A few weeks ago, a St. Louis-based investment advisory firm settled charges with the Securities and Exchange Commission over allegations that it failed to implement even threadbare cyber security policies and procedures in advance of a 2013 breach of its server, which was hosted by a third party.
The attack, which investigators ultimately traced to China, resulted in the compromise of thousands of the firm’s clients’ personally identifiable information, or PII, according to the SEC.
The firm paid a $75,000 penalty, and though it did not admit or deny the SEC’s findings, the regulator’s allegations present a scenario of complete negligence on the part of the firm.
Recommended For You
Complete your profile to continue reading and get FREE access to BenefitsPRO, part of your ALM digital membership.
Your access to unlimited BenefitsPRO content isn’t changing.
Once you are an ALM digital member, you’ll receive:
- Breaking benefits news and analysis, on-site and via our newsletters and custom alerts
- Educational webcasts, white papers, and ebooks from industry thought leaders
- Critical converage of the property casualty insurance and financial advisory markets on our other ALM sites, PropertyCasualty360 and ThinkAdvisor
Already have an account? Sign In Now
© 2025 ALM Global, LLC, All Rights Reserved. Request academic re-use from www.copyright.com. All other uses, submit a request to [email protected]. For more information visit Asset & Logo Licensing.