GAO found that federal agencies were inconsistent in implementing cyb ersecurity requirements under the Federal Information Security Modernization Act.
The FDIC and FinCEN will open registration for interested individuals to participate in a "Tech Sprint Program" to focus on developing solutions "for financial institutions and regulators to help measure the effectiveness of digital identity proofing."
The New York Attorney General recommended safeguards to defend against "credential stuffing" after an investigation found widespread cyberattacks impacting more than 1.1 million consumers.
In a letter to federally insured credit unions, the National Credit Union Administration announced that its Automated Cybersecurity Evaluation Toolbox application is available for download from the NCUA's ACET and Other Assessment Tools webpage.
The DOJ and SEC charged five Russian nationals for their involvement in a multi-year, global scheme that included (i) hacking into the systems of two U.S.-based filing agent companies, (ii) stealing nonpublic information, such as corporate earnings reports, and (iii) trading based on this material, nonpublic information.
In its 2021 Annual Report, the Financial Stability Oversight Council assessed the state of the financial system and provided recommendations concerning climate-related financial risk, digital asset risk, the orderly transition away from LIBOR, and cybersecurity.
An FTC final rule to strengthen data security measures to further protect consumer financial data goes into effect on January 10, 2022. Certain provisions are extended until December 9, 2022 to allow financial institutions more time to modify their information security programs to comply with the new requirements.
The CFPB reopened the comment period for an inquiry into how Amazon, Apple, Facebook, Google, PayPal and Square use personal payments data and manage data access.
