LinkedIn Account Takeovers and Ransom Demands - A Threat Extending to Business Accounts

In the ever-evolving landscape of cyber security, new threats are constantly emerging, targeting our personal and professional digital spaces.
Read more

SEC Adopts Rules on Cyber Security Risk Management, Strategy, Governance, and Incident Disclosure by Public Companies

The SEC has voted today to adopt new rules requiring public companies to disclose material cyber security incidents and, to…
Read more

US State Data Privacy Laws – a comparison

As more US states introduce privacy laws, companies must be aware of and be able to manage the varying provisions…
Read more

Business Email Compromise – is your business protected?

In today's digital age, email has become an essential tool for business communication. However, with the increasing reliance on email,…
Read more

The California Privacy Rights Act – what it means for consumers and businesses

The California Privacy Rights Act (CPRA) is a privacy law that was passed in California in November 2020 and came…
Read more

Open comment period for SEC’s proposed cyber security requirements deadline

The Securities and Exchange Commission (SEC) is seeking public comment on proposed cyber security requirements for investment advisers and broker-dealers.…
Read more

SEC Commissioner Lizárraga’s speech at the Digital Directors Network 2023 conference

Recently, Commissioner Lizárraga spoke at the Digital Directors Network 2023 conference. We can gain valuable insights from the speeches that…
Read more

Guidance on ChatGPT (or other AI language models) For Regulated Firms

Over the last few months many clients have been asking for guidance as it relates to ChatGPT and other natural…
Read more

The SEC's cyber security rules are coming in April 2023

By now everyone should understand the SEC is proposing rule 206(4)-9 under the Advisers Act and 38a-2 under the Investment…
Read more

FINRA highlights cyber security as one of the top risks facing the financial industry

FINRA recently released their “2023 Risk Profile” report, highlighting cyber security as one of the major threats confronting the financial…
Read more

Upcoming cyber regulations - what can you do to prepare?

On 4 January 2023, the current administration released its Fall 2022 regulatory agenda. In this document they outlined the upcoming…
Read more

Cyber Risk in the Middle East – How secure is your firm and its ecosystem?

Cyber-attacks are the unauthorised exploitation of systems, networks and technologies and they have been a high-risk item on companies' agendas…
Read more

Cybersecurity Awareness Month – a focus for asset managers

Cybersecurity Awareness Month occurs each October and is a collaboration between government and private industry, designed to promote the importance…
Read more

eComms compliance – the SEC continues its scrutiny and issues substantial fines

In September 2021, the SEC began its focus on how banks were monitoring, archiving and safeguarding business-related eComms being undertaken…
Read more

What role should NEDs play in cybersecurity?

Waystone Compliance Solutions’ Chief Information Security Officer, Conor Flynn, was recently featured in an Assured article where he provided insight…
Read more

Building your cyber security foundation

At Waystone Cyber Security Solutions we believe that as you grow your firm it should be built on a strong…
Read more

SEC Fines Firm $35 Million for Failure to Protect Client Data

On September 20, 2022, the U.S. Securities and Exchange Commission (“SEC”) fined Morgan Stanley Smith Barney for their purported failure…
Read more

Securing sensitive employee data – recommended HR policies and procedures

The onboarding and offboarding of employees is not a subject that we often think about in terms of information security.…
Read more