News & Analysis as of

Cybersecurity Enforcement Actions Financial Institutions

Follow this channel for advisories on one of the biggest threats to businesses today. Read a morning brief of fresh guidance and commentary by leading lawyers on security, privacy, risk... more +
Follow this channel for advisories on one of the biggest threats to businesses today. Read a morning brief of fresh guidance and commentary by leading lawyers on security, privacy, risk management, global regulations, data protection, leaks, hacking, cyber insurance, compliance, HIPAA, and every other aspect of cybersecurity of import to corporate readers right now.   less -
Dacheng

China Monthly Data Protection Update: May 2025

Dacheng on

This monthly report outlines key developments in China’s data protection sector for May. The following events merit special attention...more

Ropes & Gray LLP

SEC Speaks 2025: Key Takeaways from Division of Enforcement Panels

Ropes & Gray LLP on

The SEC’s Division of Enforcement intends to remain a “cop on the beat,” and will refocus on traditional core enforcement areas, such as insider trading, accounting and disclosure fraud, market manipulation, and breaches of...more

Eversheds Sutherland (US) LLP

Preparing for Regulation S-P and takeaways from the SEC’s session at the Incident Response Forum Masterclass 2025

Eversheds Sutherland (US) LLP on

On April 22, 2025, Laura D’Allaird, Chief of the SEC’s Cyber and Emerging Technologies Unit (CETU), participated in the Incident Response Forum Masterclass 2025 (Incident Response Masterclass). In the session, titled “SEC...more

Skadden, Arps, Slate, Meagher & Flom LLP

Fintech Focus Podcast | Responding to a Cyber Attack – Key Considerations for GCs and CISOs

Skadden, Arps, Slate, Meagher & Flom LLP on

As companies shift their thinking from “if” a cyberattack will happen to “when” an attack hits, the key differentiator in how a company emerges from an attack is often dictated by preparation and strategic planning in order...more

Orrick, Herrington & Sutcliffe LLP

U.S. SDNY retains restrictions on DOGE’s access to Treasury payment systems

Orrick, Herrington & Sutcliffe LLP on

Recently, the U.S. SDNY left in place a temporary restraining order that was imposed on DOGE from accessing Treasury payment systems. As previously covered by InfoBytes, the U.S. SDNY blocked DOGE temporarily from accessing...more

Ropes & Gray LLP

2025 Market Outlook: Government Regulators Prioritize Data Protection and Cybersecurity

Ropes & Gray LLP on

In 2024, financial sector regulators prioritized cybersecurity issues impacting financial institutions and the public. Key U.S. federal agencies—including the Securities and Exchange Commission, Federal Trade Commission, and...more

Orrick, Herrington & Sutcliffe LLP

California DFPI mandates cybersecurity overhaul in credit union consent order

Orrick, Herrington & Sutcliffe LLP on

On February 4, the California DFPI announced a consent order issued against a credit union (respondent) following a significant cybersecurity breach. This breach, a ransomware attack, allegedly led to the shutdown of various...more

Morrison & Foerster LLP

SEC Caps 2024 with Another Cyber Enforcement Action

Morrison & Foerster LLP on

The SEC continues to leave its mark as a federal cybersecurity enforcer and closed out the year by charging another company with making misleading statements about a cybersecurity attack and failing to maintain cyber-related...more

Goodwin

51 State Financial Regulatory Agencies Enter Settlement and Consent Order with Nonbank Mortgage Servicing Companies

Goodwin on

​​​​​​​​On January 9, 2025, 51 State Financial Regulatory Agencies (the “Agencies”) announced a coordinated consent order and settlement agreement with nonbank mor​tgage servicing companies (the “Companies”). ...more

Sheppard Mullin Richter & Hampton LLP

SEC Continues its Cybersecurity Focus, Settles with Company over Lax Security Measures

Sheppard Mullin Richter & Hampton LLP on

The SEC recently issued an order and settlement against a company from a pair of cyberattacks in which millions of dollars of client funds were stolen. While the company was able to recover a portion of the funds and...more

Baker Donelson

[Webinar] New Privacy and Cybersecurity Regulations: What Financial Institutions Need to Know to Stay Compliant - June 13th, 10:00...

Baker Donelson on

The financial services industry has seen a litany of new data privacy and cybersecurity challenges through the first half of 2024. Financial institutions are facing unprecedented compliance hurdles resulting from the...more

American Conference Institute (ACI)

[Event] 8th Forum on FinTech & Emerging Payment Systems - April 9th - 10th, New York, NY

American Conference Institute (ACI) on

ACI’s 8th Annual Legal, Regulatory, and Compliance Forum on Fintech & Emerging Payment Systems will provide in-depth guidance on the latest regulatory developments at the Federal and State Level that you need to be aware of....more

Jenner & Block

Client Alert: How Regulatory Events of 2023 Should Guide Financial Institutions' New Year's Resolutions for 2024

Jenner & Block on

As consumer-facing financial institutions of all types—from well-established banks to newly-launched fintechs—set their 2024 regulatory compliance goals, they may wonder if their New Year’s resolutions align with those that...more

Jenner & Block

Client Alert: SEC’s Approach to Enforcement After Cyber Incidents: Key Takeaways for Public Companies from a Recent Speech

Jenner & Block on

Last month, Gurbir Grewal, the Director of the SEC’s Division of Enforcement, spoke at the Financial Times Cyber Resilience Summit. During the remarks, he outlined the importance of cybersecurity and signaled that the SEC is...more

Sheppard Mullin Richter & Hampton LLP

New York Settles with Crypto Company, Proposes Crypto Legislation

Sheppard Mullin Richter & Hampton LLP on

On May 1, NYDFS settled with a cryptocurrency trading platform over the company’s cybersecurity deficiencies, resulting in a consent order and $1.2 million fine for the crypto company. NYDFS alleged “multiple deficiencies in...more

Holland & Knight LLP

NYDFS Proposes Amendments to Cybersecurity Regulation

Holland & Knight LLP on

The New York Department of Financial Services (NYDFS) on Nov. 9, 2022, released Proposed Amendments to its Cybersecurity Regulation. The NYDFS Cybersecurity Regulation was one of the first laws requiring companies to comply...more

Nutter McClennen & Fish LLP

Nutter Bank Report: September 2022

Nutter McClennen & Fish LLP on

Headlines: ..OCC Publishes Security Standards for Video Teleconferencing With Agency Staff ..CFPB Imposes Civil Penalty and Customer Refunds for Authorized-Positive Overdraft Fees ..Treasury Department Recommends...more

Davis Wright Tremaine LLP

CFPB Takes on Failure to Adopt "Common Data Security Practices"

Davis Wright Tremaine LLP on

A reminder to financial services firms: the Consumer Financial Protection Bureau (CFPB) is also a data security regulator....more

Faegre Drinker Biddle & Reath LLP

New York Department of Financial Services Announces $5 Million Penalty in Most Recent Cybersecurity Enforcement Action

Faegre Drinker Biddle & Reath LLP on

On June 23, 2022, the New York State Department of Financial Services (NYDFS) announced the entry of a Consent Order in connection with its most recent cybersecurity enforcement action, which included a $5 million monetary...more

Bracewell LLP

More Wiggle Room for White Hat Hackers?

Bracewell LLP on

On May 19, 2022, the Department of Justice (“DOJ”) announced significant clarifications to its policy on charging Computer Fraud and Abuse Act (“CFAA”) violations that give some comfort to cyber security consultants who...more

BCLP

Banking Bites - May 2022 #2

BCLP on

Privy Council rules against extension of the Quincecare duty - Does a bank owe a duty of care to a person who is the beneficial owner of funds held in the account of a customer of the bank and who has been defrauded by...more

Skadden, Arps, Slate, Meagher & Flom LLP

New Rules, Enforcement Actions Make Financial Institutions’ Planning for Cyberattacks Even More Imperative

Skadden, Arps, Slate, Meagher & Flom LLP on

Takeaways - Implementing strong cybersecurity practices helps companies prepare for future regulatory requirements. Incident-response plans must enable financial institutions to give timely and accurate notifications...more

Steptoe & Johnson PLLC

Computer-Security Incident Rule Creates New Notification Requirements for Banking Organizations and Bank Service Providers

Steptoe & Johnson PLLC on

On November 18, 2021, the Federal Deposit Insurance Corporation (FDIC), the Board of Governors of the Federal Reserve System (FRB), and the Office of the Comptroller of the Currency (OCC) issued a joint final rule (the...more

Jones Day

Australian Financial Services Regulatory Update - December 2021

Jones Day on

This edition of the Update covers: KEY LEGAL AND REGULATORY DEVELOPMENTS Regulatory Priorities ASIC and APRA Release Their Corporate Plans for 2021-25 On 26 August 2021, the Australian Securities & Investments Commission...more

BCLP

NYDFS Imposes Heavy Fine and Adopts Expansive View of Multi-Factor Authentication Requirements Under Cybersecurity Regulations:...

BCLP on

The New York Department of Financial Services (NYDFS) recently announced the resolution, through Consent Order, of its third enforcement action against entities subject to the agency’s Cybersecurity Regulations (“Cyber...more

67 Results
 / 
View per page
Page: of 3
Next »

"My best business intelligence, in one easy email…"

Your first step to building a free, personalized, morning email brief covering pertinent authors and topics on JD Supra:
Sign up Log in
*By using the service, you signify your acceptance of JD Supra's Privacy Policy.
- hide
- hide