The U.S. Department of the Treasury announced “robust actions” to counter ransomware, including blocking the assets of a Russian virtual currency exchange that has facilitated payments for at least eight ransomware variants.
Cybersecurity
Posted inRegulatory Enforcement
SEC sanctions 8 over email breaches
The Securities and Exchange Commission penalized eight firms across three separate actions for breaches of employee email accounts that exposed the personal information of thousands of customers in each case.
Posted inRisk Management
Banking guidance: Six key areas of FinTech due diligence
Three federal banking regulators have released guidance offering tips and suggestions to community banks for conducting due diligence on potential FinTech partners.
Posted inData Privacy
CEO: T-Mobile ‘humbled’ by data breach, taking steps to prevent future attacks
T-Mobile CEO Mike Sievert lamented the recent breach of company servers that led to a hacker stealing the personal information of nearly 55 million customers, but said the company is “fully committed to take our security efforts to the next level.”
Posted inData Privacy
T-Mobile ups compromised customer account total to 55M
A “highly sophisticated” cyber-attack illegally accessed nearly 55 million customer records of mobile phone carrier T-Mobile, the largest such attack against the company that has been hit at least four previous times since 2018.
Posted inData Privacy
T-Mobile the least surprising data breach of 2021
Cyber-attacks catch most companies and their customers off guard, but T-Mobile, the victim of at least five data breaches since 2018, had many red flags indicating its vulnerability ahead of its latest incident.
Posted inRegulatory Enforcement
Pearson fined $1M for misleading data breach disclosures
U.K.-based education company Pearson has agreed to pay $1 million as part of a settlement with the Securities and Exchange Commission for misleading investors regarding a 2018 data breach.
Posted inRegulatory Enforcement
FINRA notice outlines key areas for supervising third parties
The Financial Industry Regulatory Authority issued a notice on compliance deficiencies arising from firms’ relationships with vendors culled from examination findings.
Posted inInternal Controls
What factors are driving change in your corporate investigations process?
A recent survey from Compliance Week and OpenText reveals while investigations and data volumes are on the rise, machine learning combined with external expertise may give companies the upper hand in accelerating response and results.
Posted inEthics & Culture
Q&A: How Kaiser Permanente has handled change brought by COVID-19
Vanessa Benavides, chief compliance and privacy officer and senior VP at Kaiser Permanente, shares how the company adjusted its policies and procedures because of COVID-19 and the lessons she learned along the way.
