lack of technical resources…

08 Mar

Visa and Mastercard Sharing Tokens – The Impact on Tokenization Service Providers

Mastercard announced at the end of 2016 that it would be partnering with Visa Checkout to share tokens with Masterpass for provisioning. This would allow either wallet to request tokenized payment card information to be used in either system.

21 Dec

Managing Data – Not All Tokenization Is Equal Part 3 of 3

  If you are currently tokenizing only payment card data sets, you are putting your organization in harm’s way to a degree you may not even realize. The long-term impact of not securing ALL data sets will prove very different- and much more expensive- for your organization than exposing traditional PCI

22 Aug

When Malware Threatens Access: Mitigating Risk in a World of Open Doors

When even software giant Oracle confirms that its Micros POS systems have been infected with malware, it’s time to admit the obvious — no organization or software is invulnerable to data theft. With pervasive web-based platforms, file sharing, and collaboration-enabling software, the attack surface for most organizations has simply grown

28 Apr

Were the Panama Papers Revealed by A Whistleblower, Hacktivist, or Thief? Should it Matter to Security Professionals?

The Panama Papers have the world’s full attention. The pundits conjecture that the Prime Minister of Iceland stepping down from power due to revealed financial improprieties is just the tip of the proverbial iceberg of a global financial scandal. Is this finally a case of a heroic insider at a

19 Apr

SWIFT Messaging Is Under Fire – Is There Any Truth in It?

Identity Protection firms that are currently criticizing the SWIFT messaging system are being opportunistic. The SWIFT messaging standard only deals with passing information among banks to facilitate financial transactions—billions of dollars a day. SWIFT was not designed to address authentication and access controls of the networks themselves. If these ID