Sunday, October 18, 2009

Online Banking "Lock-Down"

$479,000 heist from small business bank account lends weight to calls for online banking 'lock-down'

There's a better way.

Use a separate machine for online banking.

The HomeATM SLIM plugs into your laptops USB port and becomes
that desperately needed "separate machine"...

Finextra: Criminals have stolen more than $479,000 from a Pennsylvania housing development authority after infecting its computer system with the notorious Clampi Trojan. The crime is the latest in a rash of heists from small business banking users in the US, which has led some industry bodies to suggest radical lock-down procedures for companies banking online.

According to local press reports, the Trojan was installed through a fake Web site purporting to belong to Cumberland County Redevelopment Authority's bank, M&T.

Once installed, Clampi stole passcodes which were used to transfer the money to bank accounts set up by the hackers at 11 different financial institutions. About $109,000 has been recovered since the money was taken on 22 September.

The incident is just the tip of the iceberg, if Bryan Krebs of the Washington Post's SecurityFix blog is to be believed. He reports multiple cases of small business and non-profit organisations failling victim to similar sophisticated Trjoan attacks.

Concern over the upsurge in crybercrime has moved the bank-backed Financial Services Information Sharing and Analysis Centre to issue a confidential alert to members about the dangers posed to small businesses when banking online.

The note recommends that commercial banking customers should be induced to "carry out all online activity from a standalone, hardened and locked-down computer from which e-mail and Web browsing is not possible".

So, your choices are: Buy a separate PC for online banking for hundreds or thousands of dollars...or ask your bank to give you a HomeATM SLIM for free. (or you can buy it for $25.00...but HomeATM feels your bank should give it to you for free)

Saturday, October 17, 2009

Online Banking Requires Separate PC! (or a HomeATM)

Earlier, the American Bankers Association, in a press release, stated that a new "ABA SURVEY: shows that "CONSUMERS PREFER ONLINE BANKING"

But before the online banking community starts popping their champagne, (online banking is more profitable) I thought now might be an opportune time to segue to the results of another study, conducted by ACI Worldwide:

49% of Consumers Worldwide Would Switch Banks if Victim of Card Fraud

"49% of consumers across eight countries would consider switching or definitely switch banks if they (or someone they knew) was hit by card fraud"

49 PERCENT! That's an extremely high number...Yes? And it wouldn't even have to happen to them. Just to somebody they "knew of."

I'd surmise that banks might want to consider doing something to decrease the likelihood of that happening, such as, the elimination of username/password and the implementation of a stronger authentication procedure. I have an idea. Maybe they could choose one that both they AND consumers ALREADY trust...one already required to dispense cash out of ATM's. They could protect their customers (thus retain them) by telling them to 1. "Swipe their bank issued card" and 2. "Enter their bank issued PIN" 3. with their brand new "bank issued HomeATM."

Otherwise banks risk losing an awfully high percentage of customers. For example, Clampi, ( malware) steals bank details when people log into online banking sites, and transfers money out of their accounts.

HomeATM's device can prevent online banking customers from being caught out by the Clampi Trojan horse. When you don't type in your bank details, you put he clamp on the threat. Otherwise... "The best strategy to defend against Clampi is to use separate machines for Web surfing and funds transfer" - Joe Stewart, one of the world's foremost authorities on botnets and targeted attacks. "Using Windows, it's too dangerous to do transactions on the same machine you do for Web surfing," he says. "You can't have any crossover between them." Editor's Advice: Our Device is obviously a helluva lot cheaper than a buying another PC for online banking... :-)

Of course, an online banking institution which provided stronger authentication, would probably be much more likely to enjoy a higher number of customer acquistions. (would you agree that if a customer leaves Bank A because of poor authentication, it only makes sense that they would go to Bank B where the security is stronger?)

In the midst of a bad economy, I would think that "customer retention" and "customer acquisition" might be two factors deemed imperatively important. As it so happens, this provides another perfect segue, this one a September 21st study by eMarketer.

Customer Acquisition and Retention Top Priorities

Marketers’ top priorities for 2010 will be customer acquisition and retention, followed by thought leadership, according to a survey by virtual events provider Unisfair.

Six in 10 marketers polled said Acquiring (A) new customers would be critical in 2010, while 48% would focus on Retaining (R) current customers—a particularly important effort in the recession. (Editor's Note: Let's do the math: 60% say Acquiring and 48% say Retaining new customers is critical. Total R&A: 108%! So I would think banks would want to give 110% of their marketing efforts when it comes to putting together an R&A plan.

So, let's review: Online banking is now the preferred by consumers according to the ABA, but according to ACI Worldwide, 49% would blow that pop-stand if they or someone they knew were victims of fraud, yet according to eMarketer, 2010 is the year to focus on customer "R&A."

Now, for fun...lets see if we can combine all three of these variables and connect the dots to create a marketing plan for these banks. But first...there is one more important element in this equation.

Court Allows Suit Against Bank Based on Poor Online Banking Log-In

The plaintiffs claim that by only requiring user names and passwords to authenticate customers at log in, Citizens failed to maintain state-of-the-art security standards.

"At the beginning of this month, a US District Judge refused to grant summary judgement in favour of the financial institution, clearing the way for the court case to take place, stating in her judgement:

"In light of Citizens’ apparent delay in complying with FFIEC Security Standards, a reasonable finder of fact could conclude that the bank breached its duty to protect Plaintiffs’ account against fraudulent access”

An FFIEC report entitled Authentication in an Internet Banking Environment, dated 2005 states; “The agencies consider single-factor authentication, as the only control mechanism, to be inadequate for high-risk transactions involving access to customer information or the movement of funds to other parties.”

Okay, I connected all the dots and here's what I came up with...

The current system benefits ONLY the bad guys.

It's time for banks to ditch the obviously obsolete username/password/20 questions game...and time to start "genuinely" authenticating online banking sessions...by requiring users to swipe their card and enter their PIN. Identical to the way their customers access their cash at an ATM.

Banks cannot continue on their current path. Asking questions such as:

What's your mother's maiden name...
What's the make of your first car...
What town were you born in...
What is the First Letter of the Middle Initial of your Second dog...

All that kinda stuff, is not secure...it is fluff! The answers to those questions are either accessible at social networking sites or available by simple keylogging schemes, and it puts both banks and their customers at risk for fraud, identity theft and...now...lawsuits.

Converting customers to Swiping vs. Typing, that's genuine authentication. That's the name of the game.

Especially considering a 3DES DUKPT E2EE (see related articles below for an explanation of what that it) PCI 2.x Certified encryption of the cardholder data.

Financial institutions would enhance their image by providing their customers with an encryption enabled online banking log-in, thus retain the ones they have and acquire the ones their competitors lose because they didn't switch to swiping over typing.

It's not a coincidence that Barclays bank was recently rated #1 for providing the most secure online banking application in the U.K. Why? Because they require their online banking customers to use their PINSentry device for two-factor authentication. See: Online Banking Insecure...Only 1 Bank Rated Excellent

"Barclays was the only one of the 10 banks surveyed to get a rating of 'excellent'. The company requires all its online customers to use a "two-factor authentication" (2FA) system involving a PINsentry device which generates a one-time password for each session".

"HomeATM is far more useful than the PINSentry device. It not only provides two-factor authenticated log-in, but it does it without generating a one-time password (OTP) which have been recently exposed as hackable. Once the PINSentry device authenticates the user, it's usefulness is done until the next time the user logs in...whereas with HomeATM's device, logging in is only the beginning of what it enables the consumer to do...including

1. Person to Person Funds Transfer (sending and receiving)

2. Account to Account Funds Transfer (checking to savings/savings to checking, one bank to another bank)

3. Person to Business Funds Transfer

4. Online Bill Payments in "Real Time"

5. Secure Online Credit Card Transactions

6. Secure Online Debit Card Transactions

So should banks convert to HomeATM's 2FA 3DES E2EE PCI 2.x Certified Device? In a word...YES!

Oh, in closing, remember that the HomeATM would also eliminate phishing entirely (what would the bad guys phish phor? Nothing is entered/typed) It would also eliminate the threats posed by DNS Hijacking, Cloned Bank Websites and malware such as the dreaded Clampi. (what information would the malware derive if typing was eliminated and your credit/debit numbers were never stored anywhere on your PC?)

Friday, October 16, 2009

Diebold CEO To Deliver Keynote Presentation at ATM, Debit & Prepaid Forum

Will Focus on Emerging Trends in Retail Banking Self-Service and ATM Security

Diebold showcases latest innovations, presents expert ATM security insights and best practices

NORTH CANTON, Ohio, Oct. 16 /PRNewswire-FirstCall/ -- As new trends arise and complex threats emerge around the world, Diebold, Incorporated (NYSE: DBD) is fully dedicated to developing solutions to help financial institutions strategically meet their most pressing goals while reducing costs, enhancing the user experience and mitigating risks. Thomas W. Swidarski, Diebold president and chief executive officer, will speak to these topics through the perspective of progressive financial institutions around the world in his keynote presentation, "ATM Revolution - Capitalizing on the New Trends in the ATM Industry," at this year's ATM, Debit & Prepaid Forum in Las Vegas, Nev.

"As the ATM environment becomes increasingly complex, financial institutions can enhance operations and deliver greater value across the board through outsourcing their non-core operations. By enlisting experts to manage all aspects of the self-service channel, institutions can realize exceptional value through heightened security and improved quality of products and services for consumers," Swidarski said. "Outsourcing empowers financial institutions to meet consumer demand for the industry's leading technologies, while freeing them to dedicate valuable resources to their primary objective - increasing customer satisfaction."

During the forum, special emphasis will be given to the many facets of ATM security as rapidly escalating threats challenge the global financial services industry. In addition, Diebold's experts will discuss and demonstrate the company's standard-setting innovations, including the recent launches of forward-thinking technologies such as rapid processing, the next generation of deposit automation, and Diebold's mobile banking solution, MobiTransact(TM).

Addressing ATM security, one of the most technologically complex operational challenges today, Diebold will host industry authority Dr. Peter Tippett, vice president, technology and innovation, Verizon Business, and creator of the first commercial anti-virus product. In his address, "Can you Afford to Ignore Risk? Emerging Threats in the ATM Industry," Tippett will discuss recent ATM crime investigations to provide best practices in compliance management and risk planning, and help attendees identify vulnerabilities in their own networks.

Diebold industry experts will also exhibit ways to improve a financial institution's security environment to help combat identity theft and credential management, internal fraud and regulatory compliance, and card skimming and PIN interception.

Booth demonstrations also will include innovations in deposit automation. Diebold's rapid processing technology enables note and check deposits executed in a single transaction. Featuring the simultaneous operation of two modules at the ATM, this capability greatly increases transaction speed resulting in shorter wait times at the ATM.

Diebold will present MobiTransact, its mobile banking technology that will empower financial institutions to build customer relationships by enabling timely interactions with customers through their cell phone. And, with MobiTransact, Diebold will introduce improvements in security, specifically addressing the highly vulnerable area of skimming. Diebold's mobile banking solution integrates self-service channels, improves transaction security and is available as a managed service.

For more information about Diebold, visit booth #211 on the show floor, or visit www.diebold.com.

About Diebold

Diebold, Incorporated is a global leader in providing integrated self-service delivery and security systems and services. Diebold employs more than 17,000 associates with representation in nearly 90 countries worldwide and is headquartered in Canton, Ohio, USA. Diebold is publicly traded on the New York Stock Exchange under the symbol 'DBD.' For more information, visit the company's Web site at www.diebold.com or visit www.diebold.com/150 to learn more about Diebold's 150-year history.

SOURCE Diebold, Incorporated

MasterCard Introduces New Online, Interactive Financial Management Tool to Help Debit Cardholders Track Spending

Security Service FCU First to Offer MasterCard Money Manager™, Enabling Consumers to Easily and Efficiently Budget and Monitor Debit Card Spend

Purchase, NY, October 15, 2009 - MasterCard Worldwide today announced the launch of MasterCard Money Manager™, a new, interactive financial management tool that enables MasterCard cardholders to quickly and efficiently monitor debit card spending for themselves and members of their household. Using the web-based tool, consumers have the ability to review signature and PIN-based MasterCard transactions by merchant category, and create customized categories, making it easy to identify spending patterns and compare actual spend to an allocated budget.

MasterCard Money Manager provides greater control to MasterCard cardholders at a time when consumers are seeking ways to better manage spending. According to MasterCard research, 43 percent of consumers prefer debit to other payment methods because of its ability to provide greater financial control and help them spend responsibly.

Security Service Federal Credit Union (Security Service FCU) is the first financial institution to offer MasterCard Money Manager to its debit customers.

“MasterCard Money Manager provides our members with a simple and convenient way to create a budget and then track how and where they are spending,” said Keith Sultemeier, executive vice president and chief financial officer, Security Service FCU. “Especially in today’s economic environment and as we approach the start of the holiday shopping season, we’re excited to be able to offer our members more control and greater financial management capabilities simply by using their debit card.”

MasterCard Money Manager simplifies record keeping and eliminates the data entry that most budgeting programs require. Users can track household spending on multiple cards daily, monthly or over time and have the ability to sort transactions by date, merchant category, merchant location, card number and name.

“As consumers increasingly seek greater control and visibility into their spending, MasterCard Money Manager provides an intuitive and simple to use way to manage and assess an individual or household budget,” said Patricia Preston, senior vice president, U.S. Debit Product Management and Development, MasterCard Worldwide. “The financial management tool is the latest MasterCard innovation designed to help financial institutions offer superior products that add value and make life easier for their customers.”

About Security Service Federal Credit Union

Security Service Federal Credit Union, headquartered in San Antonio, Texas was founded in 1956 and has grown to become the ninth largest credit union in the nation and the largest in Texas with over $5 billion in assets and more than 700,000 members in Texas, Colorado and around the world. There are 36 Texas locations and 14 locations in Colorado. To find out more about Security Service FCU’s products and services visit www.ssfcu.org or call 1-888-415-7878.

About MasterCard Worldwide

MasterCard Worldwide advances global commerce by providing a critical economic link among financial institutions, businesses, cardholders and merchants worldwide. As a franchisor, processor and advisor, MasterCard develops and markets payment solutions, processes approximately 21 billion transactions each year, and provides industry-leading analysis and consulting services to financial-institution customers and merchants. Powered by the MasterCard Worldwide Network and through its family of brands, including MasterCard®, Maestro® and Cirrus®, MasterCard serves consumers and businesses in more than 210 countries and territories. For more information go to www.mastercard.com.

EPC to Launch SEPA Direct Debit Programs on November 2.

Frankfurt, Germany, Oct. 16, 2009 -- The European Payments Council, which oversees payments for the European banking industry, has announced plans to launch the SEPA Core Direct Debit Scheme and the SEPA Business to Business Direct Debit Scheme on Nov. 2. The Direct Debit services enable card users in Europe to make and receive domestic and cross-border euro direct debit payments throughout the 32 SEPA countries — the 27 EU member states, Iceland, Liechtenstein, Norway, Switzerland and Monaco.

Banks throughout the Single Euro Payments Area, known simply as SEPA, will be required by the EU regulation on cross-border payments to comply with the Core Direct Debit by Nov. 1, 2010. But banks in SEPA are already making progress, according to EPC. Thus far, just more than 2,600 banks representing 70 percent of SEPA payment volumes have signed up for the new schemes and are ready to roll out SEPA Direct Debit services by Nov. 2, 2009. Of those 2,600 banks, approximately 2,300 are offering SDD Core and SDD B2B services.

Gerard Hartsink, chairman of EPC, says the schemes have been part of Europe’s payment plans since 2002.

“Following the introduction of euro notes and coins in 2002 the political drivers of the SEPA process — the Economic and Financial Affairs Council, the European Commission, the European Parliament and the European Central Bank — called on the payments industry to bolster the common currency by developing a set of harmonized schemes and frameworks for electronic euro payments,” he said. “The SEPA Credit Transfer Scheme, the SEPA Direct Debit Schemes and the SEPA Cards Framework developed by the EPC in close dialogue with the customer community strengthen the monetary union. The SEPA schemes also support cross-border trade within the internal market.”

The implementation of SEPA payment services based on global ISO standards offers greater efficiencies for businesses and public administrations, while consumers can rely on a single set of euro payment instruments that cover 32 countries: one bank account, one bank card, one SEPA credit transfer and one SEPA direct debit.

But it goes beyond just payments benefits, says the European Commission. The commission expects legal and technical harmonies that have resulted from SEPA to also facilitate the dematerialization of business processes by replacing paper-based procedures with standardized electronic solutions such as e-invoicing.

The introduction of the SEPA Direct Debit Schemes requires a uniform EU-wide legal framework for payments; the launch date aligns with the Nov. 1, 2009, deadline for EU member states to transpose the Payment Services Directive into national law.

“Moving forward, the focus must be on accelerating migration to the new euro payment instruments,” Gerard said. “Today, more than 4,500 banks offer SEPA credit transfer services. Eighteen months after the launch of the SCT, 4.4 percent of all euro credit transfers in the EU are actually based on the SCT scheme. The current rate of SEPA market uptake is in line with expectations considering the average timelines required for the rollout of other major EU integration initiatives.”

Gerard adds that the European Commission, the European Central Bank and EU governments should implement SEPA-communication campaigns similar to those spearheaded with the euro was first introduced so that consumers fully understand what SEPA is. He also says that public administrations, which account for up to 20 percent of e-payments in the euro area, need to speed up their SEPA schemes implementation.

Source: Company press release.

Antitrust Today Blog to be Launched by Constantine Cannon

Constantine Cannon Focuses On "Antitrust Today"

(And Every Day) With Its New Blog

Greetings!

Constantine Cannon LLP is pleased to announce the launch of its new blog, Antitrust Today.

As one of the most innovative law firms specializing in antitrust, Constantine Cannon has made its mark with insightful antitrust analysis, such as in its landmark debit card litigation against Visa and MasterCard, which helped reveal abuses and lead to reform of that industry. Constantine Cannon will use that perspective in its new blog to highlight the antitrust issues that arise as competition - and its enforcement - evolves.

Antitrust Today will examine developments in antitrust and competition law both in the United States and abroad. We look forward to engaging in a dialogue about these issues, especially as we enter a new era of antitrust regulation, particularly in the United States and the European Union. Comments and requests for guest blogging are welcome.

Diebold Forms Direct Operation in Turkey

Istanbul, Oct. 16, 2009 -- As part of a strategy to build closer relationships with financial institutions in the region, Diebold has formed a direct sales operation in Turkey. The leading global provider of automated teller machines (ATMs) and related services will serve its growing client base from offices based in Istanbul, providing customers with a direct link to its innovative products and services. Previously, Diebold supplied customers in the region through a distributor.

The company's operation in Turkey will be led by a local team, with the additional support and commitment of the company's regional operations in Europe, the Middle East and Africa (EMEA). Diebold is expanding this team with the recruitment of sales staff to further develop customer and partner relationships. Diebold will supply products directly to customers and will also work with trusted and certified local service partners, whose responsibilities will include installation, warranty and maintenance services.

Diebold is also working to certify its latest software portfolio solution for the Turkish market. Agilis EmPower® software allows financial institutions to make changes to their ATM functions almost immediately, without the need to employ specialized programming skills, saving both time and money. The software provides a powerful tool for bank networks to customize their ATMs and respond to customer needs. In addition, Diebold is piloting and certifying its latest products and services in the region to assess customer requirements.

"The ATM market in Turkey is one of the fastest growing in the EMEA region," said Danilo Rivalta, vice president and general manager, Diebold EMEA - Southern and Central Area. "This market has increased by 20 percent during the last year and is expected to grow at the same level during the coming year. We believe that having a strong local operation will help us better serve the industry and improve our competitive position in the region."

Rivalta continued, "We also know that many banks in Turkey are currently replacing their old equipment and believe that there are a number of compelling reasons for customers to choose Diebold as their new alternative. These range from innovative products such as our cash recycling solution and our Agilis EmPower® software, to unique security features and our outsourcing expertise."

Diebold is showcasing its latest product offering in Turkey today( )during a special event held for customers in Istanbul. The 'Branch Transformation' event will include guest speakers from Retail Banking Research, Microsoft, Banksoft and BNL-BNPP and will discuss the way in which technology is enabling branch efficiency with case study examples.

About Diebold

Diebold, Incorporated is a global leader in providing integrated self-service delivery and security systems and services. Diebold employs more than 17,000 associates with representation in nearly 90 countries worldwide and is headquartered in Canton, Ohio, USA. Diebold is publicly traded on the New York Stock Exchange under the symbol 'DBD.' For more information, visit the company's Web site at www.diebold.com , or visit www.diebold.com/150 to learn more about Diebold's 150-year history.

Source: Company press release.

Central Bank of India Debuts Gift and Virtual Cards to Ease Holiday Gifting

Shoppers Can Give the Gift of Choice, Shop Online without a Bank Account or Credit Card

MUMBAI, October 16, 2009 – Just in time for the festival season, a new gift card and first-of-its-kind virtual card from Central Bank of India and Rêv are opening up a world of giving possibilities for holiday shoppers. With the Central Bank of India MasterCard® Gift Card, shoppers can give the gift of choice to loved ones. And, consumers can shop and spend online with the Rêv® MasterCard® Virtual Card, the first virtual card to bring online shopping to Indian consumers who may not have a bank account or credit card.

Recipients can redeem Central Bank of India MasterCard Gift Cards to buy virtually anything they want, any place they choose. In addition to retail locations, recipients can also use them to make purchases online and over the phone anywhere MasterCard is accepted in India.

The Rêv MasterCard Virtual Card is a prepaid MasterCard number that gives shoppers a secure way to buy online, over the phone or by mail order wherever MasterCard is accepted without requiring a bank account or credit card.

“As gift cards and online shopping grow in popularity, Central Bank of India is committed to working with partners to make sure everyone can enjoy them,” said Mr. R. Thiagarajan, Chief Manager Centralcard, Central Bank of India.

According to research firm comScore Inc., India’s Internet audience saw the strongest growth in the Asia-Pacific region, reaching 28 million Internet users in April 2008, an increase of 27 percent from the previous year.¹ And the growth of gift cards also looks set to follow international trends – the U.S. gift card market alone is estimated to be worth $5 billion by Mercator Advisory Group.²

“We’re proud to join forces with Central Bank of India to bring consumers unlimited possibilities for giving and shopping this holiday season,” said Simon Hilton, CEO, Rêv Asia Pacific.

Starting today, consumers across India can enjoy the benefits of giving with a Central Bank of India MasterCard Gift Card. Recipients can also monitor the balance available on their cards from their mobile phones by registering their phone number at www.centralbankgiftcard.co.in.

Consumers can shop and spend online with the purchase of the Rêv MasterCard Virtual Card beginning next week. After purchasing the card, consumers will receive a voucher number and PIN code via mobile phone or on a printed receipt, and will use that information to register and activate the card online at www.revvirtualcard.co.in. Consumers can then access their 16-digit card number on a secure web page and receive the card’s expiry date and security details via email or SMS.

Central Bank of India issues the Central Bank of India MasterCard Gift Card and the Rêv MasterCard Virtual Card.

Pricing and Availability

The Central Bank of India MasterCard Gift Card is immediately available from select Central Bank of India branches for Rs100 plus load value.* For more information and to find participating branch locations, please visit www.centralbankgiftcard.co.in.

The Rêv MasterCard Virtual Card is available for Rs30 plus load value and can be purchased online next week and through participating retail locations in the near future.† To purchase a card online, learn more or find participating retailers, please visit www.revvirtualcard.co.in.

¹ “India and China Propel Internet Audience Growth in Asia-Pacific Region,” comScore, June 2008 (http://bit.ly/zBp6w)

² “5th Annual Prepaid Closed-loop Market Assessment,” Mercator Advisory Group, October 2008 (http://bit.ly/182hvs)

* Valid identification required

† Valid identification, Indian mobile phone number and email address required

About Central Bank of India

Established in 1911, Central Bank of India was the first Indian commercial bank which was wholly owned and managed by Indians. The establishment of the Bank was the ultimate realisation of the dream of Sir Sorabji Pochkhanawala, founder of the Bank. Sir Pherozesha Mehta was the first Chairman of a truly 'Swadeshi Bank'. In fact, such was the extent of pride felt by Sir Sorabji Pochkhanawala that he proclaimed Central Bank of India as the 'property of the nation and the country's asset'. He also added that 'Central Bank of India lives on people's faith and regards itself as the people's own bank'.

Among the Public Sector Banks, Central Bank of India can be truly described as an All India Bank, due to distribution of its large network in 27 out of 28 States as also in 4 out of 7 Union Territories in India. Central Bank of India holds a very prominent place among the Public Sector Banks on account of its network of 3542 branches and 218 extension counters at various centres throughout the length and breadth of the country. In view of its large network of branches as also number of savings and other innovative services offered, the total customer base of the Bank at over 25 million account holders is one of the largest in the banking industry.

About Rêv India

Rêv India is a subsidiary of Rêv Asia Pacific, an innovative payment solutions company who designs, markets and distributes a range of prepaid card products designed to meet the needs of consumers underserved by traditional financial services. These products include reloadable cards for everyday use, mobile payments, cards for domestic and international remittance, gift cards and virtual cards for shopping online. Rêv Asia Pacific forms part of Rêv Worldwide (www.revworldwide.com), the first global network of payment companies created to innovate end-to-end payment solutions that allow underserved consumers around the world to participate in today’s mainstream economy. Rêv Worldwide partners with financial institutions, telecommunications companies, merchants and government entities to serve consumers through card payments and payment processing, reload networks, mobile payments, loyalty programs, money transfers and bill payment. The Rêv Worldwide companies are members of the MPOWER Ventures investment portfolio.

Media Contacts

Central Bank of India

Mr. R Thiagarajan

+91-22-2282-4011

agmcentralcard@centralbank.co.in

Rêv Asia Pacific

Meredith DeSpain Kelsey

+1-512-531-1191

pr@revworldwide.com

paysafecard group wins “Leading Prepaid Organisation 2009” Award

300 key people from the industry cast their vote at the “Prepaid Awards” in London

paysafecard group gets rewarded for international development over the past 12 months

London/Vienna 16^th October 2009 – paysafecard group, Europe’s leading online payment method provider, has been awarded for being the “Leading Prepaid Organisation 2009” at the annual Prepaid Awards in London this week.

Over 300 key people from across the prepaid industry attended the ceremony which took place in London on Tuesday, October 13^th.

After the independent judges from eight European countries, all experts from the industry, had created a shortlist for each of the ten categories, the guests were asked to vote for the winners.

“It is a great honour to receive this award,” says Michael Mueller, CEO of paysafecard group. “We see it as an approval for our hard work and as recognition of our pan-European and worldwide development especially over the past 12 months.”

With the prepaid voucher paysafecard, the company created a safe and easy payment method for purchases on the Internet. The vouchers can be bought at 230,000 outlets in more than 20 countries worldwide. By simply entering the 16 digit pin code at one of the 3,000 web-shops that accept the vouchers as a payment method, customers can buy their goods quickly and securely within seconds.

About paysafecard: Over the past nine years, paysafecard have established themselves as Europe’s favourite safe and easy-to-use alternative prepaid payment method for e-commerce. It is available in more than 20 countries worldwide. The smart payment solution is designed for users who don’t have a credit or debit card or who don’t want to use their credit card for online purchases and other micro payments on the Internet. Users simply authorize a payment by entering a PIN code, similar to the system used with prepaid phone cards. Thousands of e-businesses are benefiting from new customers by offering this safe and uncomplicated payment solution. paysafecard is available in £10, £25, £50 and £75 e-vouchers at more than 230,000 outlets across Europe and South America. In March 2009 the group was awarded ‘Best Prepaid Company outside the USA’ by the global prepaid industry publication Paybefore. For more information, please visit www.paysafecard.com

Industry Study: Prepaid Cards Cheaper Than Checking Accounts?

Kristina Peterson, of DOW JONES NEWSWIRES reports on a new "industry backed" (limited) study, released yesterday suggesting that Prepaid Cards are cheaper to use than checking accounts.

I am not buying into the study as it represents a prime example of how data and statistics can be manipulated to say whatever you want the data to say.

In this case, because it is an "industry backed" study, they throw out the cards with highest rates and then compare figures against "low balance" checking accounts...in order to come to the conclusion the PrePaid Card "Industry" offers advantages over checking accounts.

I don't buy it, but...here's a clip in order to provide you with your own determination...

WASHINGTON -(Dow Jones)- An industry-backed study of prepaid card fees released Thursday argues that reloadable cards are a cheaper alternative to traditional low-balance bank checking accounts.

Pre-paid cards have come under scrutiny in Congress as it considers creating an agency to monitor consumer financial protection.

The study limits its focus to comparing the costs of four prepaid card programs to the five biggest bank checking account programs. A consumer with a low-balance checking account would expect to pay $200 to $350 annually, which includes the costs of overdraft charges, ATM fees and minimum account balances, according to the survey by management advisory firm Bretton Woods, Inc.

By contrast, a prepaid card user may pay between $108 and $320. The study was commissioned by the Network Branded Prepaid Card Association, an industry group.

In 2007, users made $4.8 billion in transactions using prepaid cards, according to The Nilson Report.

Several cards not included in the study show much higher fees. The Millennium Advantage Prepaid MasterCard, a product of Mastercard Inc. (MA), charges up to $ 99 for an activation fee. The MiCash Master Card charges $8.95 for each international remittance, $4 to make a bank teller withdrawal and $1 to check a balance. Flores said such cards do exist and they must disclose such fees " clearly and prominently" to consumers.

But Michelle Jun, a staff attorney with Consumers Union, said clear, obvious disclosure of fees is rare. She noted it can be hard to effectively evaluate prepaid cards' cost effectiveness because of the wide variation in their fee structures. "You can't even do close to an apples to apples comparison," Jun said.

Continue Reading

100 Billion Transaction Plateau Reached for First Time in U.S.

Breakdown of Transactions show Debit at 33% while Credit drops to 23%...

U.S. financial transactions—checks, debit, credit and automatic transactions—will top 100 billion by the end of the year as consumer spending has stagnated, according to Moebs Services, a research firm.

Moebs, which crunches Federal Reserve data, says paper checks usage has dropped from 85 percent of all transactions to 25 percent. Credit card usage is down, but debit transactions are up.

Here’s the breakdown of transactions:

Debit card transactions: 33 percent

Paper checks: 24 percent

Credit card transactions: 23 percent

Automatic Payments (ACH): 20 percent

Here's the Press Release:

LAKE BLUFF, Ill.-- For the first time in US history, the number of checks and electronic
transactions for debit cards, credit cards and automatic payments will exceed
100 billion by the end of 2009, according to Moebs Services, an economic
research firm in Lake Bluff, Ill. This volume represents all transactions from
consumers and businesses and is based on research and projections conducted by
Moebs $ervices using information from the Federal Reserve for 1979 to 2006. 

"Based on current transactions, our projections show that debit cards and
automatic payments are taking over at an increasingly rapid rate from the
traditional checking account for most Americans," says Mike Moebs, CEO. "Over
the past 30 years, paper check usage has dropped from 85 percent of all
transactions to less than 25 percent this year." Credit card usage while
increasing in an absolute sense is falling as a percentage of total transactions
after rising for 25 years, added Moebs. 

According to Moebs Services, transactions in 2009 will break down as follows:

* Debit card transactions, 33 percent 
* Paper checks, 24 percent 
* Credit card transactions, 23 percent 
* Automatic Payments (ACH), 20 percent

                                    
 Type of 100B Transactions in 2009: 
                                    
 Debit Card Transactions     33%  
 Paper Checks                24%  
 Credit Card Transactions    23%  
 ACH (automatic payments)    20%  
                                  


"What is noteworthy about the projected 100 billion transactions is that they do
not represent an increase in US consumer spending, which began declining in 2008
and is still not back on track as we approach year-end," said Moebs. "This
research indicates that consumers are doing significantly more transactions for
significantly fewer dollars than in the past. This may be due to easy electronic
payment methods replacing cash." 

Implications for Financial Institutions and Consumers

Moebs believes there are four implications for financial institutions and
consumers:

* Financial institutions will see reduced overdraft revenue as consumers use
fewer paper checks and opt out of overdrafts for their debit card accounts. 
* Consumers` reliance on electronic payments systems for goods and services will
require improved online security to prevent fraud and financial institution
losses.

* Consumers will require faster, more frequent, and more complete and
transparent communications from financial institutions in order to manage the
volume of their transactions and avoid frequent errors. 
* Automated systems seamlessly process transactions in real time will benefit
both the customer and financial institutions. Institutions which accelerate
their use of such technologies will enjoy dramatically reduced transaction unit
costs.

"Our research suggests banks, credit unions, brokerage and investment houses
should accelerate their planning for electronic payment use because we believe
there will be implications to the bottom line of financial institutions in
pricing, fee structure and service delivery," concluded Moebs. 

The Federal Reserve studies on the payment system have acted as the frame work
for the analysis and projections by Moebs $ervices along with proprietary data
of Moebs $ervices and other secondary sources. 

Photos/Multimedia Gallery Available:
http://www.businesswire.com/cgi-bin/mmg.cgi?eid=6071291〈=en

For Moebs Services
Kim Kellogg, 510-635-4150
Cell: 510-325-3195

Online Fraud Likely to Harm Online Banking

Identity theft and online fraud are likely to harm e-business prospects in the long run, warn experts, who are asking legislators to strengthen laws against cyber crime.

Susan Sproule and Norm Archer of McMaster University, Ontario, who conducted the study, say identity theft and fraud are an increasing concern for consumers who interact with online businesses routinely.

"These findings are (also) of concern to businesses and governments," Sproule says, "since, if consumers are wary to shop online, the productivity benefits of e-business will not be realized."

Nearly 10 percent people have ceased online banking, or have kept it to a minimum because of fraud worries. (Look for that number to grow.) Surveys show that 41% of US consumers will not bank online due to security fears. Recent events have resulted in some very bad publicity exposing the lack of security in the online banking industry.

Three recent examples:

FBI Director Robert S. Mueller has recently "sworn off" online banking after coming very close to becoming a phishing victim.

Security experts warn that the only way to protect yourself against the exponentially growing threat of online banking malware is to use a separate machine for online banking than the one used for browsing.

Two security experts warn consumers not to use Windows for online banking, yet 93% of all Internet users have Windows.

The study is slated for publication in the International Journal of Business Governance and Ethics.

SMS Based Microfinance System Unveiled by FrontlineSMS

SMS-based microfinance system unveiled

Finextra is reporting that a new system that claims to let microfinance institutions run their entire operations via mobile phones and a single laptop has been unveiled.

The FrontlineSMS:Credit system combines SMS-aggregating software and mobile commerce offerings to let MFIs deliver and track loans via handsets.

It is based on FrontlineSMS - free, open source software that turns a laptop and mobile phone into a central communications hub. Once installed, the program taps the GSM wireless telephone network to enable users to send and receive text messages with groups of people through mobile phones.

Continue Reading at Finextra

Thursday, October 15, 2009

VeriFone And Mocapay Form Strategic Partnership

VeriFone And Mocapay Form Strategic Partnership To Deliver Mobile Gift And Couponing

October 15, 2009 - San Jose, CA - VeriFone announces strategic partnership with Mocapay to deliver mobile gift and couponing on behalf of its customers, integrated with VeriFone customer-facing payment systems. Mocapay has integrated and certified with VeriFone's PAYware Connect gateway to extend its reach and availability to a broader set of merchants and to help expedite certifications with new processors.

Mocapay's platform provides merchants with the ability to mobile-enable their existing gift and loyalty programs through payment at the point-of-sale. Gift cardholders can transact at the point-of-sale, access their account balance and transaction history, find the nearest location, and reload their account, all from their mobile phone. In addition, consumers can send mobile gift cards directly from their PC to their friends' mobile phone utilizing Mocapay's proprietary Gift-a-Friend technology. Mocapay provides retailers the tools to send targeted, one-to-one messages and/or offers to their customers.

Mocapay and VeriFone have already successfully implemented mobile gift solutions as part of several retailer trials spanning specialty food, coffee, and petro/convenience verticals. "We see tremendous promise and positive preliminary results from these early market trials across multiple retailer and consumer segments", says Robbie Lopez, VeriFone senior vice president and general manager, Software Solutions. Mocapay and VeriFone first debuted their solution on MX 800 Series in VeriFone's booth at the NRF convention in January, 2009. As part of their partnership, VeriFone will integrate the Mocapay mobile capability in conjunction with merchant implementations.

About VeriFone

Mocapay has already been integrated and certified with VeriFone's PAYware Connect software to help extend its reach and availability to a broader set of merchants. "VeriFone's PAYware Connect software provides us with an easy, flexible, and one-stop shop to seamlessly integrate with the existing payments landscape." says Kevin Grieve, CEO Mocapay. "VeriFone has provided us with a flexible architecture to deliver value-added applications to their customers without burdening the merchant with technology integration."

SOURCE: VeriFone

Verifone PayWare Platform Chosen by U.S. Army and Navy

VeriFone PAYware selected for U.S. Army and Navy facilities management system

San Jose, Calif., Oct. 15, 2009 -- VeriFone Holdings, Inc. (NYSE: PAY) today announced that its PAYware Transact has been selected as the PCI-compliant payment engine for the Vermont Systems (VSI) RecTrac facilities management system that is deployed worldwide to U.S. Army and Navy recreational facilities.

VSI, of Essex Junction, VT, provides software for managing recreation and parks operations for municipal, county, state and federal military governmental entities. Its global deployment to Army and Navy facilities supports a wide range of activities, from court and locker reservations to childcare, with comprehensive reporting and financial management capabilities.

“PAYware Transact provides us with the PCI-compliant card acceptance and payment processing component,” said Giles Willey, president of VSI. “This relieves us of the need to develop specialized skills in the ever-changing payments area, isolates the payment function from our core application code, and provides our customers with assurance their applications will remain PCI-compliant moving forward.”

PAYware Transact is a highly-scalable and customizable Java-based payment solution that supports high-volume transaction processing for retailers and businesses of any size. The platform-independent system accommodates a mix of front-end environments — including POS devices, mail order/telephone order systems and e-commerce. Several thousand of VeriFone’s MX 830 systems are being deployed to approximately 3,000 Army and Navy facilities as a customer-facing card acceptance system for use with RecTrac.

“VSI has a sterling record supporting military recreation facilities and we’re proud to be part of a system that is instrumental in supporting the morale of soldiers and sailors and their families,” said Robbie Lopez, VeriFone senior vice president and general manager, Software Solutions.

VeriFone payment processing software solutions enable businesses of all types and size to quickly and securely process electronic payments including credit, debit, loyalty/stored value gift, purchasing cards, checks, EBT and more. PAYware Transact can be easily integrated into a wide variety of POS systems, databases, and corporate financial environments, and it is certified by all major processors.

Source: Company press release.

Chat In the Middle Online Banking Threat

Here's a press release from Beacon Software celebrating their new "Live Chat" for Online Banking. Problem is, "Chat-in-the-Middle attacks are the newest form of online banking Trojans. Here's an excerpt from their press release along with some information from a new RSA Report highlighting Chat-in-the-Middle attacks,

Live Chat Added to Online Banking Platform for Community Financial Institutions

Thu Oct 15, 2009 - PIN Payments News Blog - MARIETTA, Ga.--(Business Wire)-- Beacon Software, a Georgia company specializing in online banking services and software targeted to community financial institutions, announced today that it has added a comprehensive Live Chat capability to their popular Compass Internet Banking Platform. "While most of the very largest U.S. banks currently offer Live Chat, it is typically not available in the online offerings used by the smaller, tier three community banks and credit unions," said Beacon Software president Jack Fullen. "This new functionality gives users and visitors to our customers` banking websites an opportunity to receive immediate online assistance to explain product options and answer support related questions, precisely when they need it

Editor's Note: Oops! RSA report highlights new "Chat-in-the-Middle" threat

The latest RSA AFCC report highlights a new, unique phishing attack called "Chat-in-the-Middle". It is targeted against online banking customers and it is executed through routine means but then presents a more advanced layer of perpetrating online fraud. The phishing attack may dupe bank customers into entering their usernames and passwords into an ordinary phishing site but the addition of a bogus live chat support window can obtain even more credentials via a live chat session initiated by fraudsters.

During the live chat session, the fraudster behind the attack presents himself as a representative of the bank's fraud department and attempts to dupe customers who are online into divulging sensitive information - such as answers to secret questions that are used for online customer authentication. This attack is currently targeting a single US-based financial institution.

Todo's Brings Trust and Security to Georgian Banks

Two Georgian banks - TBC Bank and BTA Bank - have selected Todos to provide eBanking authentication devices and back-end servers to improve security, usability and trust for their online customers.

GÖTEBORG, SWEDEN AND T'BILISI, GEORGIA - OCTOBER 13, 2009 - Todos continues its mission to make online banking more secure and more trustworthy with two sales in Georgia. Both banks selected Todos because it offered high levels of security, flexibility, future-proofing and lower costs with the benefit of local support.

Georgia is a country on the Eastern shore of the Black Sea. It has a population of 4.6m with an economy that has been growing fast and liberalising quickly. In 2007, GDP grew by 12 percent and the World Bank called the country the "number one economic reformer in the world." Services now account for 65 percent of economic output.

TBC Bank (www.tbcbank.ge) had been using a competitor's system but swapped to Todos, buying the company's ezToken device. The token's lower total cost of ownership was a significant factor. Not only was it cheaper to buy in the first place but the longer battery life means fewer replacements over time.

BTA Bank (www.bta.ge) also chose the ezToken over rival devices for most users but also selected the enhanced ezToken PIN. The Todos VAS Server's ability to support different devices and multiple devices per user means that BTA can deploy both and give its customers an upgrade path if they require additional security.

In both cases, the presence of local partner NGT to provide support, consulting and integration was important.

"We're very excited about these deals and what they represent. Smaller countries and growing banks have a huge opportunity in today's digital market," says Bo Emanuelsson, Sales Director EMEA at Todos AB. "Quite simply, they can move faster than their larger competitors. Here we see two important banks in a fast-moving national economy choose trust, security and progress."

###

Todos AB helps banks and other businesses create trusted, secure relationships with their customers online. Founded in 1987, Todos designs, develops, delivers and supports security solutions for eBanking and eCommerce strong authentication. We have delivered over 20m products to 100+ financial institutions in more than 30 countries. When trust matters, trust Todos. For more information visit www.todos.se.

For further information please contact:

John Ahlberg, Communications Director

Todos AB

john.ahlberg@todos.seThis e-mail address is being protected from spam bots, you need JavaScript enabled to view it
 
www.todos.se
+46 31 775 88 00