/security

News and resources on cyber and physical threats to banks and fintechs worldwide.

[Webinar] Money Mules: Tackling Payments Fraud Across The Account LifecycleFinextra Promoted[Webinar] Money Mules: Tackling Payments Fraud Across The Account Lifecycle

Join the Community

Learn, share and discuss the latest banking, payments and fintech innovations with the world’s largest fintech community.

Access unique research, content, and real-time alerts, services – free to registered members.

40,546 Members   23,765 Expert opinions

Join the community Sign in

296Reports  284Webinars

Find out more

/security

Expert opinions

Paul Holt

Paul Holt EMEA Group Vice President at Digicert

How to improve trust and reduce risk with the X9 PKI Framework

In the fast-evolving digital landscape, financial institutions face increasing complexity and risk in managing their public key infrastructure (PKI). With rising cyber threats and regulatory scrutiny, the need for a more agile, transparent, and secure cryptographic framework has never been greater. The ANSI X9 committee’s work to establish a sta

/security /identity Digital Identity Management

George Ralchev

George Ralchev Group Head of Risk Management at emerchantpay

Debunking synthetic identity fraud: a growing threat to payment security

As digital payments continue to evolve, so too do the threats that accompany them. Synthetic identity fraud is a complex and rapidly growing form of financial crime that’s increasingly difficult to detect using traditional methods. With global fraud rates rising and criminals leveraging technology to exploit system weaknesses, it’s imperative tha

/security /payments The Payments Business

Paul Shumsky

Paul Shumsky Founder at @Finpace.tech

MCP as the Foundation for Secure and Agile Banking Partnerships

Banks today face a persistent dilemma. On one hand, they must adapt to the market conditions quickly integrating new partners, responding to evolving regulations, and launching products faster than before. On the other, every integration risks exposing the most sensitive parts of their infrastructure. Too often, the result is delay, added cost, or...

/ai /security Banking Architecture

Hajrabibi Mulla

Hajrabibi Mulla MSc International Business Student & Researcher in at Ulster university

Quantum Banking and Accounting: How AI and Quantum Tech Can Eliminate Fraud Before It Happens

By Hajrabibi Mulla Financial fraud has evolved into a highly sophisticated, global challenge — and both the banking and accounting sectors are under pressure to respond faster than ever before. Criminal networks use advanced digital tools to manipulate transactions, disguise suspicious activities, and exploit weaknesses in auditing processes. For ...

/ai /security Artificial Intelligence

Naina Rajgopalan

Naina Rajgopalan Content Head at Freo

How Family Offices Are Advancing Digital Security Standards

Digital security has never been more important for family offices. With sensitive data at stake, advancing protection measures isn’t optional—it’s necessary. From leveraging cutting-edge software to adopting smarter protocols, explore how family offices strengthen their defenses against modern cyber threats. Streamlining Family Office Security w...

/security /wealth

/security

Trending

Paul Holt

Paul Holt EMEA Group Vice President at Digicert

How to improve trust and reduce risk with the X9 PKI Framework

George Ralchev

George Ralchev Group Head of Risk Management at emerchantpay

Debunking synthetic identity fraud: a growing threat to payment security

/security

Research

Event Report

Modern onboarding: Optimising KYC through data integration and AI

The integration of technology and data continuity, combined with digitisation, automation, and AI, is revolutionising KYC and onboarding in the banking industry.  In today’s fast-paced financial landscape, efficient client onboarding is crucial for operational excellence and effective customer lifecycle management. Financial institutions are increasingly redefining their Know Your Customer (KYC) processes to reduce inefficiencies and enhance the overall customer experience.  Integrating advanced technologies and real-time data processing can significantly accelerate these processes, providing clearer customer insights and reducing complexities. Data integration and AI allow the streamlining of KYC and onboarding procedures, ensuring seamless interactions and improving transaction accuracy and security. By embedding these capabilities within client environments, institutions can facilitate easier access to verified information, fostering trust and long-term business relationships.  This report highlights the key takeaways of a Finextra webinar, hosted in association with NICE Actimize, by a panel of industry experts. Discover:  Today's KYC inefficiencies and challenges;  The impact and importance of data; and  How digitisation, integration, and AI can streamline KYC and onboarding. 

116 downloads

Report

PaaS, cloud and instant payments: Navigating the outsourcing question

Today’s institutions are in some ways faced with far greater challenges than ever before. Be it from the demand for ever-faster services; the pressure of always-on compliance; or the need to remain agile and competitive. Is PaaS the holy grail FIs have been looking for?  Outsourcing payments is an increasingly irresistible proposition for FIs. With end-user demand constantly evolving; real-time requirements on the rise; macro-economic trends becoming ever more unpredictable; and the pressure of regulatory compliance ratcheting up, the provision of proprietary payments has become a thorny pursuit.  Enter the stage: cloud technology. By leveraging modern tools and techniques to build, deploy, run, and manage software in a cloud-computing environment, FIs of all kinds can take advantage of scalability, elasticity, and automation. But the benefits of Payments-as-a-Service (PaaS) can extend beyond these practicalities – serving to revolutionise bank operations, unlock broader efficiencies, and enrich the end-user experience.  Mining this potential, however, obliges institutions to navigate some challenges. First, FIs must understand the potential of cloud-native technology as an engine for modernisation and embrace the cultural shift that is triggered by cuttingedge technologies. It may involve training, testing and concerted integration efforts.  Another key challenge is delegation: which tasks should be handed to third parties, and which should remain in-house? Indeed, when systems evolve, FIs must always keep one eye on compliance. As ever, approach and growth potential are directly impacted by the type and size of the institution in question, so approaches should be tailored.  This Finextra whitepaper, produced in association with FIS, evaluates:  The key considerations when placing client transaction data in the public cloud;  The art of delegation: Determining which tasks to offload;  The role of regulation and compliance; and  A PaaS checklist for finding the right solutions and partnerships.    Register to watch the related Finextra webinar, hosted in association with FIS – PaaS, cloud and instant payments in the spotlight: Overcoming outsourcing challenges

340 downloads

Impact Study

Surviving digital fallout: Operational resilience in 2025 and beyond

Almost every financial institution loses money each year to outages. What does an optimal resilience strategy look like in 2025?  The financial sector is increasingly dependent on technology to deliver its offering. Notwithstanding all the benefits this brings for productivity, reach, and customer satisfaction, its side effect is that the sector is increasingly vulnerable to network and software issues, third-party service slip-ups, cyberattacks, and capacity problems. If not managed correctly, a compromised IT system can spark knock-on disruptions to financial institutions, the firms they trade with, their supply chains, and even the economy-at-large.  To mitigate such risks, the global marketplace has been flooded with regulations aimed at bolstering operational resilience. Most recently, Europe’s answer has been the Digital Operational Resilience Act (DORA) – the deadline for which passed on 17 January 2025. However, these regulations are only guidelines; they mandate a minimum level for compliance, instead of an ideal strategy to holistically handle outages.  In this Finextra impact study, produced in association with Cockroach Labs, we speak with leading firms in the space to understand the best-in-class strategies they have adopted to achieve operational resilience. In the most effective cases, firms go beyond compliance, and exploit regulations as a business opportunity to stimulate productivity, increase competitiveness, and reduce costs. In today’s increasingly digital marketplaces, architectures must be operationally simple and flexible, as well as global and robust.  We explore:  The growing challenge of outages;  Regulation, DORA, and resilience requirements;  What an optimal resilience strategy should look like in 2025 and beyond;  How organisations can future proof their operations while staying agile for future regulatory requirements. 

197 downloads

/security

FinextraTV

How Digital Assets Are Leading Wealth Portfolios

Joining FinextraTV at Money 20/20 in Amsterdam, Waqar Chaudry, Head of Digital Assets, Financing and Securities Services, Standard Chartered explains the long-term outlook on digital assets in wealth portfolios. Providing examples of how cryptocurrencies, especially, have outperformed other asset classes, Chaudry describes how corporates, specifically, have become key drivers of this popularity. As part of this, he further explains how more traditional institutions can provide unique insights to this more modern innovation.

/security

Events

/security

Long reads

Retired Member

Retired Member

The UK’s moment to lead digital verification: A roadmap to economic growth and financial security

Following London Tech Week, the spotlight is on the technologies shaping our future, and one of the most important is digital verification. With more of our lives happening online, from banking to healthcare to everyday shopping, the need for secure, reliable ways to prove who we are has never been greater. That’s why digital verification is high ...

Luke Stubbs

Luke Stubbs Partner at Shoosmiths LLP

Mitigating cyber-risks in outsourcing: Contract strategies for compliance and protection

A clear and present danger In recent years, several prominent UK businesses have faced significant technology and cybersecurity challenges and the consequences of data protection breaches. For example, in October 2023, the Financial Conduct Authority (FCA) fined Equifax over £11 million for failing to manage and monitor the security of UK consumer ...

Dominique Dierks

Dominique Dierks Senior Content Manager at Finextra

Ensuring operational resilience in 2025 – why the status quo no longer works

Operational resilience is on all UK payments leaders’ minds. In 2024, 95% of business leaders stated that they’re aware of operational weaknesses which leave them vulnerable, yet 48% said their organisations aren’t doing enough to improve resilience. The European Union (EU)’s Digital Operational Resilience Act (DORA) – having come into effect on 17...