The World Economic Forum (WEF) enlisted several large corporations to join its fintech cybersecurity consortium, which will develop a system to evaluate the way emerging technology companies and data aggregators in the financial services sector protect sensitive information.

In an interview with Reuters, a WEF executive said that increased collaboration between large banks, insurance companies and financial services startups could put consumers at risk. The consortium, which includes well-known companies such as Citigroup, Zurich Insurance Group and Hewlett Packard Enterprise, will work to reduce the threat of cybercrime by creating a framework to assess firms’ preparedness and offering guidance on how to improve their score.

WEF Aims to Improve Fintech Cybersecurity

The infiltration of digital technologies in financial services is not limited to apps that check bank balances or move funds around. As CISO Magazine pointed out, the WEF recently warned that biometric authentication credentials and robotics are increasing the amount of information that fraudsters might seek to manipulate or steal. This can include not only credit card data, but addresses, detailed purchase histories, location data and even access to other online accounts that integrate with various fintech services. This makes the sector highly attractive to cybercriminals looking for lucrative targets.

While it may take time for the consortium to develop its framework, there are already some indications of the key areas that need to be addressed. In its white paper, “Innovation-Driven Cyber-Risk to Customer Data in Financial Services,” the WEF detailed a series of 19 overarching recommendations to improve the way fintech firms and their incumbent counterparts address security issues. These include guidelines on how they collect data, containment procedures, threat information sharing and more.

Fintech Security Requires a Global Effort

The consortium will be aligned with a Geneva-based Global Centre for Cybersecurity, which the WEF announced in January, SecurityWeek reported. While not a formal regulatory body, the group aims to help fintechs navigate new laws regulating security and privacy that are set to take effect this year.

Although fintech firms represent a new area of IT security concern, it’s certainly not the only one the WEF is focused on. ComputerWeekly noted that the organization recently called for greater intergovernmental partnerships to boost cybersecurity in the face of attacks that could cripple entire economies. The WEF’s new initiatives aim to increase collaboration among governments and private institutions in the worldwide effort to combat increasingly interconnected cybersecurity risks.

More from

More School Closings Coast-to-Coast Due to Ransomware

Instead of snow days, students now get cyber days off. Cyberattacks are affecting school districts of all sizes from coast-to-coast. Some schools even completely shut down due to the attacks. The federal government recently warned that K-12 schools face a growing threat from cyber groups. According to the FBI, school districts often have limited cybersecurity protections, which makes them even more vulnerable. The FBI also says it anticipates the number of threats to increase. In a recent warning, the nation’s…

The Role of Human Resources in Cybersecurity

The human resources (HR) department is an integral part of an organization. They work with all departments with a wider reach than even IT. As a highly visible department, HR can support and improve an organization’s security posture through employee training. Their access to employees at the start of employment is an opportunity to lay a foundation for a culture of risk awareness. HR departments do not typically include cybersecurity risk awareness training with new hire onboarding, but it’s something…

New Attack Targets Online Customer Service Channels

An unknown attacker group is targeting customer service agents at gambling and gaming companies with a new malware effort. Known as IceBreaker, the code is capable of stealing passwords and cookies, exfiltrating files, taking screenshots and running custom VBS scripts. While these are fairly standard functions, what sets IceBreaker apart is its infection vector. Malicious actors are leveraging the helpful nature of customer service agents to deliver their payload and drive the infection process. Here’s a look at how IceBreaker…

Operational Technology: The evolving threats that might shift regulatory policy

Listen to this podcast on Apple Podcasts, Spotify or wherever you find your favorite audio content. Attacks on Operational Technology (OT) and Industrial Control Systems (ICS) grabbed the headlines more often in 2022 — a direct result of Russia’s invasion of Ukraine sparking a growing willingness on behalf of criminals to target the ICS of critical infrastructure. Conversations about what could happen if these kinds of systems were compromised were once relegated to “what ifs” and disaster movie scripts. But those days are…