Cybercrimes tend to increase during the holiday season, as malicious actors take advantage of the increased employee travel and distractions that are more common during the holiday season. To help protect from cyberattacks during the busy holiday season, the FBI and CISA compiled several recommendations that employees can take now to prevent from these kinds of attacks.
Read More
Several news sources recently reported that a data breach resulted in 16 billion login credentials being exposed. While this was not a single breach, and rather a compilation of leaked credentials stolen by infostealers, exposed in data breaches, and via credential stuffing attacks, it does reinforce the risk associated with compromised credentials.
On February 20, 2025, the SEC announced the creation of the Cyber and Emerging Technologies Unit (“CETU”), replacing the existing Crypto Assets and Cyber Unit, in an effort to combat cyber-related misconduct and to protect retail investors from bad actors in the technologies space.
On February 4, 2025, SEC Commissioner Hester M. Peirce issued a statement on the future of the Crypto Task Force. The Task Force’s approach starts with engagement with the crypto industry and the public to provide regulatory clarity, while simultaneously disentangling the many threads of active litigation surrounding crypto.
On November 13, 2024, the U.S. Department of the Treasury’s Financial Crimes Enforcement Network (“FinCEN”) issued an alert to help financial institutions identify fraud schemes associated with the use of deepfake media (“deepfakes”) created with generative artificial intelligence (“GenAI”).
On October 21, 2024, the SEC’s Division of Examinations (“EXAMS”) published its 2025 Examination Priorities, which includes annual priorities viewed by EXAMS as presenting heightened risks to investors and markets overall.
On August 20th, 2024, the SEC announced that it settled charges against Equiniti Trust Company LLC (formerly American Stock & Trust Company, LLC) due to failing to ensure client securities and funds were protected from theft. Equiniti Trust Company LLC (“Equiniti”) incurred two cyber incidents from 2022 to 2023 that resulted in the loss of more than $6.6 million of client funds.