Episode 335 -- The New DOJ Whistleblower Program
Navigating Emerging Privacy Issues in Financial Services — The Consumer Finance Podcast
Implications of the SEC Cybersecurity Disclosure Rule
Corruption, Crime and Compliance: SEC Suffers Dismissal of Claims in Solarwinds Securities Fraud Case
Episode 334 -- District Court Dismisses Bulk of SEC Claims Against Solarwinds
The Woody Report: The Solar Winds Dismissal
In That Case: Securities and Exchange Commission v. Jarkesy
Corruption, Crime and Compliance: Deep Dive into The SEC’s Settlement with R&R Donnelly on Cybersecurity Controls
Episode 332 -- Deep Dive into SEC’s Internal Controls and Cybersecurity Settlement with R&R Donnelly
The Justice Insiders Podcast: Jarkesy’s Implications for the Administrative State
DE Under 3: OFCCP Must Shut Down its Administrative Court Prosecutions as a Result of SCOTUS’ SEC Jury Trial Case Decision
Dogecoin’s Day in Court
Unpacking the Lummis-Gillibrand Payment Stablecoin Act: Implications for the Digital Asset Industry — The Crypto Exchange Podcast
Podcast: Is Cryptocurrency a Security (like an orange grove)?
Navigating the Regulatory Waters: The SEC's Wells Notice to Uniswap and its Impact on DeFi — The Crypto Exchange Podcast
Will Resiliency Carry the Digital Asset Sector Through 2024: Federal Legislative Developments and OFAC Consent Orders — The Crypto Exchange Podcast
Compliance into the Weeds: The WACKO Enforcement Action Involving BF Borgers
Meeting the Proposed SEC Climate Disclosure Requirements
Understanding the Whistleblower Pilot Program in the Southern District of New York
2 Gurus Talk Compliance: Episode 26 – The Compliance Week Wrap Up Edition
The SEC Division of Examinations recently published a risk alert summarizing observations from exams of registered investment advisers and broker-dealers related to compliance with Reg. S-ID, which is generally designed to...more
On December 5, 2022, the Division of Examinations (EXAMS) of the Securities and Exchange Commission (SEC) issued a Risk Alert regarding recently observed compliance issues with respect to Regulation S-ID. Under Regulation...more
The Federal Trade Commission (“FTC”) announced on Monday that it is settling a case against Drizly and its CEO stemming from a 2020 data breach that impacted roughly 2.5 million consumers. The proposed order not only...more
In order to provide an overview for busy in-house counsel and compliance professionals, we summarize below some of the most important U.S. Securities and Exchange Commission (SEC) enforcement developments from the past month,...more
On July 27, 2022, the SEC charged three broker dealers for violations of the Identity Theft Red Flags Rule (also known as “Regulation S-ID”), with penalties ranging from $425,000 to $1,200,000. The regulation requires that...more
On July 27, 2022, the Securities and Exchange Commission (SEC) separately settled three enforcement actions with broker-dealers and investment advisers for alleged deficiencies relating to the prevention of customer identity...more
On February 9, the SEC proposed new cybersecurity risk management regulations for investment advisers, registered investment companies (funds), and business development companies....more
Key Takeaways: ..According to FINRA, the number of reported instances involving broker-dealer fraudulent account takeovers (ATO) and related theft is on the rise. ..As set forth in recently released FINRA Regulatory...more
Judge Rules Against Seizure of $330 Million Allegedly Connected to 1MDB Fraud Scheme - On March 9, California District Court Judge Dale S. Fischer ruled that the government could not seize about $330 million in assets...more
On September 15, 2020, the SEC’s Office of Compliance Inspections and Examinations (OCIE) issued a Risk Alert highlighting the recent uptick in “credential stuffing” cyber-attacks against SEC-registered investment advisors...more
The Editors' Note - Welcome to the second issue of Decoded, Spilman's e-newsletter focusing on technology law, including data security, privacy standards, financing technologies, and digital-based means of conducting...more
• On May 23, 2019, the Securities and Exchange Commission’s (SEC) Office of Compliance Inspections and Examinations (OCIE) issued a Risk Alert describing its observations in past examinations of weaknesses and best practices...more
On May 23, 2019, the United States Securities and Exchange Commission (“SEC”)’s Office of Compliance Inspections and Examinations (“OCIE”) issued a Risk Alert entitled “Safeguarding Customer Records and Information in Network...more
On September 26, 2018, the Securities and Exchange Commission announced that a settlement was reached in its first enforcement action involving the Identity Theft Red Flags Rule (the “Red Flags Rule”). The Red Flags Rule was...more
On September 26, 2018, the Securities and Exchange Commission (SEC) settled claims that Voya Financial Advisors, Inc. (VFA) failed to adequately protect customer information following a six-day cyberattack in 2016....more
The Securities and Exchange Commission recently settled with Voya Financial Advisors, Inc. for alleged violation of Regulation S-ID (otherwise known as the Identity Theft Red Flags Rule) and Regulation S-P (otherwise known as...more
On September 26, in the Securities and Exchange Commission’s (“SEC”) first enforcement action for violations of Regulation S-ID (the “Identity Theft Red Flags Rule”), Voya Financial Advisors Inc. (“VFA”), an SEC-registered...more
On September 26, the Securities and Exchange Commission (SEC) charged a dually registered broker-dealer and investment adviser (the "Registrant") with deficient cybersecurity procedures. This is the first SEC action alleging...more
Google has announced plans to shutter Google Plus, its “floundering answer to Facebook,” following the discovery of a security vulnerability that “exposed the private data of up to 500,000 users of the service.” Google...more
Adding insult to injury, the Securities and Exchange Commission (SEC) fined Voya Financial Advisors Inc. (VFA) $1 million and ordered a comprehensive two-year review by a compliance consultant, following a cyber-attack on...more
On September 26, 2018, the SEC brought its first ever enforcement action for violations of Regulation S-ID (the “Identity Theft Red Flags Rule”), 17 C.F.R. § 248.201, in addition to violations of Regulation S-P, 17 C.F.R....more
In this month's edition of our Privacy & Cybersecurity Update, we examine the Identity Theft Research Center's findings on data breaches in 2017, the U.S. Supreme Court's denial of certiorari that leaves in place the circuit...more
On September 7, 2017, Equifax, one of the country’s three primary credit reporting bureaus, announced it had suffered a major cybersecurity breach that could potentially affect half of the U.S. population. According to the...more
In an environment where even the largest and most powerful corporations have fallen victim to data breaches, it can be challenging to fathom how to protect against the sophisticated and ever-evolving threat of cyber attacks....more
Highlights Areas of High Risk and Examination Priorities for Financial Industry Firms - On September 15, the U.S. Securities and Exchange Commission’s (SEC’s) Office of Compliance, Inspections and Examinations (OCIE),...more