Cybersecurity and Risk Insights and Alerts
Cyber risks and threats continue to evolve, and firms are under pressure to meet SEC and FCA expectations for operational resilience as well as their own internal and client expectations for cybersecurity and privacy. Stay current on the latest cybersecurity, privacy, and risk threat and regulatory alerts, and build your cybersecurity and privacy knowledge with insights from our cybersecurity and technology risk experts.
ACA Aponix Cybersecurity Checklist
Cyber alerts and insights

LastPass Breach Included Encrypted and Unencrypted User Data
Clients should consider updating their master password
- Cybersecurity

Finalization of California Privacy Rights Act (CPRA) Is Pushed Back
The CPRA release will be pushed to April 2023, leaving existing rules in effect until then.
- Cybersecurity

Global Privacy Year-End Brief: What’s Happening Now & What to Expect in 2023
We summarize our recent Global Privacy webcast, which featured ACA Aponix's Alex Scheinman, Tyler Pearson, and independent privacy consultant Bill Schaumann.
- Cybersecurity

Recent Rackspace Exchange Outage is Another Reminder to Firms of the Importance of Business Continuity Planning
The ongoing, systemwide Microsoft Exchange outage demonstrates the importance of having contingency strategies in case of business disruptions.
- Cybersecurity

SEC Strategic Plan: More Enforcement, More Rules, and More Technology
The SEC issued its four-year strategic plan for 2022-2026. We summarize the goals of the plan and explore what it means for the next four years.
- Compliance
- SEC
- Cybersecurity
- ESG
- RegTech

SEC Proposed Rule Includes New 48-Hour Cyber Incident Reporting Requirement
According to the SEC proposed Rule 206(4)-9, RIAs and private funds must now submit a confidential report to the SEC within 48 hours from when a “significant cyber incident” is discovered.
- Cybersecurity
- SEC