Top Story Security Related

OFAC is asking for user opinions of their website. They are asking site users to take about ten minutes to complete a survey to help them improve their services, enhance users' experience, and create new features.

The survey can be found HERE.

Yesterday, the Treasury Department reported that OFAC has designated one individual and one entity who support a corrupt patronage network in Bosnia and Herzegovina (BiH) that is attempting to evade U.S. sanctions.

For the names and identification information of the designated individual and entity, see yesterday's BankersOnline OFAC Update.

FinCEN recently announced that certain victims of Hurricane Milton, Hurricane Helene, Hurricane Debby, Hurricane Beryl, and Hurricane Francine will receive an additional six months to submit beneficial ownership information reports, including updates and corrections to prior reports.

FinCEN has issued the five Notices below extending the filing deadlines for reporting companies that 1) have an original reporting deadline beginning one day before the date the specified disaster began and ending 90 days after that date, and 2) are located in an area that is designated both by the Federal Emergency Management Agency as qualifying for individual or public assistance and by the Internal Revenue Service as eligible for tax filing relief.

Notice regarding—

• Hurricane Milton
• Hurricane Helene
• Hurricane Debby
• Hurricane Beryl
• Hurricane Francine

The NCUA has announced it issued three consent orders and one prohibition notice in October permanently prohibiting individuals from participating in the affairs of any federally insured depository institution.

Consent orders were issued to:

• Gloria J. Hall, a former employee of Prairie View Federal Credit Union, Prairie View, Texas
• Diane Stephens, a former employee of Priority First Federal Credit Union, Du Bois, Pennsylvania
• Laurie Allen, a former employee of Vibrant Credit Union, Danville, Illinois

A Notice of Prohibition was issued to Salusthian Lutamile, a former employee of IDB Global Federal Credit Union, Washington, D.C.

The FBI, the Treasury Department, and the Israel National Cyber Directorate have issued a Cybersecurity Advisory (CSA) to warn network defenders of new cyber tradecraft of the Iranian cyber group Emennet Pasargad, which has been operating under the company name Aria Sepehr Ayandehsazan (ASA) and is known by the private sector terms Cotton Sandstorm, Marnanbridge, and Haywire Kitten.

The group exhibited new tradecraft in its efforts to conduct cyberenabled information operations into mid-2024 using a myriad of cover personas, including multiple cyber operations that occurred during and targeting the 2024 Summer Olympics – including the compromise of a French commercial dynamic display provider. ASA has also undertaken a project to harvest content from IP cameras and used online resources related to Artificial Intelligence. Since 2023, the group has exhibited new tradecraft including the use of fictitious hosting resellers to provision operational server infrastructure to its own actors as well as to an actor in Lebanon involved in website hosting. Recently released reporting from Microsoft indicates this group has demonstrated interest in election-related websites and media outlets, suggesting preparations for future influence operations.

The CSA provides the threat group’s tactics, techniques, and procedures (TTPs), including its leveraging of online resources related to Artificial Intelligence, and indicators of compromise (IOCs). The CSA also highlights similar activity from a previous FBI advisory that was published on 20 October 2022. This new advisory’s information and guidance are derived from FBI investigative activity and technical analysis of this group’s intrusion activity against U.S. and foreign organizations and engagements with numerous entities impacted by this malicious activity.

The authoring agencies recommend all organizations follow guidance provided in the Mitigations section to defend against the Iranian cyber group’s activities.

Yesterday, the Treasury Department reported that OFAC had sanctioned five Mexican nationals and two Mexico-based entities linked to La Linea, a violent Mexico-based drug trafficking organization responsible for trafficking fentanyl and other deadly drugs into the United States.

See BankersOnline’s October 31, 2024, OFAC Update for the names and identifying information of the designated individuals and businesses .

FinCEN has reported that the Financial Action Task Force (FATF), an intergovernmental body that establishes international standards for anti-money laundering, countering the financing of terrorism, and countering the financing of proliferation of weapons of mass destruction (AML/CFT/CPF), updated its lists of jurisdictions with strategic AML/CFT/CPF deficiencies at the conclusion of its plenary meeting this month. FinCEN said U.S. financial institutions should consider the FATF’s stance toward these jurisdictions when reviewing their obligations and risk-based policies, procedures, and practices.

On October 25, 2024, the FATF added Algeria, Angola, Côte d’Ivoire, and Lebanon to its list of Jurisdictions Under Increased Monitoring and also removed Senegal from the list.

The FATF’s list of High-Risk Jurisdictions Subject to a Call for Action remains the same, with Iran, the Democratic People’s Republic of Korea (DPRK), and Burma subject to calls for action. Iran and DPRK are still subject to the FATF’s countermeasures, while Burma is still subject to the application of enhanced due diligence, but not countermeasures

The Department of the Treasury has announced it has sanctioned 275 individuals and entities involved in supplying Russia with advanced technology and equipment that it desperately needs to support its war machine. Yesterday’s action targets both individual actors and sprawling sanctions evasion networks across 17 jurisdictions, including India, the People’s Republic of China (PRC), Switzerland, Thailand, and Türkiye. In addition to disrupting global evasion networks, this action also targets domestic Russian importers and producers of key inputs and other materiel for Russia’s military-industrial base.

Treasury reported that the Department of State also targeted sanctions evasion and circumvention in multiple third countries, including several PRC-based companies exporting dual-use goods that fill critical gaps in Russia’s military-industrial base and entities and individuals in Belarus related to the Lukashenka regime’s support for Russia’s defense industry. State also targeted several senior Russian Ministry of Defense officials and defense companies and those supporting Russia’s future energy production and exports.

For the names and identification information of the designated parties, see yesterday’s BankersOnline OFAC Update.

The Treasury Department has announced the release of the National Strategy for Financial Inclusion in the United States, which identifies objectives and recommendations for policymakers, industry, employers, and community organizations to advance consumer access to safe financial products and services and strengthen financial security. The Strategy was requested in 2023 by Congress and has been informed by Treasury’s research and engagement with experts, community leaders, industry representatives, and other federal agencies, including public input through a Request for Information.

Objectives and key recommendations of the Strategy include:

• Promote access to transaction accounts that meet consumer needs
• Increase access to safe and affordable credit
• Expand equitable access to savings and investments
• Improve the inclusivity of financial products and services provided or backed by the government
• Foster trust in the financial system by protecting consumers from illegal and predatory practices

Treasury invited all stakeholders to engage with this Strategy, to innovate, and to collaborate in creating a more inclusive financial landscape.

• Fact Sheet on the report and recommendations

The CFPB has issued Consumer Financial Protection Circular 2024-06, "Background Dossiers and Algorithmic Scores for Hiring, Promotion, and Other Employment Decisions," presenting the question: "Can an employer make employment decisions utilizing background dossiers, algorithmic scores, and other third-party consumer reports about workers without adhering to the Fair Credit Reporting Act (FCRA)?"

The guidance warns that companies using third-party consumer reports — including background dossiers and surveillance-based, “black box” AI or algorithmic scores about their workers — must follow FCRA rules. This means employers must obtain worker consent, provide transparency about data used in adverse decisions, and allow workers to dispute inaccurate information.