/security

News and resources on cyber and physical threats to banks and fintechs worldwide.

[Webinar] AI in Banking: Building Compliant and Safe Enterprise AI at ScaleFinextra Promoted[Webinar] AI in Banking: Building Compliant and Safe Enterprise AI at Scale

Join the Community

Learn, share and discuss the latest banking, payments and fintech innovations with the world’s largest fintech community.

Access unique research, content, and real-time alerts, services – free to registered members.

43,959 Members   21,916 Expert opinions

Join the community Sign in

262Reports  248Webinars

Find out more

/security

Expert opinions

Dirk Labuschagne

Dirk Labuschagne Chief Information Security Officer at Direct Transact

Why and how to run a Tabletop Ransomware Simulation Exercise

The past year was the worst on record for ransomware attacks around the globe. In the past year, ransomware attacks were the worst on record due to an estimated 92% year-on-year global increase. Criminals made off with more than $1 billion in cryptocurrency payments from victims and left a trail of destruction in their wake. This is why ransom

/security /regulation Information Security

Erica Andersen

Erica Andersen Marketing at smartR AI

Maintaining Enterprise Data Privacy in a Data-Hungry World

The rise of large language models (LLMs) and other AI systems has created an insatiable demand for data. While these models offer incredible potential, their hunger for data presents a significant challenge for enterprises striving to maintain data privacy. We also need to see data privacy within the whole data is power context to guarantee a long

/ai /security Artificial Intelligence and Financial Services

Ellison Anne Williams

Ellison Anne Williams CEO at Enveil

Protecting Data Privacy within an AI-powered Threat Landscape

It takes only a quick scan of daily media headlines to know we are collectively riding a wave of artificial intelligence. But, for all the benefits that come with AI — and there are many — there is also a downside to consider, especially in the business arena. While AI is helping make financial institutions smarter, faster, and more efficient, it ...

/ai /security Artificial Intelligence and Financial Services

Prashant Bhardwaj

Prashant Bhardwaj Innovation Manager at Crif

Digital Arrest: A New Frontier in Cybercrime and Its Ripple Effects on Consumer Trust

Digital arrest scams have emerged as a significant threat in the digital landscape, impacting consumer confidence and financial stability. These scams not only result in substantial financial losses but also erode trust in digital payment platforms, which is crucial for the growth of e-commerce and online banking. As financial institutions naviga

/security /crime Banking

Ilona Cohen

Ilona Cohen Chief Legal and Policy Officer at HackerOne

Why security researchers are key to PCI DSS v4.0 compliance

Over the last few years, the financial industry has been tightening the rules to counter growing cybersecurity threats. Sensitive credit and payment card data are naturally a top target of cyber criminals and therefore a priority for security efforts, especially as the cost of data breaches rises to an average of $4.88 million. This is where the...

/security /regulation Banking Regulations

/security

Research

Impact Study

2024 Fraud Trends in Banking, Insurance, and Beyond

How generative AI is boosting fraud protection in an increasingly complex environment. As technology progresses, so do the capabilities of institutions to secure data and systems. Over 2024, the fraud landscape has been complex, and organisations must push the boundaries of innovation while maintaining a high security bar as the availability and democratisation of AI increases as we're going into 2025. The tidal wave of incoming regulation in the financial sector is an aspect that will help banking and insurance companies to safeguard their customers and data in the best way possible. Yet regulation alone does not address fraud – it’s up to individual organisations to leverage the potential of technology, and review their solutions, processes, and thus ensure compliance and safety. As fraud and regulation increase in the space, technology is one of the key factors that will help banks and insurance companies to address these increased fraud risks. Generative AI enables organisations to deliver hyper-personalised customer experiences, and combining these capabilities with carrier network insights can not only help them significantly reduce authentication fraud, but also ensure regulatory compliance. This impact study, produced in association with AWS and Vonage, examines the current fraud landscape across financial services, banking, and insurance, highlighting how generative AI and network APIs can help prevent fraud while enhancing the customer experience. Explore: Fraud trends in 2024 The impact of regulation Why data is the new gold How organisations can innovate with generative AI Best practices

15 downloads

Future of Report

The Future of Embedded Finance in Africa 2025

Embedded finance is changing the payment landscape in Africa. The question now is: what will it take for embedded finance to truly scale across Africa? The global embedded finance market is set to grow beyond $228 billion by 2028 according to Juniper Research. As this market matures and consumer confidence in the technology grows, this will likely prove to be a significant chunk of global financial services. In Africa, this emerging trend has the potential to unlock new economic opportunities. As a less mature market, it is not as hindered by legacy payments systems, making it ripe for payment innovation from embedded finance. It has the potential to reshape the continent’s current payments landscape, broaden innovation opportunities, and drive financial inclusion. As a market Africa is very adaptable to different technologies, and embracing of newer, more agile services. A lot of the population to the majority of their banking through their mobile phones, making embedded finance fit seamlessly into financial worlds of the populace. Yet there are many factors which will alter and develop the ability for embedded finance to take hold. This Finextra report, sponsored by Kora, received contributions from Binance, Indelible Inc., Mojaloop Foundation, and Nikulipe. It explores:  Making embedded cross-border payments work in Africa; Unlocking the opportunities of embedded e-commerce in the African market; Embedded finance: Encouraging African financial inclusion; Why personalisation in embedded finance is the next step for African fintech; Regulating Africa to encourage embedded finance innovation.

191 downloads

Impact Study

Adding GenAI To Your Fraud Prevention Strategy

We explore the numerous benefits of generative AI for fighting fraud.  In an instant payment, cross-border world, fraud is more nefarious and prevalent than ever. Recent research shows that worldwide, APP (Authorised Push Payment) fraud now represents 75% of all digital banking fraud on a dollar-value basis. By 2026, losses are expected to reach $5.25 billion – revealing that APP fraud is one of the biggest threats to financial institutions (FIs) globally.  The next pre-emptive step in the fight against fraud is generative AI (GenAI), which uses Large Language Models (LLMs) to generate new content like text, audio, video and even new computer code. While GenAI is still in the fledgling stages of adoption within fraud prevention, it will soon become a true differentiator.  But how exactly are scammers deploying AI to their advantage? What are the best ways to incorporate GenAI into a fraud prevention strategy? How should consumer privacy be managed? This impact study answers these questions and casts an eye over the current fraud landscape, the regulatory implications, and the vital role of innovation.  This Finextra impact study, produced in association with Outseer, explores:  The evolution of scams;  The role of AI;  Technology and the impact of generative AI;  How to embed AI in the best way possible;  Addressing regulatory challenges and concerns;  And more. 

318 downloads

/security

FinextraTV

Fighting Fraud with Form3: The Importance of Inbound Transaction Screening

In Part 2 of this series, FinextraTV and Chris Oakley, Head of Fraud, Form3, highlights an upcoming substantial shift in the sector where due to incoming regulations from the PSR in the UK and PSD3 across the European Union, banks will have to double down on their focus on the risk associated with receiving a payment, not only sending a payment as has been the case historically. With current fraud screening methods built for outbound payments, after these regulations are mandated, receiving banks and sending banks will be forced to split liability for fraud and reimburse victims due to the PSR. This dichotomy must also lead to changes in the way that money mules are detected, which is usually also conducted retrospectively - where this convergence of fraud mitigation and anti-money laundering happens, risks need to be managed in real-time and a wider single view of the customer will be of paramount importance.

/security

Long reads

Níamh Curran

Níamh Curran Senior Reporter at Finextra

How to pick a 3-D Secure provider

Amid increasing ecommerce sales, changing consumer expectations, and regulatory shifts, payments issuers and processors need to continually evolve to decrease risks from card not present (CNP) transactions and customer authentication process. As the number of online payments grows, organisations are at increased risk of loss as a result of CNP frau...

Retired Member

Retired Member

How FSI companies can leverage AI to enhance cybersecurity

With generative AI, UK financial services companies have an opportunity to unlock new possibilities through innovation, which can help them boost their resilience amid increasing cybersecurity threats. This will help them to better serve customers, increase growth and contribute to the country becoming an AI global leader. The financial services i...

Hamish Monk

Hamish Monk Senior Reporter at Finextra

How to recover from a data breach

On 7th May, several China-sponsored cyber-attacks on the Ministry of Defence (MoD) compromised data from its outsourced payroll system, SSCL (a subsidiary of Paris-based Sopra Steria) – exposing the names and banking information of 270,000 past and present military personnel from the Royal Navy, Army, Royal Air Force. In the wake of this news, Fin...