Social engineering schemes include vishing and smishing; these schemes are becoming more common among employees who use personal devices for work. Fortunately, there are steps your organization can take to remain aware and vigilant about evolving social engineering attack risks.
If a vendor has weak security measures, your firm or client information could be at risk if bad actors successfully compromise this third party’s system. Proactively reviewing and vetting vendors’ cybersecurity policies and procedures is an effective way to block potential data theft.
The OCIE issued a Risk Alert that outlines new compliance risks stemming from the global pandemic. The SEC and OCIE have remained operational and have continued to initiate examinations, including routine examinations of investment advisers.