The U.S. Department of Health and Human Services announced a $100,000 settlement with Doctors’ Management Services for failures to determine the potential risks and vulnerabilities to electronic protected health information after a cyberattack exposed the information of more than 200,000 patients. It is notable in that it is the first Read More
The Securities and Exchange Commission announced charges against Austin, Texas-based software company SolarWinds and its chief information security officer, Timothy G. Brown, for fraud and internal control failures relating to allegedly known cybersecurity risks and vulnerabilities. The complaint alleges that, from at least its October 2018 initial public offering through Read More
The Federal Trade Commission has altered its data security rule, known as the Safeguards Rule, to require nonbank financial firms—including mortgage brokers, auto dealers, and payday lenders—to report data breaches to the agency, according to an announcement made Friday. The FTC’s Safeguards Rule requires non-banking financial institutions, such as mortgage brokers, Read More
The Securities and Exchange Commission has released its 2024 examination priorities to alert companies of the areas that the Examination Division plans to focus on in the upcoming year. This year’s examinations will prioritize areas that pose emerging risks to investors or the markets in addition to core and perennial Read More
The Securities and Exchange Commission has adopted a new rule which will require individuals and entities to report information about securities loans to a registered national securities association (RNSA) and require RNSAs to make publicly available information that they receive regarding those lending transactions. The rule is intended to increase Read More
Discover Financial Services reached a consent agreement with federal regulators over failures in its Discover Bank unit’s compliance management system. In July, the company reported that it had received a proposed consent order from the Federal Deposit Insurance Corporation (FDIC) “in connection with consumer compliance.” But the company provided few Read More
The Securities and Exchange Commission has announced charges against five broker-dealers, three dually registered broker-dealers and investment advisers, and two investment advisers for widespread failures to maintain and preserve electronic communications and for off-channel communications. The firms admitted the facts set forth in their respective SEC orders and acknowledged that Read More
The Securities and Exchange Commission has filed charges against Clear Channel Outdoor Holdings Inc. for violations of the Foreign Corrupt Practices Act (FCPA). Clear Channel Outdoor agreed to pay more than $26 million to resolve the charges that it bribed Chinese government officials to obtain outdoor advertising contracts. The SEC’s Read More
The Consumer Financial Protection Bureau (CFPB) has issued guidance on legal requirements that lenders must adhere to when using artificial intelligence and other complex models to approve loans. The guidance describes how lenders must provide specific and accurate reasons when taking adverse actions against consumers. “Creditors cannot simply use CFPB Read More
The Securities and Exchange Commission has settled charges against CBRE Inc., a Dallas-based commercial real estate firm, for using an employee release that violated the SEC’s whistleblower protection rule. CBRE agreed to pay a civil penalty of $375,000 as part of the settlement. According to the SEC’s order, between 2011 Read More
