4 articles tagged with "financial services".
The Gramm-Leach-Bliley Act requires financial institutions to protect customer information through the Privacy Rule, Safeguards Rule, and Pretexting provisions. Major Safeguards Rule updates effective 2023-2024 mandate enhanced cybersecurity controls.
A social engineering attack targeting MoneyGram's IT helpdesk led to a week-long global outage affecting billions in remittances and exposed sensitive customer data including government IDs and bank account information.
The EU's Digital Operational Resilience Act (DORA) took effect January 17, 2025, imposing ICT risk management, incident reporting, resilience testing, and third-party oversight requirements on financial entities across the EU.
New York's cybersecurity regulation for financial services requires covered entities to maintain comprehensive security programs including CISO designation, MFA, encryption, and incident reporting. The 2023 amendments are fully effective as of November 2025.