Collaborate Disseminate
Complying with the revised Payment Services Directive (PSD2) is currently a key priority for financial institutions (FIs) in Europe and beyond. In particular, financial institutions need to comply with the requirements related to Strong Customer Authe… Continue reading Strong Customer Authentication: Why Consider Adaptive Methods and Tools
The growth of mobile technology and the increased importance of cybersecurity have dominated news cycles in the past year. At the same time, one of the biggest threats we’re seeing against mobile are overlay attacks – combining social engi… Continue reading Dealing with Overlay Attacks: Adopting Built-in Security To Safeguard Mobile Experience
The following article, authored by Frederik Mennes, Senior Manager Market & Security Strategy at the OneSpan Security Competence Center, first appeared 06/2018 in German on IT Finanzmagazin. The revised Payment Services Directive, also known as PS… Continue reading PSD2: Creating a Secure Execution Environment for Mobile Banking Apps
This blog was inspired by an article by Frederik Mennes that first appeared on Techzine. In recent years, open banking has received a lot of attention in the financial services sector. Open banking means that banks open their systems to authorized thi… Continue reading Open Banking APIs under PSD2: How to Mitigate Risk
Many European banks, banking associations and fintech companies are currently waiting for the Regulatory Technical Standards (RTS) on Strong Customer Authentication (SCA) and Common and Secure Communication (CSC) to be adopted by the European Commissi… Continue reading PSD2: Commission Provides Long-Awaited Update on RTS and Screen-Scraping
One of the key security issues facing organizations that support Android devices is the risk of rooting malware. A number of malware families on the Android mobile OS attempt to obtain root access once installed because the elevated privileges gained come in handy to perform malicious activities. There is, however, a way to detect rooting and protect your organization and mobile application users from malicious attacks – Runtime Application Self-Protection… Read more
The post How to Stop the Menace of Android Rooting Malware Attacks with RASP appeared first on VASCO Data Security – Blog.
Continue reading How to Stop the Menace of Android Rooting Malware Attacks with RASP
In the ongoing discussion on PSD2, in late June the European Banking Authority (EBA) published its opinion on the European Commission’s proposed amendments to the PSD2 draft Regulatory Technical Standards (RTS) on Strong Customer Authentication and Common and Secure Communication. Below, we’ve included a simplified version of the debate about the amendments to help you navigate PSD2. The EBA’s opinions on the four amendments proposed by the Commission are as… Read more
The post PSD2: Simplifying the Debate on the Regulatory Technical Standards for Strong Customer Authentication appeared first on VASCO Data Security – Blog.
On 23 February the European Banking Authority (EBA) proposed its final draft Regulatory Technical Standards (RTS) on Strong Customer Authentication and Common and Secure Communication (CSC) under PSD2 to the European Commission (EC). On 24 May the Comm… Continue reading PSD2: European Commission proposes amendments to final draft RTS on Strong Customer Authentication
Earlier this month the Dutch company Securify came across a new sample of the BankBot Android mobile banking malware. While older samples of BankBot mainly targeted Russian financial institutions, the latest sample shows that BankBot now targets European and American banks as well. More specifically BankBot now targets over 420 leading banks in countries such as Germany, France, Austria, the Netherlands, Turkey and the United States. VASCO’s Threat Research analysts… Read more
The post Protecting against the BankBot Android banking malware using RASP appeared first on VASCO Data Security – Blog.
Continue reading Protecting against the BankBot Android banking malware using RASP
On Thursday 23 February, the European Banking Authority (EBA) published its long-awaited final draft Regulatory Technical Standards (RTS) on Strong Customer Authentication (SCA) and Common and Secure Communication (CSC) under the revised Payment Services Directive (PSD2). In general the EBA has relaxed its requirements compared to the RTS in the EBA’s Consultation Paper from August 2016. Here are the most important changes: Transaction risk analysis. The final draft RTS introduces… Read more
The post EBA Eases Strong Customer Authentication Requirements under PSD2 appeared first on VASCO Data Security – Blog.
Continue reading EBA Eases Strong Customer Authentication Requirements under PSD2