Showing 6 posts in Cybersecurity.
Cybersecurity Compliance Emphasized at MBA's Legal Issues and Regulatory Compliance Conference
In a Privacy & Cyber Bytes Alert, we review takeaways from the recently concluded Mortgage Bankers Association's Conference on Legal Issues and Regulatory Compliance. Lenders and servicers with consumer-facing platforms that collect personal information need to initiate cybersecurity compliance efforts immediately.
Read the full alert which includes our list of best practices.
NYS DFS Publishes its Investigative Report of the Twitter Hack of July 2020
The New York State Department of Financial Services issued a press release on Thursday announcing the publication of its investigative report of the July 2020 Twitter hack. The exhaustive report reviews the facts surrounding the hack, provides a visual timeline, and explores the cybersecurity weaknesses at Twitter that made the hack possible, including a lack of leadership, vulnerability to social engineering, and a failure to address the new vulnerabilities caused by the pandemic-driven shift to mass remote working. More ›
Validating Cyber Compliance in Light of the First DFS Enforcement Action
We recently reported on the New York State Department of Financial Services' (DFS) first enforcement action under its 2017 cybersecurity regulation ("Part 500"), which prescribes how financial services companies licensed to operate in New York should construct their cybersecurity programs. DFS' statement of charges provides important insight into the agency's priorities and expectations when assessing how a company has addressed and mitigated a data exposure, and offers a roadmap for how other regulators might interpret similar data security laws being implemented across the country. Given increasing regulatory scrutiny and the fact that inappropriate cybersecurity procedures and practices could result in significant financial liabilities, companies should proactively re-assess where they stand in relation to applicable cyber mandates.
We highlight here some key takeaways from the recent DFS enforcement action that entities subject to Part 500 should carefully consider when validating their current state of compliance. More ›
Another Cybersecurity Wake Up Call: Connecticut Insurance Department Issues Guidance on Cyber Law Set to go Into Effect
Covered entities received two cybersecurity wake up calls from insurance regulators this month. As we have reported, the New York State Department of Financial Services (DFS) issued its long-awaited first cyber enforcement action pursuant to its groundbreaking and first-in-nation cybersecurity regulation. In addition, the Connecticut Insurance Department issued a Bulletin to all licensees, providing guidance for compliance with the Connecticut Insurance Data Security Law (the Act), which goes into effect on October 1, 2020. The Act was modeled after the National Association of Insurance Commissioners Model Cybersecurity Law, which itself was modeled after the DFS cybersecurity regulation. More ›
Long-Awaited DFS Cyber Enforcement Action Sees Charges Filed Against Title Insurer For Exposing Millions of Documents Containing Consumer Personal Information
After several years of anticipation, the New York State Department of Financial Services (DFS) has filed its first enforcement action under the agency's groundbreaking and first-in-the-nation 2017 cybersecurity regulation (Part 500 of Title 23 of the New York Codes, Rules, and Regulations), which prescribes how financial services companies licensed to operate in New York should construct their cybersecurity programs. This action is a wakeup call to covered entities to fully implement the directives of Part 500. More ›
Governor Cuomo Mandates Compliance by Credit Reporting Agencies with Sweeping New Cybersecurity Requirements
New York Governor Andrew Cuomo has issued a final regulation that requires credit reporting agencies doing business in New York to register annually with the Department of Financial Services (DFS) and also to comply with accompanying cybersecurity regulations, including the implementation of a cybersecurity program consistent with the requirements already in place for banks, insurance companies and other financial services institutions. The purpose of the new regulation is to protect New Yorkers from data breaches, such as the Equifax breach which exposed the private data of millions of individuals. More ›
Subscribe via RSS
Follow us on TwitterTopics
- ACA
- ACA International
- Amicus Brief
- Anti-Discrimination Policy
- Appellate Decisions
- Appointment Power
- Appraised Value
- Arbitration
- Arbitration Rule
- Article III Standing
- ATDS
- Attorneys' Fees
- Auto-Dialer
- Automatic Telephone Dialing System
- Bankruptcy
- Bankruptcy Code
- behavioral economics
- Biden Administration
- Biometric Information Privacy Act
- Bitcoin
- Blockchain
- Business Records
- California
- California Consumer Financial Protection Law
- California Consumer Privacy Act
- California Court of Appeal
- California Department of Financial Protection and Innovation
- Car Dealership
- CARES Act
- CCPA
- CDC
- CFPA
- CFPB
- Chapter 11 Bankruptcy
- Chapter 13 Bankruptcy
- Chapter 7 Bankruptcy
- Circuit Split
- City of Miami
- Civil Contempt
- Claim-Splitting
- Class Action
- Class Action Fairness Act of 2005
- Class Certification
- Climate Change
- Cole Memorandum
- Colorado
- Commercial Foreclosure
- Communications
- Compliance
- Compliance Audit
- Compliance Corner
- Congressional Review Act
- Connecticut
- Connecticut Insurance Department
- Constitutional Claims
- Consumer Data Privacy
- Consumer Disclosures
- Consumer Financial Protection Act
- Consumer Financial Protection Bureau
- Consumer Protections
- Coronavirus
- Coronavirus Aid, Relief, and Economic Security Act
- Corporate Compliance
- Corporate Governance
- COVID-19
- CPRA
- Craigslist
- Credit Report
- Credit Reporting Agencies
- Creditor
- Cryptocurrency
- cyber regulation
- Cybersecurity
- D.C. Circuit Court of Appeals
- Damages
- Data Breach
- Data Privacy Laws
- Data Security
- Debt Buyers
- Debt Collection
- Debt Collector
- Debt Dispute
- Debt Purchase
- Debtor
- Deceased Debtors
- Default Notice
- Department of Education
- Department of Financial Protection and Innovation
- Department of Financial Services
- DFPI
- DFS
- DFS Part 500
- Digital Financial Asset Law
- Disclosure
- Discovery Rule
- District of Columbia
- Document Retention
- Dodd-Frank
- Dodd-Frank Wall Street Reform and Consumer Protection Act
- Due Process Clause
- ECOA
- Economic Impact Payment
- Education
- Education Debt
- Eighth Amendment
- Electronic Communications
- Eleventh Amendment
- Eleventh Circuit Court of Appeals
- Employee Benefits
- Employer Participation Student Loan Assistance Act
- Equal Opportunity Act
- European General Data Privacy Regulation
- Eviction
- Excessive Fines Clause
- Executive Order
- FACTA
- Fair and Accurate Credit Transactions Act
- Fair Credit Billing Act
- Fair Credit Reporting Act
- Fair Debt Collection Practices Act
- Fair Employment and Housing Act
- Fair Lending
- Fair Market Value
- Fairness in Class Action Litigation Act of 2017
- FCBA
- FCC
- FCRA
- FDCPA
- Federal
- Federal Arbitration Act
- Federal Communications Commission
- Federal Housing Administration
- Federal Housing Finance Agency
- Federal Rules of Civil Procedure
- Federal Rules of Civil Procedure 68
- Federal Trade Commission
- FHA
- Fifth Amendment
- Fifth Circuit Court of Appeals
- Financial CHOICE Act
- Financial Registration
- Financial Regulatory
- Financial Risk
- FinTech
- First Amendment
- First Circuit Court of Appeals
- Florida
- Florida Supreme Court
- For-Profit Student Loans
- Forbearance
- Forbearance Agreement
- Foreclosure
- Foreclosure Sale
- Fourteenth Amendment
- Fourth Circuit Court of Appeals
- FTC
- Furnishers
- GDPR
- hacking
- Hardship Declaration
- HealthTech
- Hearsay
- HMDA
- Hobbs Act
- HUD
- Human Intervention Test
- Hunstein
- IDFPR
- Illinois
- Illinois Consumer Fraud and Deceptive Business Practices Act
- Illinois Predatory Loan Prevention Act
- Illinois Student Loan Bill of Rights
- Illinois Supreme Court
- Investigation
- IRS
- Judicial Estoppel
- Kathleen Kraninger
- Kentucky
- kickbacks
- Lack of Standing
- Landlord and Tenant
- Least Sophisticated Consumer Standard
- Legal Standing
- Legislation
- Lender Credit Bid
- LGBTQ
- Licensing
- Litigation
- Loan Defaults
- Loan Discharge
- Loan Modification
- Loan Servicing
- Louisiana
- Maine
- Mandatory Arbitration
- Marijuana
- Marketing Services Agreements
- Maryland
- Massachusetts
- Massachusetts Appeals Court
- Massachusetts Consumer Protection Act
- Massachusetts Land Court
- Massachusetts Supreme Judicial Court
- Material Misrepresentation
- Materiality Requirement
- Medical Debts
- Medical Marijuana
- Minnesota
- Monetary Damages
- Mortgage
- Mortgage Acceleration
- Mortgage Debt
- Mortgage Foreclosure
- Mortgage Loan Acceleration
- Mortgage Loans
- Mortgage Servicers
- Mortgage Servicing
- Motion to Dismiss
- MSA
- Municipal Code
- Municipal Code Violations
- Nevada
- New Jersey
- New York
- New York Court of Appeals
- New York Department of Financial Services
- New York Real Property Procedures and Acts
- Ninth Circuit Court of Appeals
- NMLS
- North Carolina
- North Carolina Consumer Finance Act
- North Dakota
- Notice of Proposed Rule Making
- NPRM
- NYCRA
- NYS DFS
- Obama Administration
- OFAC
- Office of Foreign Assets Control
- Origination
- Paragraph 22
- Part 500
- Pennsylvania
- Personal Jurisdiction
- Post-Discharge-Communications
- PPP
- Pre-Foreclosure Mediation
- Preemption
- Privacy
- Private Colleges and Universities
- Private Right of Action
- Private Student Loans
- Property Value
- Proposed Legislation
- Real Estate Settlement Act
- Redlining
- referral fees
- Regulated Entities
- Regulated Non-Depositories
- Regulated Organizations
- Regulation
- Regulation X
- Regulatory
- Regulatory Compliance
- Regulatory Relief
- Remote Working
- Residential Foreclosure
- RESPA
- Reverse Mortgage
- Revocation Claims
- Revocation of Election to Accelerate
- Rhode Island
- Rhode Island Supreme Court
- Richard Cordray
- RICO
- Right of Redemption
- Right to Cure
- Right to Cure Notice
- Right to Reinstate
- Risk Management
- Robocalls
- Rohit Chopra
- S.A.F.E. Mortgage Licensing Act
- Safe-Harbor Provision
- Sanitary Codes
- SCOTUS
- Second Circuit Court of Appeals
- Securities & Exchange Commission
- Separation of Powers
- Settlement Conference
- Seventh Circuit Court of Appeals
- Sixth Circuit Court of Appeals
- Social Media
- Standard of Proof
- Statute of Limitations
- Statutory Damages
- Statutory Interpretation
- Stimulus
- Student Loans
- Students
- Supreme Court of the United States
- Tax Lien
- TCPA
- Telephone Consumer Protection Act
- Texas
- Texting
- Third Circuit Court of Appeals
- TILA
- Trump
- Trump Administration
- Truth in Lending Act
- U.S. Constitution
- U.S. Department of Housing and Urban Development
- UCC
- UDAAP
- Unauthorized Use
- Undue Hardship
- Unfair and Deceptive Practices
- Unfair Competition
- Uniform Commercial Code
- United States Treasury
- Unsolicited Advertisement
- Usury Laws
- Utah
- Video Conferencing
- Virginia
- Virtual Currency Business Act (VCBA)
- Voluntary Discontinuance
- Voluntary Dismissal
- Washington D.C.
- Wisconsin
- Wisconsin Consumer Act