This compliance intelligence digest highlights critical updates, including a $5 million settlement in an EyeMed data breach case and key insights into GDPR compliance training. We also cover the rise of self-propagating malware targeting WhatsApp users in Brazil and the concerning trend of Chinese government fronts exploiting Western cyber tech. Stay informed on these pressing issues to enhance your organization’s risk management and compliance strategies.
Top 5 Critical Compliance Alerts
- EyeMed Vision Care Agrees to Pay $5 Million to Settle Class Action Data Breach Lawsuit: EyeMed Vision Care settles a class action lawsuit stemming from a June 2020 data breach for $5 million. Read more
- 5 common GDPR mistakes – and how training can fix them: Common GDPR breaches arise from everyday slip-ups; training can mitigate risks of complaints, investigations, and fines. Read more
- Self-Propagating Malware Hits WhatsApp Users in Brazil: The Water Saci campaign spreads Sorvepotel malware, stealing credentials and monitoring browser activity to defraud financial institutions. Read more
- Chinese Gov’t Fronts Trick the West to Obtain Cyber Tech: Outwardly neutral Chinese institutions collaborate with Western organizations and researchers for PRC state intelligence. Read more
- Why Most Banks Are Not Ready for Agentic AI in FinCrime Prevention (and How to Get There): Readiness assessments and strategic guardrails separate transformative adoption from costly failures in FinCrime prevention using Agentic AI. Read more
Compliance Frameworks
- EyeMed Vision Care Agrees to Pay $5 Million to Settle Class Action Data Breach Lawsuit: EyeMed Vision Care settles a class action lawsuit stemming from a June 2020 data breach for $5 million. Read more
Regulatory Updates
- FinReg Monthly Update: Highlights the latest developments in UK and EU financial services regulation for September 2025, including FCA priorities. Read more
- Streamlining Consumer Duty – A Welcome Update from the FCA: Discusses the challenges and updates regarding the implementation of the FCA Consumer Duty regime. Read more
Third-Party Risk & Due Diligence
- Chinese Gov’t Fronts Trick the West to Obtain Cyber Tech: Outwardly neutral Chinese institutions collaborate with Western organizations and researchers for PRC state intelligence. Read more
Policy & Governance Updates
- New Presidential Memo: Why Federal Grantees Should Engage in Byrd Watching: A Presidential Memorandum addresses the Attorney General regarding the use of appropriated funds for illegal lobbying and partisan political activity by federal grantees. Read more
- Between Silence & Oversharing: Navigating Tariff Disclosure in a Shifting Trade Environment: Discusses navigating tariff disclosure in a shifting trade environment. Read more
- 5 common GDPR mistakes – and how training can fix them: Common GDPR breaches arise from everyday slip-ups; training can mitigate risks of complaints, investigations, and fines. Read more
