The Securities and Exchange Commission’s Office of Compliance Inspections and Examinations (OCIE) has issued a risk advisory warning financial firms of recent reports indicating several threat actors are perpetrating phishing campaigns meant to gain access to internal resources and deploy ransomware (malware that gains access to systems while shutting out owners until a ransom is paid).

The agency says it has seen an increased level of sophistication in these attacks against SEC registrants, including broker-dealers, investment advisers, and investment companies, and it advises continued monitoring of cyber-security alerts from the Department of Homeland Security Cybersecurity and Infrastructure Security Agency. 

Click here for more information from the OCIE on how to enhance systems to thwart such attacks, or read more from Compliance Week below.