-
GRIP Extra: IOSCO sets standards on neo-brokers and tokenization, AT&T readies $177m breach settlement
Our in-brief roundup of notable stories from the last week.
-
ASIC roundup: 14 years imprisonment for fraudster, and freezing orders
The Australian Securities and Investments Commission’s latest actions and news, October 27 – 31, 2025.
-
Capita fined for cybersecurity failings that led to data breach
Ineffective response to security alerts, inadequate access controls, lack of active directory tiering, and penetration testing shortcomings all cited as factors.
-
S-Bank fined €1.8m for data security vulnerability in its mobile app
Some customers fell victim to a data breach which caused financial losses.
-
Rapid spread of AI, proliferation of APIs and sovereignty key data concerns
Thales Data Threat Report also reveals that firms dismiss data compliance audits as “checkbox” exercises.
-
Dior’s Shanghai branch penalized for non-compliant cross-border data transfer
Investigation into Dior’s global data breach uncovered compliance shortcomings in cross-border data transfer, user consent, and data security.
-
NYDFS fines dental plan firm $2m in phishing breach
Failure to use MFA to protect data of 90,000 customers leads to fine and raises legal questions.
-
Lithuania VDAI reports more complaints and higher fines in 2024
The largest fine of the year was issued to Vinted for violating provisions of the EU GDPR.