cybersecurity

Subscribe to cybersecurity via RSS

On January 28, the Commodity Futures Trading Commission (CFTC) announced that it will adopt the National Institute of Standards and Technology (NIST) Privacy Framework for data privacy protection. The NIST Privacy Framework is a voluntary tool developed in collaboration with stakeholders (e.g., service providers, customers, partners) intended to help organizations identify and manage privacy risk

On October 16, the Financial Industry Regulatory Authority (FINRA) published its 2019 Report on Examination Findings and Observations (Report). Unlike previous years, the Report delineates between examination “findings” and examination “observations.” “Findings” describe violations of a rule or regulation, whereas “observations” refer to suggestions regarding how firms can improve controls and mitigate risk. The annual Report summarizes various findings and observations from recent examinations of its member firms on a range of topics, including the following:
Continue Reading FINRA Issues 2019 Report on Examination Findings and Observations

The Financial Industry Regulatory Authority (FINRA) has issued a notice warning member firms that there appears to be an increase in imposter websites designed to mimic firms’ actual websites.

FINRA suggests that member firms take proactive steps to monitor for imposter websites, including registering URL name variations and using monitoring services to watch for imposter

On March 1, the National Futures Association (NFA) published Notice I-19-07 (Notice), alerting Members that April 1 will be the effective date for amendments to NFA’s Interpretive Notice entitled NFA Compliance Rules 2-9, 2-36 and 2-49: Information Systems Security Programs (Interpretive Notice). (For a discussion of such amendments, please refer to the January 11, 2019

On February 13, the Financial Industry Regulatory Authority (FINRA) published an information notice alerting member firms about a suspicious email received by compliance personnel at a number of member firms. The email, sent by a purported BSA-AML compliance officer at a credit union, describes an attempted transfer of money from a firm client that the

On January 22, the Financial Industry Regulatory Authority (FINRA) issued its annual Risk Monitoring and Examination Priorities Letter. This year’s letter includes a number of new areas for firms to consider in seeking to improve their compliance, supervisory and risk management programs.
Continue Reading FINRA Releases 2019 Annual Risk Monitoring and Examination Priorities Letter

On November 12, the Financial Stability Board (FSB) published the final version of its cyber lexicon and an accompanying press release.

The FSB’s cyber lexicon is a set of approximately 50 core terms related to cybersecurity and cyber resilience in the financial sector, but is not intended to be a comprehensive lexicon of all cybersecurity and cyber resilience-related terms.
Continue Reading FSB Publishes Final Version of Cyber Lexicon

The Commodity Futures Trading Commission (CFTC) has announced that its Technology Advisory Committee (TAC) will hold a meeting on Friday, October 5. The meeting will be held in the Conference Center at the CFTC’s Washington, DC headquarters from 10:00 am – 3:30 pm ET. Representatives of several TAC subcommittees, including the Automated and Modern Trading

The Commodity Futures Trading Commission has issued an advisory warning customers of the dangers of purchasing digital coins or tokens. Among other things, the advisory warns customers that buying digital coins or tokens for speculative purposes carries significant risk and identifies various factors that could affect the current or longer-term value of a digital coin or token, including:
Continue Reading CFTC Issues Customer Advisory on Digital Coins and Tokens