Daily Dash: Lloyd's Warns Major Cyberattack Could Cost Global Economy $3.5trn

• Lloyd’s Warns Major Cyberattack Could Cost Global Economy $3.5trn
• CPMI Issues New Report On Interlinking Of Faster Payment Systems
• US Treasury Official Sings Praise Of India's UPI
• No 'Compelling Argument' For Retail CBDC, Says Fed Governor
• Harmonised ISO 20022 Data Requirements For Cross-Border Payments Confirmed
• 'Nearly Unavoidable' That AI Triggers A Financial Crisis, Warns SEC Chief
• Compliance Tops UK Whistleblowing Stats 
• Visa, Mastercard And Interac Designated As Prominent Payment Systems In Canada
• Booking.Com Facing Class Action Over Failure To Pay Hoteliers
• Air Europa Customers Urged To Cancel Credit Cards Following Data Breach
• Reserve Bank Of India Slaps Paytm With $0.6m Fine For Lax AML Controls 
• China Launches CBDC Industrial Park

Lloyd’s Warns Major Cyberattack Could Cost Global Economy $3.5trn

A new report by Lloyd’s of London insurance firm has found that a cyberattack on a “major financial services payment system” could result in potential losses of $3.5trn for the global economy.

This figure was arrived at through a systemic risk scenario that models the global economic impact of a “hypothetical but plausible” cyberattack.

The three countries that would experience the highest five-year economic loss from the scenario were the US ($1.1trn), China ($470bn) and Japan ($200bn).

Lloyd’s added that the recovery time for individual countries or regions would depend on the structure of their economy, exposure levels and resilience — which financial service providers should continue to invest in.

“The risk scenario released today highlights the important role of insurance in supporting and protecting customers against the potential threat cyber poses to businesses and society," said Bruce Carnegie-Brown, chairman of Lloyd’s.

“The global interconnectedness of cyber means it is too substantial a risk for one sector to face alone.”

CPMI Issues New Report On Interlinking Of Faster Payment Systems

The Bank for International Settlements (BIS) Committee on Payments and Market Infrastructures (CPMI) has published a new report on governance and oversight considerations for the interlinking of faster payment systems.

The report, issued as part of the G20’s cross-border payments programme, describes ten initial considerations that were identified during CPMI workshops with global stakeholders.

Combined with additional insights that will be gained from further engagement with stakeholders and written feedback, the CPMI will later submit a final report to the G20 on governance and oversight of faster payments interlinking arrangements.

The G20 has identified governance and oversight of cross-border payment linkages as a priority in helping to achieve its 2027 targets for cost, speed, access and transparency.

US Treasury Official Sings Praise Of India's UPI

A US Treasury official has highlighted India’s “outstanding” contribution to the advancement of bilateral instant payments linkages for cross-border payments.

Jay Shambaugh, under secretary for international affairs at the Treasury, made the comments during a speech at Harvard Law School this week.

“Some jurisdictions with strong bilateral economic relationships are going further and interlinking their fast payment systems,” he said.

“India stands out as a jurisdiction advancing bilateral links between its Unified Payments Interface system (UPI) and those of other countries, including Singapore and the United Arab Emirates.”

He added that several ASEAN countries — namely Thailand, Malaysia, Singapore, Indonesia and the Philippines — have shown even “greater ambition” in aiming to link up their instant payment systems multilaterally.

No 'Compelling Argument' For Retail CBDC, Says Fed Governor

A member of the board of governors at the US Federal Reserve has said that retail central bank digital currency (CBDC) is a solution looking for a problem to solve.

Speaking at an event at Harvard Law School, governor Michelle Bowman said we have seen a range of arguments in the public debate about issuing a CBDC. 

These include addressing frictions within the payment system, promoting financial inclusion and providing the public with access to safe central bank money.

“These are all important issues,” she said. “But I have yet to see a compelling argument that a US CBDC could solve any of these problems more effectively or efficiently, or with fewer downside risks for consumers, than alternatives.”

Bowman went on to say that the US has a “safe and efficient” payment system that is already being improved by innovations such as FedNow.

“The potential uses of a US CBDC remain unclear and, at the same time, could introduce significant risks,” she said.

Harmonised ISO 20022 Data Requirements For Cross-Border Payments Confirmed

The Bank for International Settlements (BIS) Committee on Payments and Market Infrastructures (CPMI) has published its final report on ISO 20022 harmonised data requirements in cross-border payments.

The BIS said the 12 data requirements are an “important step” towards further harmonising the use of ISO 20022 and helping to achieve the G20’s cross-border payment targets.

The requirements establish a consistent minimum set of data to be used in a cross-border payment transaction from end to end, and reflect “intensive” technical discussions with more than 50 stakeholders.

“Realisation of the benefits of adopting these requirements will depend crucially on their widespread uptake,” said the BIS.

“As such, market participants are encouraged to begin preparations to align with the harmonised ISO 20022 data requirements in earnest and by end-2027 at the latest.”

'Nearly Unavoidable' That AI Triggers A Financial Crisis, Warns SEC Chief

Unless regulators step in, artificial intelligence (AI) could have disastrous effects on the financial services sector, the head of a US regulator has said. 

In an interview with the FT, Gary Gensler, head of the Securities and Exchange Commission (SEC), said that regulating AI is a “hard challenge”. 

This is because a variety of financial institutions may all be using the same base models, he said, and these models could be developed by tech companies that are not regulated by financial regulators.

"If everybody’s relying on a base model and the base model is sitting not at the broker dealer, but it’s sitting at one of the big tech companies,” Gensler said, this could produce herd-like behaviour in the markets.

Compliance Tops UK Whistleblowing Stats 

Compliance was the number-one topic featured in whistleblowing allegations made to the UK's Financial Conduct Authority (FCA) during Q2 of this year, new figures reveal. 

A total of 46 whistleblowing complaints were made to the regulator about compliance issues, while 33 complaints were made about workplace culture and 27 about treating customers fairly.

Topics such as fraud and consumer credit also featured in the top ten topics, with 14 and seven complaints respectively. 

Between April and June, the FCA received 300 new whistleblowing reports.

For the same period in 2022, the FCA received 243 reports, and in January to March this year, the regulator received 280 new whistleblowing reports.

Visa, Mastercard And Interac Designated As Prominent Payment Systems In Canada

The Bank of Canada has designated Visa’s VisaNet, Mastercard’s Global Clearing Management System and Single Message System, and Interac’s Inter-Member Network as prominent payment systems, effective October 16.

The designation means that the card networks have been brought under the central bank’s formal oversight and must comply with the bank's risk management standards, including operational resilience requirements.

The announcement notes that credit card transactions on the Visa and Mastercard networks and debit card transactions on Interac together make up almost C$1trn in payments and account for the majority of point-of-sale transactions.

“Given the significant value and volume of daily transactions and how central they are to the retail payments landscape, a material disruption or failure could negatively impact economic activity,” the central bank said. 

“It could also lead to a loss of confidence in the overall payments system.”

Booking.Com Facing Class Action Over Failure To Pay Hoteliers

Booking.com, the world’s largest hotel bookings platform, could soon be facing a class action lawsuit due to failures to distribute payouts to hoteliers.

According to media reports, hoteliers in Europe and Japan have been affected, with some having to wait weeks or even months to receive their funds from the site.

More than 40 hoteliers, some representing large hotel chains, have contacted Japanese lawyer Hirotaro Kato, who plans to file a class action lawsuit and sue for damages later this week.

Booking.com responded in a statement saying that the issue was caused by a failed update to Booking.com’s internal systems. 

“Most payments have resumed but due to unforeseen technical difficulties, there are still delays with some of our partners,” it said. “We are urgently working to resolve these issues.”

Air Europa Customers Urged To Cancel Credit Cards Following Data Breach

Spanish airline Air Europa has urged customers to cancel their cards following a major breach of credit card data from a company database.

In an email sent to customers, the airline said that card numbers, expiry dates and CVV numbers that it had on file had all been compromised.

It added that there is “no evidence” that the data was breached for the purposes of initiating fraudulent transactions, but advised customers to cancel their cards out of caution.

However, some customers have claimed on social media that they have identified fraudulent activity on their cards since the breach.

In 2018, Air Europa suffered a similar data breach following a cyberattack, and was later fined €600,000 due to its failure to notify almost 500,000 affected customers.

Reserve Bank Of India Slaps Paytm With $0.6m Fine For Lax AML Controls 

The Reserve Bank of India (RBI) has imposed a fine of ₹53.9m ($645,000) on Paytm for non-compliance with certain provisions of India’s know your customer (KYC) regulations.

According to the notice, Paytm failed to identify beneficial owners of certain customers, and did not monitor payout transactions or carry out risk profiling of entities that used its payout services.

Paytm also breached the regulatory ceiling of end-of-the-day balance in certain customer advance accounts and it reported a cybersecurity incident with delay.

The move follows previous encounters of Paytm with the Indian central bank. Last March, the RBI directed Paytm to stop onboarding new customers due to “certain material supervisory concerns” until ordered otherwise.

China Launches CBDC Industrial Park

China has opened an industrial park to foster innovation using the country’s central bank digital currency (CBDC), the digital yuan, according to media reports.

Through this new venture, the government will incentivise enterprises to develop payment solutions, smart contracts, hard wallets and promotions for the digital yuan.

The industrial park is located in the Luohu district of Shenzhen, adjacent to Hong Kong, and will open with ten residents.

These residents include payment card companies Hengbao and Wuhan Tianyu Information, as well as the payment processor Lakala Payment.

Prospective residents are being enticed with perks to settle there. Commercial banks are reportedly being offered up to RMB20m ($2.7m) to settle there, and start-ups are being offered up to RMB50m ($6.9m).