In the latest wave of FINRA enforcement actions, two firms are facing consequences for serious compliance missteps that have shaken the financial community. Honeycomb Portal LLC, a crowdfunding intermediary, and BTG Pactual US Capital, LLC, a broker-dealer, are each paying the price for lapses in investor protection and money-laundering oversight.
The Financial Transactions and Reports Analysis Centre of Canada (FINTRAC) has imposed an administrative monetary penalty of $249,480.50 on Marouf Management Inc. This penalty, issued on November 4, 2024, follows a compliance examination carried out in 2023, which uncovered significant failures in Marouf’s anti-money laundering (AML) practices.
If 2024 taught us anything, it’s that stability is fragile, and in 2025, it’s still up for negotiation. In its latest Stability in the Financial System report, Sweden’s financial watchdog, Finansinspektionen (FI), doesn’t mince words. The risks on the horizon, from geopolitical tensions to economic headwinds, are piling up. In fact, FI says the likelihood of negative shocks is higher now than it was just a few months ago.
Risk-!n 2025 in Zurich was far from just another GRC conference. It was a gathering that transcended the usual discussions around compliance and risk management. As media sponsors, we had the privilege of witnessing an event that felt like a catalyst for change—a space where over 300 professionals came together, sparked conversations, and explored how governance, risk, and compliance can be more than just a regulatory checkbox.
Swedbank, one of Sweden’s most prominent banks, is facing a fine of approximately €1,148,415.25 (SEK 12,500,000) after a regulatory investigation found significant gaps in its compliance with Sweden's protective security regulations. The fine comes from Finansinspektionen, Sweden's financial supervisory authority, following a detailed probe into the bank’s security practices between July 2022 and January 2024.
GRC Report has been granted an exclusive first look at OCEG’s comprehensive 2025 GRC Maturity Survey, and one key finding stands out with striking clarity: having a well-defined GRC strategy is the single most powerful differentiator in organizational GRC maturity.
The European Union Agency for Cybersecurity (ENISA) has launched the European Vulnerability Database (EUVD), a new initiative aimed at enhancing cybersecurity resilience across the EU. This database, operational as of now, provides consolidated, reliable information about vulnerabilities in Information and Communication Technology (ICT) products and services, as mandated by the NIS2 Directive. The goal is to improve transparency and allow organizations to better address and manage cybersecurity risks.