The Compliance Digest

Get expert compliance tips and up-to-date regulatory news.

FINRA Releases Notice on Account Takeover Attempts

FINRA has received an increasing number of reports regarding ATO incidents, which involve bad actors using compromised customer information, such as login credentials, to gain unauthorized entry to customers’ online brokerage accounts. As such, the self-regulatory authority has released a Regulatory Notice aimed at protecting customers from online account takeover attempts. Read More

Four Takeaways from our Exam Priorities Webinar

Joined by Foreside Financial Group’s, Myles Blechner and Ginny Voos, Quest CE hosted a webinar to discuss some of the challenges compliance officers and firms faced in 2020, as well as some of the top takeaways from this year’s examination priorities letters. Here are some of the top takeaways from the presentation. Read More

Virginia Passes Consumer Data Protection Act

On March 2, 2021, Governor Northam signed the Virginia Consumer Data Protection Act (CDPA or the Act) making it the country’s second comprehensive data privacy legislation following California’s Consumer Protection Act of 2018 (CCPA). The law will go into effect on January 1, 2023. Read More

Do you have one of the “worst” passwords of 2020?

After analyzing 275,699,516 passwords leaked during 2020 data breaches, NordPass and partners found that the most common passwords are incredibly easy to guess - and it could take less than a second or two for attackers to break into accounts using these credentials. Read More

Cybersecurity Awareness Month: Spotlight on Training

Held every October, National Cybersecurity Awareness Month is a great time for your compliance team to focus on educating staff. Read More

Why CCOs Can’t Ignore This Cybersecurity Month

The level of successful cyberattacks on financial institutions has shocked many over the past few weeks. In this article, we discuss why CCOs need to be focused on cybersecurity best practices, as well as some popular training topics to offer your firm members this year. Read More


SEC Releases Alert on Ransomware Attacks

The SEC is warning advisors and broker-dealers to immediately review their cybersecurity controls, as phishing and ransomware attacks are on the rise. Read More

SEC Offers Tips to Bolster Firms’ Cybersecurity Plans

The OCIE's "Cybersecurity and Resiliency Observations" goes into significantly more detail than previous risk alerts released on the topic and is formatted in a user-friendly format that allows firms to easily reflect on their own cybersecurity practices. Read More

The 25 Most Hacked Passwords of 2019

Find out if your password is on the list of "most hacked passwords from 2019." Hint, if you're using "password," you should stop immediately. Read More

Companies Still Unprepared for GDPR Compliance

Over half of UK businesses aren’t compliant with the GDPR more than 15 months after its introduction, despite many reporting data security incidents to the ICO, according to new research from Egress. Read More