Robinhood Crypto fined $30M for AML, cybersecurity failures
By 
Aaron Nicodemus2022-08-02T18:27:00
Robinhood Crypto (RHC) agreed to pay a $30 million fine to the New York State Department of Financial Services (NYDFS) for “significant failures” in its Bank Secrecy Act/anti-money laundering (BSA/AML) and cybersecurity compliance programs.
The NYDFS announced Tuesday that over several years, Robinhood’s BSA/AML program was inadequately staffed; failed to transition from a manual transaction monitoring system unfit for the firm’s size, customer profiles, and transaction volumes; and did not devote sufficient resources to addressing risks unique to the company.
Similarly, Robinhood’s cybersecurity program did not adequately address the risks of a potential breach and was not in full compliance with the NYDFS’s cybersecurity regulations.
Related articles
-
News BriefRobinhood Financial to pay $7.5M in Mass. settlement
Online stock trading platform and broker-dealer Robinhood Financial agreed to pay a $7.5 million fine as part of a settlement with the Commonwealth of Massachusetts addressing claims related to “gamification” of its platform and cybersecurity issues that lent to a 2021 data breach.
-
News BriefRobinhood discloses New York AG probe into brokerage execution
Online brokerage Robinhood Markets disclosed in a quarterly filing it is under investigation regarding the quality of its brokerage execution.
-
News BriefOneMain Financial fined $4.25M in NYDFS cybersecurity case
Mortgage servicer OneMain Financial Group will pay $4.25 million to settle allegations it left customer information vulnerable to cyberattacks by failing to implement required controls under New York’s cybersecurity law.
More from Regulatory Enforcement
-
ArticleFormer startup CEO gets 7 years in prison for $175M fraud against JPMorgan Chase
Charlie Javice, a former CEO who duped JPMorgan Chase into purchasing her start up company for $175 million, has been ordered to forfeit more than $22 million by the Department of Justice (DOJ) and to spend 7 years in jail.
-
ArticleGeorgia Tech to pay $875,000 for allegations brought by compliance officers
Georgia Tech Research Corp. (GTRC) has agreed to pay $875,000 to settle allegations first raised by two compliance officers that its cybersecurity protocols violated acceptable standards for defense contractors, the Department of Justice (DOJ) said.
-
ArticleTractor Supply Company hit with $1.35M fine for alleged California privacy violations
Tractor Supply Company has agreed to get into compliance with California’s consumer privacy law and to pay a $1.35 million fine—the largest yet by California—to settle allegations it violated the privacy rights of customers and job applicants.