All NYDFS Cybersecurity Regulations articles
-
ArticleNYDFS to firms: apply cybersecurity rules to third-parties
The New York State Department of Financial Services (NYDFS) wants financial firms to step up their game when it comes to third parties and cybersecurity.
-
ArticleNY auto insurers on the hook for $19M for cybersecurity violations
Eight auto insurers failed to meet the requirements of New York’s cybersecurity regulations during widespread online attacks in 2021 and will pay $19 million under consent orders with the New York State Department of Financial Services (NYDFS).
-
News BriefNew cybersecurity requirements fast approaching for New York financial firms
Many financial firms have mere days to notify New York about whether they have complied with the state’s strict cybersecurity regulations, and to gear up for new requirements rolling out May 1 and beyond.
-
News BriefNYDFS expects banks, firms to cut risks posed by AI, according to new guidance
New York financial institutions are expected to address cybersecurity risks posed by artificial intelligence, and new guidance from the New York Department of Financial Services is aimed at helping firms do just that.
-
News BriefNYDFS offers cyber rule compliance template for small businesses
The New York State Department of Financial Services issued guidance for small businesses attempting to comply with its cybersecurity regulations.
-
News BriefGenesis Global Trading fined $8M by NYDFS over AML, cyber lapses
Virtual currency brokerage firm Genesis Global Trading agreed to pay an $8 million penalty levied by the New York State Department of Financial Services for alleged compliance failures that left it vulnerable to illicit activity and cybersecurity threats.
-
News BriefFirst American fined $1M by NYDFS over 2019 cybersecurity breach
First American Title Insurance Company agreed to pay a $1 million fine and implement stronger compliance measures for not securing customers’ personal data, the New York State Department of Financial Services announced.
-
News BriefAmended N.Y. cyber regs up pressure on financial firms to combat risks
New York will require financial institutions to conduct risk assessments more often and improve governance under a broad update to the state’s cybersecurity regulations.
-
News BriefN.Y. cyber strategy puts pressure on banks, energy sector
New York will closely monitor the cybersecurity protections in place at institutions in the financial and energy sectors as part of its first statewide cybersecurity strategy.
-
ArticleEyeMed fined $4.5M over cybersecurity lapses that led to breach
EyeMed Vision Care agreed to pay $4.5 million as part of a settlement with the New York State Department of Financial Services for cybersecurity control failures that helped enable a 2020 data breach.
-
ArticleNYDFS guidance addresses common MFA problems—and how to fix them
The New York State Department of Financial Services outlined common vulnerabilities in multi-factor authentication and how to address them from a cybersecurity risk management standpoint.
-
ArticleNYDFS fines mortgage banker $1.5M for cyber-security violations
The New York State Department of Financial Services fined Residential Mortgage Services $1.5 million for violating New York’s cyber-security regulation.
-
ArticleNYDFS regulation a best-practices model for cyber-security training
Companies must make cyber-security a continuous priority as threats evolve, often more quickly than the technology and regulations to counter them. That’s why the New York Department of Financial Services, under Maria Vullo, developed a policy that should act as a model for organizations.