Dark Reading is part of the Informa Tech Division of Informa PLC

This site is operated by a business or businesses owned by Informa PLC and all copyright resides with them.Informa PLC's registered office is 5 Howick Place, London SW1P 1WG. Registered in England and Wales. Number 8860726.

Risk

9/21/2006
04:45 AM
50%
50%

Banking On Security

While waiting for Madison Ave. to make authentication sexy, banks have a bigger problem with security consciousness in their business units

12:45 PM -- Picture this ad for your bank: "Multi-factor authentication keeps your identity safe at (Financial Institution Name Here)."

Okay, so Madison Avenue will obviously come up with a much smoother ad slogan for safer online banking, but you get the point. This could be the next generation of marketing for banks, much like Citi's raucous TV commercials for identity-theft prevention (Valley Girl voiceover on couch potato identity-theft victim Jake B.) with its credit cards.

Banks are starting to look for ways to convert their security tools into marketing tools. (See Putting Security in the Bank.) Bank of America was one of the first to do it with its SiteKey authentication, and now other banks are looking for ways to cash in on their security investments. (See Flaws Reported in Bank of America System.) They want to attract and retain banking customers with a marketing campaign that makes its online banking look safer than other banks.

But security pros at most financial institutions are still struggling to get the business side of the bank on board with building security into their initiatives, instead of as an afterthought. CISOs at last week's Cyber Security Executive Summit were lamenting how it's still hard to get the business side to treat security as part of the business plan.

That's, like, totally not going to help them launch a new marketing campaign.

It may take a little more financial persuasion. Credit card companies didn't start to spin security technology into a revenue-generating service until identity-theft breaches actually began costing them lots of money.

And here's the thing: If and when banks finally do embrace multi-factor authentication or other security technologies as a marketing campaign and not just a regulatory checkbox, will consumers really care? Does Jake B. prefer strong authentication over Passmark?

Tell us whether you think consumers would consider changing banks if another bank advertised better online security. And please, not by email or spam, but by clicking on the "Discuss" link below and posting to our message board.

— Kelly Jackson Higgins, Senior Editor, Dark Reading

Comment  | 
Print  | 
More Insights
Comments
Newest First  |  Oldest First  |  Threaded View
News
FluBot Malware's Rapid Spread May Soon Hit US Phones
Kelly Sheridan, Staff Editor, Dark Reading,  4/28/2021
Slideshows
7 Modern-Day Cybersecurity Realities
Steve Zurier, Contributing Writer,  4/30/2021
Commentary
How to Secure Employees' Home Wi-Fi Networks
Bert Kashyap, CEO and Co-Founder at SecureW2,  4/28/2021
Register for Dark Reading Newsletters
White Papers
Video
Cartoon Contest
Current Issue
2021 Top Enterprise IT Trends
We've identified the key trends that are poised to impact the IT landscape in 2021. Find out why they're important and how they will affect you today!
Flash Poll
How Enterprises are Developing Secure Applications
How Enterprises are Developing Secure Applications
Recent breaches of third-party apps are driving many organizations to think harder about the security of their off-the-shelf software as they continue to move left in secure software development practices.
Twitter Feed
Dark Reading - Bug Report
Bug Report
Enterprise Vulnerabilities
From DHS/US-CERT's National Vulnerability Database
CVE-2021-24259
PUBLISHED: 2021-05-05
The “Elementor Addon Elements� WordPress Plugin before 1.11.2 has several widgets that are vulnerable to stored Cross-Site Scripting (XSS) by lower-privileged users such as contributors, all via a similar method.
CVE-2021-24260
PUBLISHED: 2021-05-05
The “Livemesh Addons for Elementor� WordPress Plugin before 6.8 has several widgets that are vulnerable to stored Cross-Site Scripting (XSS) by lower-privileged users such as contributors, all via a similar method.
CVE-2021-24261
PUBLISHED: 2021-05-05
The “HT Mega – Absolute Addons for Elementor Page Builder� WordPress Plugin before 1.5.7 has several widgets that are vulnerable to stored Cross-Site Scripting (XSS) by ...
CVE-2021-24262
PUBLISHED: 2021-05-05
The “WooLentor – WooCommerce Elementor Addons + Builder� WordPress Plugin before 1.8.6 has a widget that is vulnerable to stored Cross-Site Scripting (XSS) by lower-priv...
CVE-2021-24263
PUBLISHED: 2021-05-05
The “Elementor Addons – PowerPack Addons for Elementor� WordPress Plugin before 2.3.2 for WordPress has several widgets that are vulnerable to stored Cross-Site Scriptin...