Compromised Advisor Credentials Used in Pump-and-Dump Schemes
Action Required: Review and strengthen firm-wide cybersecurity protocols, specifically focusing on multi-factor authentication (MFA) and credential management for all advisor accounts.
The Department of Justice has seized $19.5 million related to market manipulation schemes that utilized compromised financial advisor credentials to execute pump-and-dump operations. This incident highlights a critical cybersecurity vulnerability where unauthorized access to advisor accounts can be weaponized to manipulate stock prices, posing significant reputational and regulatory risks to advisory firms.
Read full article at wealthmanagement-comWant the full daily Briefing?
30 stories like this every day, with Action Required call-outs and direct lines to ask Aria — finsay's AI compliance assistant.
Try free for 14 daysRelated stories
- Password manager maker LastPass says hackers stole customer support case data during Klue breach
LastPass, a widely used password management tool, has suffered another data breach involving customer support case data, stemming from a com…
- Cybercriminals allegedly hacked tens of thousands of Fortinet firewalls used by major companies all over the world
A Russian-speaking cybercriminal group is exploiting known vulnerabilities in Fortinet firewalls and VPNs, which are widely used by financia…
- Chinese cybercrime operation that used AI to scam ‘hundreds of thousands of victims’ sued by Google
Google has filed a lawsuit against a cybercrime group, 'Outsider Enterprise,' for utilizing AI to facilitate large-scale text message scams …