The Office of the Comptroller of the Currency (OCC) today publicly released a letter sent to its supervised institutions regarding unauthorized access to OCC email systems. The OCC provided public notice of the unauthorized access and its designation as a major information security incident on April 8, 2025.
On 12 March 2025, the California Privacy Protection Agency (CPPA) settled with an automaker that allegedly violated various aspects of the California Consumer Privacy Act (CCPA). This first-of-its-kind settlement for the agency echoes a 2022 enforcement action brought by California Attorney General Rob Bonta against an online retailer, while introducing new guidance for businesses subject to the CCPA. In this article, we will focus on the agency’s allegations regarding cookie management service providers and take-aways for businesses subject to the CCPA or similar state privacy statutes.
The New York State Attorney General sued earned wage access providers DailyPay and MoneyLion on Monday (April 14), accusing them of illegal and deceptive conduct and abusive lending practices.
The lawsuits allege that the companies’ services are payday loans and that the fees the companies charge on these short-term loans can amount to annual interest rates of as much as 750%, according to a Monday press release.
Last month, the Texas legislature introduced two companion bills, S.B. No. 2677 and H.B. No. 700, to regulate sales-based commercial financing. For purposes of the proposed legislation, sales-based financing is a transaction that is repaid as a percentage of sales or revenue, or according to a fixed payment mechanism that provides for a reconciliation process to adjust payments to an amount that is a percentage of sales or revenue.
Republicans on the House Financial Services Financial Institutions Subcommittee have sent Acting CFPB Director Russell Vought a letter calling for the CFPB to withdraw a wide variety of final and proposed rules.
.jpg)
.jpg)