On October 15, the Financial Industry Regulatory Authority (FINRA) released an information notice (Notice) providing additional background on authentication techniques for firms to consider as they implement cybersecurity authentication programs.
Continue Reading FINRA Releases Information Notice on Cybersecurity Authentication Methods

On October 8, the European Parliament published a press release announcing that it had adopted a resolution regarding the creation of a robust EU framework for crypto-assets, cyber resilience, data sharing and customer safety (the Press Release).

The basis of the resolution originates from a previous report that the Economic and Monetary Affairs Committee (ECON) had voted to adopt in September 2020.
Continue Reading European Parliament Adopts Resolution on Digital Finance and Data Sharing

On June 29, the Commodity Futures Trading Commission’s (CFTC) Technology Advisory Committee (TAC) announced that it will hold a public meeting on July 16. At this meeting, the TAC will hear presentations from the TAC subcommittees on Automated and Modern Trading Markets, Distributed Ledger Technology and Market Infrastructure, Virtual Currencies and Cybersecurity.

The meeting will

On May 13, National Futures Association (NFA) issued a Notice to Members addressing the recent increase in fraudulent phishing emails, including emails purporting to be from financial institutions or their employees. These urgent emails often include an infected attachment or link, a request for confidential information, or a link to a fraudulent website. With any email, NFA cautions members to verify the sender before responding and to ensure the validity of links or attachments before clicking on them.
Continue Reading NFA Issues Warning Regarding Phishing Emails

On February 4, the UK’s Joint Money Laundering Steering Group (JMLSG) announced proposed amendments to its anti-money laundering (AML) and counter-terrorist financing (CTF) guidance (the Guidance). The JMLSG is a UK-focused group of trade bodies which produces AML and CTF guidance to assist the financial services industry.
Continue Reading AML: JMLSG Proposes Amended Guidance

On January 27, the Office of Compliance Inspections and Examinations (OCIE) of the Securities and Exchange Commission issued a statement summarizing its observations of cybersecurity and operational resiliency practices of broker-dealers, investment advisers, clearing agencies, national securities exchanges and other SEC registrants (the Observations). In its introduction to the Observations, the OCIE staff notes that cybersecurity is a key priority for OCIE. Therefore, although the OCIE staff acknowledges that there is not a “one-size fits all” approach to addressing cybersecurity, it recommends that SEC registrants assess their cybersecurity practices in light of the Observations.
Continue Reading OCIE Provides Observations on Cybersecurity and Operational Resiliency Best Practices