ESG and cryptocurrency figure to be key topics in 2022, but we’re also keeping an eye on President Biden’s anti-corruption efforts, details on Amazon’s record GDPR fine, the status of Facebook’s first CCO, and more.
Cybersecurity
Posted inRisk Management
SEC 2022 rulemaking preview: Clarity to come on ESG, crypto?
In his first year leading the Securities and Exchange Commission, Gary Gensler has tipped his hand regarding stricter oversight of companies’ environmental disclosures and the cryptocurrency industry. Year 2 will likely see words turn to actions.
Posted inInternal Controls
NYDFS guidance addresses common MFA problems—and how to fix them
The New York State Department of Financial Services outlined common vulnerabilities in multi-factor authentication and how to address them from a cybersecurity risk management standpoint.
Posted inRisk Management
OCC report: Cyberattacks, pandemic among top bank risk areas in 2021
Banks and financial institutions regulated by the OCC faced elevated risks in 2021 from cyberattacks launched on them and their third parties, as well as compliance risks related to the pandemic, according to the agency’s latest report.
Posted inEthics & Culture
Five compliance triumphs from 2021
A key CCO appointment, a company committed to transparency, and a bank that spent big on improving its AML controls highlight CW’s annual list of laudable ethics and compliance moments.
Posted inRisk Management
GoDaddy data breach affects 1.2M customers
Web hosting company GoDaddy announced an unauthorized third party obtained the email addresses and customer numbers of up to 1.2 million users after improperly accessing its Managed WordPress hosting environment.
Posted inRisk Management
Rule requires banks report significant ‘computer-security incidents’ within 36 hours
Federal banking regulators issued a rule that requires financial institutions to notify their regulator within 36 hours of a “computer-security incident” that materially affects their operation, ability to deliver services, or the stability of the financial sector.
Posted inRisk Management
The year of ransomware: How companies are boosting cybersecurity controls
High-profile ransomware events over the last year have prompted businesses to beef up cyber defenses through new investments, increased training, and more, according to our “Inside the Mind of the CCO” survey.
Posted inRegulatory Enforcement
Treasury ransomware response: More sanctions, updated FinCEN guidance
The U.S. Treasury continued its crackdown on facilitators of ransomware payments, sanctioning a second virtual currency exchange and its affiliates and updating FinCEN guidance to help make financial institutions more aware of related red flags.
Posted inRisk Management
Robinhood data breach impacts seven million customers
Robinhood announced a hacker obtained the email addresses or names of approximately seven million of its customers. Approximately 310 customers had their personal information exposed as part of the same breach.
