Who’s in your wallet? I imagine every compliance person at every bank, large and small, are once again reviewing their policies after the Consumer Financial Protection Bureau (CFPB) ordered Bank of America to pay more than $100 million to customers for systematically double-dipping on fees imposed on customers with insufficient funds in their account, withholding reward bonuses explicitly promised to credit card customers, and misappropriating sensitive personal information to open accounts without customer knowledge or authorization. My Dad would sometimes say, “You can’t tell the players without a scorecard.” (The NY Yankees and Boston Red Sox famously don’t have names on their home jerseys.) A scorecard of sorts is the 2022 HMDA info with 4,460 institutions reporting data including banks, credit unions, and mortgage companies; The number of reporting institutions increased by 2.63 percent from 2021. (Today’s podcast can be found here and this week’s is sponsored by SimpleNexus, the homeownership platform that unites the people, systems, and stages of the mortgage process into one seamless, end-to-end solution that spans engagement, origination, closing, incentive compensation, and business intelligence. Hear a discussion between Robbie and me on historical comparisons for the current environment and what margins we could see for originators moving forward.) Lender and Broker Software, Services, and Products Did you know most burglars enter homes through unlocked doors and windows? Hackers are no different, except instead of looking for easy entry points into your home, hackers search for the weakest link in your systems. As an increasing number of organizations take advantage of API functionality to connect systems, it’s important to be mindful of potential cyberthreats. In fact, every connection and transfer of data using an API can provide a door for hackers trying to steal data or carry out malicious acts. Subba Ayyagari, chief technology officer at Black Knight, has outlined several steps you can take to stand prepared and keep hackers out. Read more in Black Knight’s blog post, “Securing Your APIs From Threats.”