PYMNTS

MARCH 17, 2016

American Express has disclosed a data breach that occurred more than two years ago and is actively encouraging customers to monitor their accounts for fraudulent activity. The scope of the December 2013 breach remains undisclosed at this time. ” The third-party provider remains unnamed at this time.

Data Breach 21

Data Breach Breach Third-Party Service Provider Compromise 21

VISTA InfoSec

NOVEMBER 4, 2024

The DORA compliance checklist The DORA compliance checklist is a thorough and proactive approach designed to make compliance easier to adopt for financial organizations and ICT third-party service providers. It helps the organization systematically address potential vulnerabilities and enhance cyber resilience.

Compliance 130

Compliance Risk Management Third-Party Service Provider Audit 130

VISTA InfoSec

NOVEMBER 4, 2024

The DORA compliance checklist The DORA compliance checklist is a thorough and proactive approach designed to make compliance easier to adopt for financial organizations and ICT third-party service providers. It helps the organization systematically address potential vulnerabilities and enhance cyber resilience.

Compliance 130

Compliance Risk Management Third-Party Service Provider Audit 130

VISTA InfoSec

NOVEMBER 4, 2024

The DORA compliance checklist The DORA compliance checklist is a thorough and proactive approach designed to make compliance easier to adopt for financial organizations and ICT third-party service providers. It helps the organization systematically address potential vulnerabilities and enhance cyber resilience.

Compliance 130

Compliance Risk Management Third-Party Service Provider Audit 130

VISTA InfoSec

NOVEMBER 4, 2024

The DORA compliance checklist The DORA compliance checklist is a thorough and proactive approach designed to make compliance easier to adopt for financial organizations and ICT third-party service providers. It helps the organization systematically address potential vulnerabilities and enhance cyber resilience.

Compliance 130

Compliance Risk Management Third-Party Service Provider Audit 130

PYMNTS

MARCH 8, 2018

Retailers have requested that the House Financial Services Committee take a closer look at draft data breach notification legislation, saying it doesn’t do enough to ensure appropriate data security standards.

Data Breach 40

Data Breach Breach Laws Third-Party Service Provider 40

PYMNTS

SEPTEMBER 27, 2019

Also, DoorDash revealed it was the victim of a data breach in May, and Uber plans to merge its ride-hailing and food delivery applications. DoorDash Says May Breach Hit 4.9M DoorDash has announced it was the victim of a data breach in May.

Data Breach 49

Data Breach Breach RTP FedNow 49

VISTA InfoSec

OCTOBER 20, 2023

Financial Stability : Mitigates the financial impact of disasters, including costs from data breaches or loss of revenue. Disaster recovery planning is essential for healthcare organizations to ensure uninterrupted service during unexpected events. The plan should outline: How will communication occur?

Disaster Recovery 130

Disaster Recovery Regulatory Compliance Procedures Duplicate 130

The Paypers

MARCH 18, 2016

(The Paypers) American Express has warned cardholders that their account information might have been exposed after a third-party service provider suffered a data breach in 2013.

Breach 28

Breach Third-Party Service Provider Data Breach Service Provider 28

Innovative Payments Association

JULY 25, 2024

With the rise of cybersecurity threats and data breaches, compliance regulations play a vital role in building trust between consumers, financial institutions, and third-party service providers.

Boot Camp 52

Boot Camp Compliance Innovation Third-Party Service Provider 52

FICO

NOVEMBER 1, 2016

Look no further than the US presidential debates , where our two candidates have highlighted the need to address hackers, security breaches and even foreign nations that may be using sophisticated cyber tactics to influence the outcome of the upcoming November elections. These days, cybersecurity is a hot-button issue in policy circles.

Cybersecurity 81

Cybersecurity Regulations PCI DSS Data Encryption 81

EBizCharge

JULY 19, 2024

Insecure storage Storing payment card data requires secure systems to prevent breaches. The importance of being PCI compliant PCI compliance is crucial for merchants as it ensures the secure handling of credit card transactions and protects against data breaches. Can outsourcing help with PCI compliance?

PCI DSS 52

PCI DSS Compliance Credit Cards Third-Party Service Provider 52

PYMNTS

OCTOBER 25, 2019

DoorDash recently confirmed that a March data breach compromised 4.9 DoorDash blamed the breach on an unnamed third-party service provider and pledged to investigate with outside security experts. Mobile order-ahead is meeting its share of speed bumps, however.

Data Breach 46

Data Breach Point-of-Sale (POS) Breach Third-Party Service Provider 46

PYMNTS

AUGUST 28, 2017

Financial services companies located within New York are covered by what is known as Part 500, but then again, so are the third-party service providers scattered across the globe that work with those New York-based entities. AUSTRAC, in turn, brought about a civil legal action against CBA.

Cybersecurity 57

Cybersecurity Money Laundering Digital Currency Online and Mobile Banking 57

Basis Theory

OCTOBER 1, 2024

Third-Party Service Provider ( TPSP or "service provider") refers to an entity other than the Merchant, Acquirer, or Issuer involved in storing, processing, or transmitting card data. Don't, however, let the term "merchants" fool you. Typically, these fines range from around $5,000 to $100,000.

PCI DSS 88

PCI DSS Compliance Encryption Assessments 88

Stax

AUGUST 22, 2024

Fraudulent transactions Malicious parties are always on the lookout to exploit vulnerabilities online to steal information and money. Identity theft, data breaches, and chargeback fraud are some of the most common types of risks. They always seem to adapt and evolve their techniques even when security measures are in place.

Risk Management 88

Risk Management Risk Regulatory Compliance Due Diligence 88

PYMNTS

MARCH 29, 2018

Companies that do this in-house tend to store that data in their ERP systems – not a very smart way to manage data there, as it is subject to potential breaches or phishing attacks.”. “ACH payments are subject to NACHA rules and require you to store bank information for payees,” he said.

Checks 43

Checks B2B ACH Payments 43

Global Fintech & Digital Assets

NOVEMBER 7, 2023

Issuance of Tokenised Securities: Intermediaries issuing Tokenised Securities remain responsible for the arrangement, regardless of outsourcing to third party service providers. through transfer restrictions or whitelisting).

Distributed Ledger Technology (DLT) 52

Distributed Ledger Technology (DLT) Security Settlement Risk 52

EBizCharge

JULY 16, 2024

Risk management Financial institutions and third-party service providers must construct and execute a risk-based approach to detect and prevent fraudulent ACH transactions. Entities handling this information must ensure storage and transmission encryption, preventing unauthorized access and potential breaches.

NACHA 52

NACHA Nacha Rules ACH Network ACH 52

Fintech News

APRIL 21, 2025

While safeguards are necessary, MAS noted that breaches may still occur, and institutions must act quickly to limit further loss and advise customers on preventive steps. While the incident was not directly referenced by MAS or CSA, it highlights the vulnerabilities posed by third-party service providers.

Cybersecurity 114

Cybersecurity Third Party Vendors Third-Party Service Provider Ransomware 114