The European Banking Authority on Monday released its follow-up to a 2022 peer review examining how national supervisors assess ICT risk under the Supervisory Review and Evaluation Process, or SREP.
PayPal is notifying a number of customers that their personal information was exposed following a coding error in its PayPal Working Capital loan application, an issue that persisted for more than five months before being identified.
Sweden’s financial watchdog has opened a fresh investigation into Swedbank, this time zeroing in on whether the bank has complied with money laundering regulations, and, more specifically, whether it has done enough to truly know its customers.
A federal judge in Manhattan has handed the U.S. Securities and Exchange Commission a win in its case against purported investment adviser Bluesky Eagle Capital Management, entering a final judgment by default after the firm failed to defend itself against allegations that it made material misrepresentations in an SEC filing.
It was a record-breaking year for data breaches in Sweden and not the kind anyone wants to celebrate. The Swedish Data Protection Authority, known as IMY, reported that 12,276 personal data breach notifications were filed in 2025, the highest number recorded since the General Data Protection Regulation came into force in 2018.
The UAE’s central bank is tightening its embrace of the internal audit profession, signing a cooperation agreement that positions auditors more squarely at the center of financial supervision and governance reform.
The U.S. Department of the Treasury’s Office of Foreign Assets Control has reached a $1,720,000 settlement with IMG Academy, concluding a case that stretches across five academic years and nearly 90 transactions tied to individuals sanctioned under U.S. counternarcotics laws.