The Office of the Comptroller of the Currency, Treasury (OCC), the Board of Governors of the Federal Reserve System (Board), and the Federal Deposit Insurance Corporation (FDIC) recently announced a “Notice of Proposed Rulemaking for the Computer-Security Incident Notification Requirements for Banking Organizations and Their Bank Service Providers.” This new rule would require a banking
Privacy Tip #199 – Guard Your Cryptowallet: Cryptoheist in Japan Drains $32 million from Exchange
The U.S. government continues to be wary of cryptocurrency, and presently, no cryptocurrency exchange is protected by the FDIC. When you put your money in a FDIC-insured bank, if the bank becomes insolvent customers will not lose their deposits, usually up to a maximum of $250,000 per depositor per insured bank. But if you deposit…
ILCs, the OCC, and the Future of Fintech Banking
Industrial Loan Companies (ILCs) are a different kind of financial institution. The ILC is a state-chartered FDIC-insured depository financial institution with certain advantages common to banks but without all of the corresponding regulatory overlay. This is one reason why aspiring fintech companies may consider foregoing the pursuit of a federal OCC “fintech” charter in favor…
Hacker Steals $31 Million of Tether Cryptocurrency
Virtual currency exchanges are popping up at breakneck speed. Tether, which operates USDT, a cryptocurrency that is backed up with the U.S. dollar, announced that almost $31 million of its USDT was stolen from its core treasury wallet “through malicious action by an external attacker.”
In response to the heist, Tether has flagged and is…
Federal Agencies Hit with 30,899 Cyberincidents in 2016
The Office of Management and Budget (OMB) released a report this week indicating that federal agencies experience almost 31,000 cyberincidents in 2016. The Federal Deposit Insurance Corporation was responsible for 10 of 16 major incidents. These incidents resulted when personally identifiable information was able to be downloaded onto removable media.
Despite the dismal number of…
Tesco Bank Cyber-Robbery—Some Implications for U.S. Banks—and their Depositors
UK-based Tesco Bank froze online transactions on Monday after discovering that cyber-criminals stole money from 20,000 different customer accounts. The exact method used by the perpetrators is still under review, but preliminary analysis suggests the attackers exploited weaknesses in the bank’s online payment system related to the processing of debit card transactions. The Bank has…
In Wake of Cyber-Attacks, Regulators Focus on SWIFT as Senators Urge Obama to Press G20 to Combat Cybercrime
As cyber-attacks involving the global payment system SWIFT increase in frequency abroad, U.S. regulators are discussing steps designed to protect against similar attacks on U.S. financial institutions. The Federal Reserve, Office of the Comptroller of the Currency and the Federal Deposit Insurance Corp. issued a joint letter last week to Representative Carolyn Maloney (D-NY) of…
FDIC reports five “major” data incidents to Congress
The Federal Deposit Insurance Corporation (FDIC) reported on Monday, May 16, 2016, that it had experienced five “major incidents” involving the disclosure of taxpayers’ personal information since the last incident we reported on last month involving 44,000 records.
A “major incident” is defined as involving more than 10,000 records. The reported incidents all involved FDIC…
44,000 FDIC customers’ data “inadvertently” taken by former employee
In a memo outlining a security incident as required by the Federal Information Security Modernization Act of 2014, the FDIC has admitted that the data of 44,000 FDIC customers was “inadvertently” taken by an employee as the employee was leaving the employment of the agency.
According to the memo, the employee downloaded the information of…
FDIC cybersecurity framework features four areas critical to bank security
Long gone are the days when a financial institution’s primary security concern was protecting cash in the bank vault, the Federal Deposit Insurance Corporation (FDIC) acknowledges in its recent article, “A Framework for Cybersecurity,” released February 1, 2016. Instead, the framework asserts that cyber-attacks now represent “one of the most critical challenges facing…