HSBC, Barclays To Test Digital ID For Cross-Border Banking

HSBC and Barclays have joined several private and public sector organisations to test the use of digital ID in cross-border banking.

The group, which includes HSBC, Barclays, the UK Government Digital Service (GDS), Orange, OT-Morpho and the Open Identity Exchange (OIX UK), has launched the project by testing the opening of a bank account in the UK using a citizen’s digital identity from France. Additional funding for the project comes from European Union’s Connecting Europe Facility, a funding instrument to support the development of interconnected trans-European networks in the fields of transport, energy and digital services.

According to HSBC, the biggest effect that this project could have is to eliminate the need for a separate set of identification paperwork when opening a bank account in another country. A digital ID allows banks to share data and verify the client’s identity regardless of nationality.

The group will also use the mobile connect authentication process allowing the user to request a digital ID that is validated via eIDAS. These services will be developed and provided by Orange.

Source: The Paypers

Verizon Customer Data Leak Exposes 14 Million Records

Around 14 million Verizon customers’ sensitive data was exposed online because a third-party contractor forgot to limit external access to an Amazon S3 server.

The server belongs to NICE Systems, an Israeli tech company involved in supplying software for back-office and call centre operations, according to UpGuard, a cyber-security company that discovered the leak.

Bleeping Computer explains how the server and its data were accessible, and that details such as Verizon customer names, addresses, account details, and for some account PINs, were accessed from January 2017 through June 2017.

Moreover, data from French mobile operator Orange was also exposed as the same NICE Systems server contained data from the mobile telco, but unlike the Verizon data, the Orange folder contained what appeared to be internal files, not as sensitive as the data stored in the Verizon directory, the online publication continues.

Experts say they contacted Verizon and NICE on June 13, when they discovered the server, but the leak was fixed nine days later on June 22.

Source: The Paypers

Qualcomm’s Ultrasonic Fingerprint Sensors Use Precise Biometrics Software

“While the ultrasonic scanning is enabled by the sensor hardware, their biometric matching is the product of Precise Biometrics’ flagship software platform, Precise BioMatch Mobile.”

Precise Biometrics algorithm software is being used in Qualcomm’s new ultrasonic fingerprint sensors, the company has revealed.

See the full article here.

Malaysia: No More Signing for Card Payments

Data

Goodbye signatures, hello personal identification numbers (PIN). It is all systems go for the nationwide transition to PIN and Pay on 1 July 2017.

PINs will be mandatory for all transactions over the counter using credit and debit cards.

Today marks the end of the six-month grace period where cardholders and merchants were allowed signatures for transactions.

A smooth transition is expected, with most cards and point-of-sale (POS) terminals being replaced and a vast majority of cardholders using their PIN for payment.

Close to 23 million payment cards have been replaced, translating to 100% of credit cards and 98.5% of debit cards as of May.

See the full article here.

Rivetz Introduces Decentralised Cybersecurity Token

Rivetz has announced the RvT cyber security token, created to combine computing with blockchain technology to offer privacy protection.

The solution enables multi-factor authentication across devices, to achieve security at the transaction and authentication level. Moreover, it will enable peer-to-peer transactions to have provable cyber controls that become a permanent part of the blockchain record, providing cryptographic proof that the measured protections were in place before a transaction. The app checks the status of a device before undertaking a task, such as connecting to the cloud.

Rvt token is built on a technology that has already been delivered on over a billion devices containing ARM-compatible processors. It takes advantage of the established features of the Trusted Execution Environment (TEE) to provide a vault on the device to enable machine execution of instructions that are subject to owner-led policy.

The launch of the RvT token sale is expected to take place on July 25, 2017.