In today’s edition of Daily Compliance News:
Tag: SEC
Compliance into the Weeds is the only weekly podcast which takes a deep dive into a compliance related topic, literally going into the weeds to more fully explore a subject. Today, Matt and Tom take a deep dive into the difference between a privacy breach and a ransomware attack.
Some of the issues we consider are:
- Why are privacy breaches different from ransomware attacks?
- What is an authenticated v. unauthenticated cyber-attack?
- Why would the SEC get involved?
- What are the internal controls need to prevent and detect a ransomware attack? How will they be audited?
- How can a material weakness in internal controls around ransomware lead to a financial restatement?
- What will the SEC look at from an enforcement angle?
Resources
Matt in Radical Compliance
Is compliance the happiest profession? Are you passionate about compliance? If you are either or both, you are not alone. Guest Host Karen Woody and Tom Fox look at these and other stories this week in the Happiest Profession edition.
Stories
- Is Compliance the happiest profession? Amii Bernard-Bahn explores in Compliance Week (Sub Req’d)
- Report on SEC Enforcement Activity: Public Companies and Subsidiaries for 2021. Tom Gorman in SEC Actions.
- Supply chain and compliance. Mike Volkov in Corruption Crime and Compliance. Dick Cassin in the FCPA Blog.
- What does ESG mean for the SEC? Commissioner Crenshaw remarks to the Pepsico-PWE Conference in the Harvard Law School Forum on Corporate Governance.
- Corruption as psychic revenge. Richard Bistrong in the FCPA Blog.
- Mitigating cyber risks. Debevoise Plimpton lawyers in Compliance and Enforcement.
- COP26 wrap up. What are the lessons for compliance? Lawrence Heim in PracticalESG.
- SEC broke all whistleblower awards in FY 2021. Aaron Nicodemus in Compliance Week (Sub Req’d) Carrie Penman says it’s a wakeup call for companies in Ethics and Compliance Matters.
- Diversity at the top. Jim Deloach in CCI.
- How did Classical Athenians define corruption? Kellam Conover in GAB.
Podcasts and Events
- Have you or a loved one been impacted by Lyme Disease? This week I have run a 5-part series on this most misunderstood malady with Dr. Ben Locwin and Scott Endicott. In Part 1 we looked at Origins. In Part 2 we considered the Diagnosis Dilemma. In Part 3 we reviewed Treatment and Innovation. In Part 4, we discussed Prevention and Immunity. In Part 5, we looked ahead for where this disease detection, prevention and treatment might be heading.
- Are you exasperated? Then check, F*ing Argentina. In this podcast series co-hosts Tom Fox and Gregg Greenberg, author of F*ing Argentina explore the current American psyche of being overworked, over leveraged, overtired and overwhelmed. Find out about modern America’s exasperation with well…exasperation. In Episode 10, a trip on the New Jersey Turnpike.
- This month on The Compliance Life, I visit with Wendy Badger, CCO at Tennant. In Part 1, she details her academic career and early professional life. In Part 2, changing ladders to advance your career. In Part 3, Wendy moves into the CCO Chair.
- How does a Compliance Bible become a best-seller? Check out Tom’s appearance on the C-Suite Network’s Best Seller TV to find out. Purchase The Compliance Handbook, 2nd edition here.
Tom Fox is the Voice of Compliance and can be reached at tfox@tfoxlaw.com. Karen Woody is Associate Professor at Washington and Lee University School of Law and can be reached at kwoody@wlu.edu.
Join Karen Woody and her Insider Trading Seminar students from Washington and Lee University as they explore the arc and evolution of insider trading over the last century. Each episode will feature a discussion between Karen Woody and a student about insider trading and regulation. Find out what the future lawyers of the university think about past and current legislation, and learn more about this fascinating area of law.
Listen to the episode now:
If you know someone who might be interested in what the lawyers of tomorrow think about the litigation of yesterday, share this page with them!
The SEC obtained an injunction and asset freeze to halt penny stock price manipulation on Twitter.
Last week, Credit Suisse Group AG settled a massive fraud action involving a non-existent Mozambiquan tuna boat fleet. While Texans have long had a fond place in their hearts for our convicted con man Billy Sol Estes, who defrauded the US federal government out of millions with his tales of nonexistent fertilizer tanks, faked mortgages and bogus cotton-acreage allotments; Billy Sol Estes was a piker compared to the bankers at Credit Suisse, the bank itself and the thoroughly corrupt politician running the country of Mozambique in creating and selling a loan package eventually totaling some $850 million for tuna boats that never existed. Over the next few blogs, I will be looking at the Credit Suisse enforcement action which involved the Department of Justice (DOJ), Securities and Exchange Commission (SEC) and UK Financial Conduct Authority (FCA).
US Attorney Breon Peace for the Eastern District of New York, noted, in the DOJ Press Release, “Over the course of several years, Credit Suisse, through its subsidiary in the United Kingdom, engaged in a global criminal conspiracy to defraud investors, including investors in the United States, by failing to disclose material information to investors, including millions of dollars in kickbacks to its bankers and a high risk of corruption, in connection with an $850 million fraudulent loan to a Mozambique state-owned entity.” According to Anita B. Bandy, Associate Director of the SEC’s Division of Enforcement, speaking in the SEC Press Release, “Credit Suisse provided investors with incomplete and misleading disclosures despite being uniquely positioned to understand the full extent of Mozambique’s mounting debt and serious risk of default based on its prior lending arrangements. Fraud was also a consequence of the bank’s significant lapses in internal accounting controls and repeated failure to respond to corruption risks.”
This enforcement action scorched the tattered reputation of the Swiss banking giant. Three Credit Suisse employees had previously pled guilty to receiving kickbacks as a part of the fraud. The FCA noted in its Press Release, “The contractor secretly paid significant kickbacks, estimated at over US$50 million, to members of Credit Suisse’s deal team, including two Managing Directors, in order to secure the loans at more favourable terms. While those Credit Suisse employees took steps to deliberately conceal the kickbacks, warning signs of potential corruption should have been clear to Credit Suisse’s control functions and senior committees. Time and again there was insufficient challenge within Credit Suisse, or scrutiny and inquiry in the face of important risk factors and warnings. The Republic of Mozambique has subsequently claimed that the minimum total of bribes paid in respect of the two loans is around US$137 million.”
The overall settlement was for a total of $475 million paid to the DOJ, SEC and FCA and an additional forgiveness of $200 million in debt held by Credit Suisse against the country of Mozambique, which the FCA took into account in determining its financial penalty. The Bank also agreed to a methodology to calculate proximate fraud loss for victims of its criminal conduct; the amount of restitution payable to victims will be determined at a future proceeding. The DOJ Press Release also noted that “Switzerland’s Financial Market Supervisory Authority (FINMA) also engaged in an enforcement action, which includes the appointment of an independent third-party to review the implementation and effectiveness of compliance measures for business conducted in financially weak and high-risk countries, subject to FINMA’s administrative process.” This means the bank will be up for a very high-profile monitorship.
Relatedly, the SEC Order stated the monies paid to the SEC under its profit disgorgement penalty “will be distributed to harmed investors, if feasible through a Fair Fund. The Commission will hold funds paid pursuant to paragraph IV.B [in the Order] in an account at the United States Treasury pending a decision whether the Commission in its discretion will seek to distribute funds. If a distribution is determined feasible and the Commission makes a distribution, upon approval of the distribution final accounting by the Commission, any amounts remaining that are infeasible to return to investors.”
Credit Suisse also agreed to resolve its case with the FCA, qualifying it for a 30% discount in the overall penalty. Without the debt relief and this discount, the FCA would have imposed a significantly larger financial penalty.” However, the conduct of Credit Suisse with the US enforcement agencies was certainly suboptimal. The DOJ noted that the bank failed to voluntarily disclose the conduct to the department, the overall the nature and seriousness of the offense, which included the involvement of bankers up to the Managing Director level. Moreover, “Credit Suisse received only partial credit for its cooperation with the department’s investigation because it significantly delayed producing relevant evidence. Accordingly, the total penalty reflects a 15% reduction off the bottom of the applicable U.S. Sentencing Guidelines range.”
There is a lot to unpack in this matter and I will be doing so in the next several blogs. Moreover, there is much for the compliance practitioner to digest from the case. From some of the basics like due diligence, to internal controls, the lines of defense and an overall risk management protocol, this case has quite a bit to offer. All I can say is that if Billy Sol Estes were around, he sure would be looking at Credit Suisse and its toxic culture as a way to defraud an entire new set of investors out of a pile of money.
Join us tomorrow as we look at due diligence in international deal making.
Welcome to the only award winning roundtable podcast in compliance. Today, we are thrilled to have our newest panelist Karen Woody join us as a permanent panelist. The entire gang was also thrilled to be honored by W3 as a top talk show in podcasting.
We end with a veritable mélange of shouts outs and one epic rant.
1. Karen Woody talks about the ‘wild west’ of cryptocurrency and the regulatory environment growing up around it. Karen has a shout out domestic tourism in Brown County Indiana.
2. Jay Rosen discusses the morally bankrupt culture at Facebook and how the company can begin to comeback from the abyss. Rosen shouts out to Josh Allen and the Buffalo Bills for being one of the best teams in the NFL this season and advises long-suffering Bills fan Lisa Fine to ‘enjoy the ride’.
3. Matt Kelly discusses the recent speech by SEC Director of Enforcement, Gurbir Grewal in which Grewal previewed an increase in penalties in enforcement by the SEC. Kelly shouts out to Kareem Abdul Jabbar for his evisceration of NBA players in general and Kyrie Irving in particular for their selfish attitudes in failing to get Covid vaccinations.
4. Jonathan Armstrong looks at whistleblowing in the EU. He shouts out to Emma Raducanu for her stunning win in the US Open this year.
5. Tom Fox rants about Waller County and its lack of criminal charges against drivers who intentionally or negligently run over cyclists.
The members of the Everything Compliance are:
• Jay Rosen– Jay is Vice President, Business Development Corporate Monitoring at Affiliated Monitors. Rosen can be reached at JRosen@affiliatedmonitors.com
• Karen Woody – One of the top academic experts on the SEC. Woody can be reached at kwoody@wlu.edu
• Matt Kelly – Founder and CEO of Radical Compliance. Kelly can be reached at mkelly@radicalcompliance.com
• Jonathan Armstrong –is our UK colleague, who is an experienced data privacy/data protection lawyer with Cordery in London. Armstrong can be reached at jonathan.armstrong@corderycompliance.com
• Jonathan Marks is Partner, Firm Practice Leader – Global Forensic, Compliance & Integrity Services at Baker Tilly. Marks can be reached at jonathan.marks@bakertilly.com
