The upcoming PSD3/PSR1 regulation introduces stricter requirements for Strong Customer Authentication (SCA). One of the most notable changes is the requirement to provide authentication methods that do not depend on smartphone possession.

The Central Bank of the UAE has made it clear: by 2026, financial institutions must eliminate SMS one-time passwords (OTPs). This regulation is reshaping the authentication landscape for banks across the region, and the time to prepare is now.

While “passwordless” is the keyword of the current era, relying solely on a particular approach to authentication without passwords, such as camera-based facial biometrics, might be short-sighted, result in missed business opportunities, and expose an organization to unnecessary risk.

In July 2025, the Bank for International Settlements (BIS) published Paper number 158, highlighting the urgency of preparing for the quantum threat to maintain the security and credibility of the global financial system.

The Bangko Sentral ng Pilipinas (BSP) has issued new rules under the Anti-Financial Account Scamming Act (AFASA), requiring banks and financial institutions to overhaul their fraud management and authentication systems by June 2026.

The Central Bank of the UAE (CBUAE) is preparing to phase out SMS-based One-Time Passwords (OTPs) in favor of stronger, more future-ready authentication methods.

The use of mobile platforms for banking services has skyrocketed in the LATAM region. Currently, 62% of all transactions in this region are performed or authorized on mobile phones.

Latin America is experiencing a robust shift toward mobile-first banking and payments — fueled by high smartphone adoption, regulatory support, and fintech innovation. 62% of Latin Americans use mobile wallets or payment apps for routine transactions. For example, Colombia is broadly in line with the regional trends, and new services like Nequi digital wallet captured 21 million users in just a couple of years.

As the world prepares for the quantum computing era, fears of massive slowdowns and performance bottlenecks in authentication systems are common — and understandable. After all, post-quantum cryptographic (PQC) algorithms use significantly larger keys and are more complex than their classical predecessors.

Wultra had the unique opportunity to participate in a week-long official visit to Japan, led by His Excellency Petr Pavel, the President of the Czech Republic. Our CEO and founder, Petr Dvorak, joined a select group of Czech business leaders from July 21–27, 2025, to explore new economic and technological partnerships between the two countries.