Menu

  • Alerts
  • Incidents
  • News
  • APTs
  • Cyber Decoded
  • Cyber Hygiene
  • Cyber Review
  • Cyber Tips
  • Definitions
  • Malware
  • Threat Actors
  • Tutorials

Useful Tools

  • Password generator
  • Report an incident
  • Report to authorities
No Result
View All Result
CTF Hack Havoc
CyberMaterial
  • Education
    • Cyber Decoded
    • Definitions
  • Information
    • Alerts
    • Incidents
    • News
  • Insights
    • Cyber Hygiene
    • Cyber Review
    • Tips
    • Tutorials
  • Support
    • Contact Us
    • Report an incident
  • About
    • About Us
    • Advertise with us
Get Help
Hall of Hacks
  • Education
    • Cyber Decoded
    • Definitions
  • Information
    • Alerts
    • Incidents
    • News
  • Insights
    • Cyber Hygiene
    • Cyber Review
    • Tips
    • Tutorials
  • Support
    • Contact Us
    • Report an incident
  • About
    • About Us
    • Advertise with us
Get Help
No Result
View All Result
Hall of Hacks
CyberMaterial
No Result
View All Result
Home News

Equiniti Settles $6.6M Cybersecurity Case

August 22, 2024
Reading Time: 2 mins read
in News
Equiniti Settles $6.6M Cybersecurity Case

Equiniti Trust Company has reached a settlement with the U.S. Securities and Exchange Commission (SEC) over significant cybersecurity failures that resulted in the loss of more than $6.6 million in client funds. The breaches, which occurred in 2022 and 2023, involved two major incidents that exposed critical weaknesses in the company’s security protocols. The SEC’s investigation found that Equiniti, formerly known as American Stock Transfer & Trust Company LLC (AST), failed to implement adequate safeguards to protect client assets from cyber intrusions.

In September 2022, an email hijacking attack allowed a threat actor to impersonate a public issuer client and instruct AST to issue and liquidate millions of dollars worth of shares, which were then transferred to a Hong Kong bank account. Despite recovering approximately $1 million of the $4.78 million stolen, the incident highlighted severe lapses in Equiniti’s cybersecurity practices. The second breach, in April 2023, involved the exploitation of stolen Social Security numbers to create fraudulent accounts linked to legitimate ones. This allowed the hacker to steal about $1.9 million, with $1.6 million subsequently recovered.

The SEC’s findings revealed that Equiniti’s security protocols failed to meet the requirements set forth in Section 17A(d) of the Securities Exchange Act of 1934 and Rule 17Ad-12, which mandate adequate protection for client funds and securities. SEC Director Monique C. Winkler emphasized the importance of maintaining effective safeguards as cyber threats continue to evolve. The settlement includes an $850,000 civil penalty, a cease-and-desist order, and a censure, with Equiniti also agreeing to enhance its cybersecurity measures.

The settlement underscores the critical need for financial institutions to continually update and strengthen their cybersecurity frameworks. As cyber threats become increasingly sophisticated, it is imperative for institutions like Equiniti to ensure robust protection against potential breaches. This case serves as a stark reminder to the financial industry about the serious consequences of inadequate cybersecurity and the importance of proactive security enhancements to safeguard client assets.

Reference:

  • Equiniti Trust Settles with the U.S. SEC for $6.6M Over Cybersecurity Failures
Tags: AmericaASTAugust 2024Cyber NewsCyber News 2024Cyber securityCyber threatsEquinitiSECSecurities and Exchange CommissionUSA
ADVERTISEMENT

Related Posts

UK Government Shifts to Passkey Security

Google Deploys AI to Combat Scams on Chrome

May 9, 2025
UK Government Shifts to Passkey Security

The Nmap Project released Nmap 7.96

May 9, 2025
UK Government Shifts to Passkey Security

UK Government Shifts to Passkey Security

May 9, 2025
Kirsten Davies Nominated as Pentagon CIO

Kirsten Davies Nominated as Pentagon CIO

May 8, 2025
China’s Cyber Power Raises UK Concerns

China’s Cyber Power Raises UK Concerns

May 8, 2025
Europol Takes Down Global DDoS Services

Europol Takes Down Global DDoS Services

May 8, 2025

Latest Alerts

X Scam Targets Crypto Users with Fake Ads

FBI Warns Cybercriminals Exploit Routers

FreeDrain Phishing Steals Crypto Funds

CoGUI Targets Consumer and Finance Brands

COLDRIVER Hackers Target Sensitive Data

Cisco Fixes Flaw in IOS Wireless Controller

Subscribe to our newsletter

    Latest Incidents

    LockBit Ransomware Data Leaked After Hack

    Spanish Consumer Group Faces Cyberattack

    Education Giant Pearson Hit by Data Breach

    Masimo Cyberattack Disrupts Manufacturing

    Cyberattack Targets Tepotzotlán Facebook

    West Lothian Schools Hit by Ransomware

    CyberMaterial Logo
    • About Us
    • Contact Us
    • Jobs
    • Legal and Privacy Policy
    • Site Map

    © 2025 | CyberMaterial | All rights reserved

    Welcome Back!

    Login to your account below

    Forgotten Password?

    Retrieve your password

    Please enter your username or email address to reset your password.

    Log In

    Add New Playlist

    No Result
    View All Result
    • Alerts
    • Incidents
    • News
    • Cyber Decoded
    • Cyber Hygiene
    • Cyber Review
    • Definitions
    • Malware
    • Cyber Tips
    • Tutorials
    • Advanced Persistent Threats
    • Threat Actors
    • Report an incident
    • Password Generator
    • About Us
    • Contact Us
    • Advertise with us

    Copyright © 2025 CyberMaterial