An intruder made off with email addresses of about 5 million users, as well as full names for a separate group of about 2 million.

The firms failed to update their cybersecurity policies immediately after client data was exposed.

The bank says plaintiffs cannot connect instances of identity theft or fraud to incidents at the bank, giving the case no standing.

The exposed information includes customer names, dates of birth, Social Security numbers and company names.

It’s time to revisit your firm’s protocols to ensure they make sense given widespread tech adoption during the pandemic, writes Wes Stillman.

Following through on its staged approach to new advice standard, industry regulator expected to be less patient with the "laggards."

Emerging consumer attitudes toward privacy threaten to overturn long-standing industry assumptions about customer data and personalization.

The Internal Revenue Service’s Criminal Investigation Division issued a warning Thursday about a new wave of COVID-19 scams tied to the latest round of stimulus payments, especially targeting taxpayers in the District of Columbia.

Clients have gotten used to less in-person interaction and have reshaped their expectations and behavior accordingly, says Broadridge's Fred Duden.

The regulator found that the financial services company failed to take precautions in disposing of hardware that contained sensitive customer information.