Perimeter

12/18/2018
10:00 AM
Dark Reading
Dark Reading
Products and Releases
50%
50%

Don Cardinal Named Head of Financial Data Exchange

Digital banking and cybersecurity specialist will lead industry group focused on simplifying and standardizing financial data-sharing

RESTON, Va. – December 13, 2018 – The Financial Data Exchange (FDX) today announced it has appointed Don Cardinal as its managing director. In this new role, Cardinal will direct the daily operations of FDX and engage with the broader financial services and fintech communities to fulfill the organization’s mission to develop and implement a financial industry standard for secure data sharing.

"I am excited by the opportunity to further empower consumers by putting more control in their hands over when or how their personal or financial data is shared,” said Cardinal. “Financial data sharing has been an industry challenge, but I’m confident that the depth and breadth of expertise among the FDX board and member companies will help us succeed. I look forward to the work ahead, as we set the standard for secure data sharing throughout the financial industry."

Cardinal will be responsible for charting the roadmap for FDX’s Durable Data API (DDA) and technical frameworks, while also expanding FDX membership among a growing list of financial institutions, aggregators, fintechs and industry groups.

“Don’s knowledge of digital banking, financial cybersecurity and experience with the challenges of consumer-permissioned data sharing make him an ideal choice to lead our collective effort to further secure and enhance the exchange of data across the financial industry,” said Lila Fakhraie, co-chair of FDX and manager of the Digital Banking API team, including the data-sharing program, at Wells Fargo. “We look forward to working with him to develop and promote a financial data sharing standard that benefits both consumers and the financial industry at large.”

Cardinal brings more than 20 years of industry experience to the FDX role, having most recently served as a Senior Vice President in Global Information Security at Bank of America. Cardinal has a deep understanding of key issues surrounding financial data sharing, including security, integration challenges across the ecosystem, and the consumer experience.

Since 2016, he has co-chaired the Financial Services Information Sharing and Analysis Center’s (FS-ISAC) aggregation working group tasked with developing a solution for common challenges around data sharing. This group has been folded into FDX.

“It’s fitting for Don to lead FDX as he has firsthand experience with some of the challenges around financial data sharing and the transformational power unleashed when consumers and organizations harness their data to better achieve their financial goals,” said Steve Smith, co-chair of FDX and CEO of Finicity. “Don brings tremendous leadership and deep expertise to what will be an innovation engine for the industry. The FDX board wholeheartedly welcomes him in his new role.”

FDX comprises 30 members, spanning the full diversity of organizational types and sizes, from banks to fintechs to government-sponsored enterprises and financial industry organizations. As of launch in October 2018, FDX has received more than 40 new membership requests.

For more information and to join FDX, visit www.financialdataexchange.org/

 

About FDX:

The Financial Data Exchange is a non-profit financial industry organization dedicated to promoting and enhancing a common interoperable standard and operating framework for sharing consumer financial data. FDX puts consumers in control of their personal financial data. Open to all financial institutions and fintech companies, FDX facilitates collaboration in the development, growth and industry acceptance of the standard and

security requirements. FDX is a subsidiary of FS-ISAC. For more information and to join, visit www.financialdataexchange.org/

 

Claudine Caruso | Lightspeed PR | M: 631.449.2745 | E: [email protected] | @ClaudCaruso

Comment  | 
Print  | 
More Insights
Comments
Newest First  |  Oldest First  |  Threaded View
Register for Dark Reading Newsletters
White Papers
Video
Cartoon Contest
Current Issue
The Year in Security 2018
This Dark Reading Tech Digest explores the biggest news stories of 2018 that shaped the cybersecurity landscape.
Flash Poll
How Enterprises Are Attacking the Cybersecurity Problem
How Enterprises Are Attacking the Cybersecurity Problem
Data breach fears and the need to comply with regulations such as GDPR are two major drivers increased spending on security products and technologies. But other factors are contributing to the trend as well. Find out more about how enterprises are attacking the cybersecurity problem by reading our report today.
Twitter Feed
Dark Reading - Bug Report
Bug Report
Enterprise Vulnerabilities
From DHS/US-CERT's National Vulnerability Database
CVE-2019-3906
PUBLISHED: 2019-01-18
Premisys Identicard version 3.1.190 contains hardcoded credentials in the WCF service on port 9003. An authenticated remote attacker can use these credentials to access the badge system database and modify its contents.
CVE-2019-3907
PUBLISHED: 2019-01-18
Premisys Identicard version 3.1.190 stores user credentials and other sensitive information with a known weak encryption method (MD5 hash of a salt and password).
CVE-2019-3908
PUBLISHED: 2019-01-18
Premisys Identicard version 3.1.190 stores backup files as encrypted zip files. The password to the zip is hard-coded and unchangeable. An attacker with access to these backups can decrypt them and obtain sensitive data.
CVE-2019-3909
PUBLISHED: 2019-01-18
Premisys Identicard version 3.1.190 database uses default credentials. Users are unable to change the credentials without vendor intervention.
CVE-2019-3910
PUBLISHED: 2019-01-18
Crestron AM-100 before firmware version 1.6.0.2 contains an authentication bypass in the web interface's return.cgi script. Unauthenticated remote users can use the bypass to access some administrator functionality such as configuring update sources and rebooting the device.