The World Economic Forum (WEF) enlisted several large corporations to join its fintech cybersecurity consortium, which will develop a system to evaluate the way emerging technology companies and data aggregators in the financial services sector protect sensitive information.

In an interview with Reuters, a WEF executive said that increased collaboration between large banks, insurance companies and financial services startups could put consumers at risk. The consortium, which includes well-known companies such as Citigroup, Zurich Insurance Group and Hewlett Packard Enterprise, will work to reduce the threat of cybercrime by creating a framework to assess firms’ preparedness and offering guidance on how to improve their score.

WEF Aims to Improve Fintech Cybersecurity

The infiltration of digital technologies in financial services is not limited to apps that check bank balances or move funds around. As CISO Magazine pointed out, the WEF recently warned that biometric authentication credentials and robotics are increasing the amount of information that fraudsters might seek to manipulate or steal. This can include not only credit card data, but addresses, detailed purchase histories, location data and even access to other online accounts that integrate with various fintech services. This makes the sector highly attractive to cybercriminals looking for lucrative targets.

While it may take time for the consortium to develop its framework, there are already some indications of the key areas that need to be addressed. In its white paper, “Innovation-Driven Cyber-Risk to Customer Data in Financial Services,” the WEF detailed a series of 19 overarching recommendations to improve the way fintech firms and their incumbent counterparts address security issues. These include guidelines on how they collect data, containment procedures, threat information sharing and more.

Fintech Security Requires a Global Effort

The consortium will be aligned with a Geneva-based Global Centre for Cybersecurity, which the WEF announced in January, SecurityWeek reported. While not a formal regulatory body, the group aims to help fintechs navigate new laws regulating security and privacy that are set to take effect this year.

Although fintech firms represent a new area of IT security concern, it’s certainly not the only one the WEF is focused on. ComputerWeekly noted that the organization recently called for greater intergovernmental partnerships to boost cybersecurity in the face of attacks that could cripple entire economies. The WEF’s new initiatives aim to increase collaboration among governments and private institutions in the worldwide effort to combat increasingly interconnected cybersecurity risks.

More from

How Do You Plan to Celebrate National Computer Security Day?

In October 2022, the world marked the 19th Cybersecurity Awareness Month. October might be over, but employers can still talk about awareness of digital threats. We all have another chance before then: National Computer Security Day. The History of National Computer Security Day The origins of National Computer Security Day trace back to 1988 and the Washington, D.C. chapter of the Association for Computing Machinery’s Special Interest Group on Security, Audit and Control. As noted by National Today, those in…

Deploying Security Automation to Your Endpoints

Globally, data is growing at an exponential rate. Due to factors like information explosion and the rising interconnectivity of endpoints, data growth will only become a more pressing issue. This enormous influx of data will invariably affect security teams. Faced with an enormous amount of data to sift through, analysts are feeling the crunch. Subsequently, alert fatigue is already a problem for analysts overwhelmed with security tasks. With the continued shortage of qualified staff, organizations are looking for automation to…

Worms of Wisdom: How WannaCry Shapes Cybersecurity Today

WannaCry wasn't a particularly complex or innovative ransomware attack. What made it unique, however, was its rapid spread. Using the EternalBlue exploit, malware could quickly move from device to device, leveraging a flaw in the Microsoft Windows Server Message Block (SMB) protocol. As a result, when the WannaCry "ransomworm" hit networks in 2017, it expanded to wreak havoc on high-profile systems worldwide. While the discovery of a "kill switch" in the code blunted the spread of the attack and newly…

Emotional Blowback: Dealing With Post-Incident Stress

Cyberattacks are on the rise as adversaries find new ways of creating chaos and increasing profits. Attacks evolve constantly and often involve real-world consequences. The growing criminal Software-as-a-Service enterprise puts ready-made tools in the hands of threat actors who can use them against the software supply chain and other critical systems. And then there's the threat of nation-state attacks, with major incidents reported every month and no sign of them slowing. Amidst these growing concerns, cybersecurity professionals continue to report…