{"id":258258,"date":"2026-05-28T18:09:00","date_gmt":"2026-05-28T22:09:00","guid":{"rendered":"https:\/\/news-you-need.com\/index.php\/2026\/05\/28\/nydfs-issues-guidance-on-frontier-ai-cyber-risks-heightened-cyber-threat-environments\/"},"modified":"2026-05-28T19:30:09","modified_gmt":"2026-05-28T23:30:09","slug":"nydfs-issues-guidance-on-frontier-ai-cyber-risks-heightened-cyber-threat-environments","status":"publish","type":"post","link":"https:\/\/news-you-need.com\/index.php\/2026\/05\/28\/nydfs-issues-guidance-on-frontier-ai-cyber-risks-heightened-cyber-threat-environments\/","title":{"rendered":"NYDFS Issues Guidance on Frontier AI Cyber Risks, Heightened Cyber Threat Environments"},"content":{"rendered":"<p><a href=\"https:\/\/www.dwt.com\/blogs\/privacy--security-law-blog\/2026\/05\/nydfs-frontier-ai-cyber-risk-guidance\">NYDFS Issues Guidance on Frontier AI Cyber Risks, Heightened Cyber Threat Environments<\/a><\/p>\n<p><a href=\"https:\/\/www.dwt.com\/blogs\/privacy--security-law-blog\/2026\/05\/nydfs-frontier-ai-cyber-risk-guidance\">https:\/\/www.dwt.com\/blogs\/privacy&#8211;security-law-blog\/2026\/05\/nydfs-frontier-ai-cyber-risk-guidance<\/a><\/p>\n<p>Publish Date: <a href=\"publish_date]\">2026-05-28 18:09:00<\/a><\/p>\n<p>Source Domain: <a href=\"www.dwt.com\">www.dwt.com<\/a><\/p>\n<p>The New York Department of Financial Services (NYDFS) has issued new guidance to entities subject to its cybersecurity regulation (regulated entities), including on cybersecurity threats associated with frontier AI models. On May 21, 2026, NYDFS issued two industry letters: an advisory to chief information security officers (CISOs) of regulated entities on heightened cybersecurity risks posed by &#8220;frontier AI models&#8221; capable of accelerating vulnerability discovery and exploit development (the AI Advisory), and broader guidance on measures regulated entities should consider when operating in a &#8220;heightened cybersecurity threat environment&#8221; (the Guidance). The two documents are meant to be read together, with the AI Advisory referencing specific sections of the Guidance that entities should review to respond to AI-driven threats.<\/p>\n<p>Regulated entities should review both letters carefully and assess their practices against NYDFS&#8217;s guidance. NYDFS is known to follow such industry guidance with targeted enforcement, and regulated entities should expect NYDFS to probe how they have weighed the recommendations in the letters in both enforcement actions and examinations. Regulated entities include New York-chartered banks and trust companies, New York-licensed branches of foreign banks, and other New York-licensed financial institutions. These other types of financial institutions include insurance providers, brokers, and NY BitLicense holders. Providers to regulated entities, though not subject to the cybersecurity regulation directly, may have obligations passed down to them through their agreements with regulated entities.<\/p>\n<h3>Frontier AI Models Advisory<\/h3>\n<p>The AI Advisory, titled &#8220;Heightened Cybersecurity Risks Associated with Frontier AI Models,&#8221; is addressed specifically to CISOs of regulated entities. The advisory warns that certain frontier AI models &#8220;amplify the potency, scale, and speed of identifying vulnerabilities and exploits in information&#8230;<\/p>\n<p><a href=\"https:\/\/www.dwt.com\/blogs\/privacy--security-law-blog\/2026\/05\/nydfs-frontier-ai-cyber-risk-guidance\">Source<\/a><\/p>\n","protected":false},"excerpt":{"rendered":"<p>NYDFS Issues Guidance on Frontier AI Cyber Risks, Heightened Cyber Threat Environments https:\/\/www.dwt.com\/blogs\/privacy&#8211;security-law-blog\/2026\/05\/nydfs-frontier-ai-cyber-risk-guidance Publish Date:&#8230;<\/p>\n","protected":false},"author":1,"featured_media":258259,"comment_status":"closed","ping_status":"","sticky":false,"template":"","format":"standard","meta":{"fifu_image_url":"https:\/\/www.dwt.com\/-\/media\/images\/insights\/social\/ps_cyber-security-ai-digital_social.png?rev=7a49ea641c8c4740a0ac5cf97a17be15&hash=2B519D7D5BDE21BB7DF4F21A5E056584","fifu_image_alt":"","footnotes":""},"categories":[15],"tags":[20,57,27],"class_list":["post-258258","post","type-post","status-publish","format-standard","has-post-thumbnail","hentry","category-cybersecurity","tag-artificial-intelligence","tag-security","tag-vulnerability"],"_links":{"self":[{"href":"https:\/\/news-you-need.com\/index.php\/wp-json\/wp\/v2\/posts\/258258"}],"collection":[{"href":"https:\/\/news-you-need.com\/index.php\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/news-you-need.com\/index.php\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/news-you-need.com\/index.php\/wp-json\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/news-you-need.com\/index.php\/wp-json\/wp\/v2\/comments?post=258258"}],"version-history":[{"count":1,"href":"https:\/\/news-you-need.com\/index.php\/wp-json\/wp\/v2\/posts\/258258\/revisions"}],"predecessor-version":[{"id":258260,"href":"https:\/\/news-you-need.com\/index.php\/wp-json\/wp\/v2\/posts\/258258\/revisions\/258260"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/news-you-need.com\/index.php\/wp-json\/wp\/v2\/media\/258259"}],"wp:attachment":[{"href":"https:\/\/news-you-need.com\/index.php\/wp-json\/wp\/v2\/media?parent=258258"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/news-you-need.com\/index.php\/wp-json\/wp\/v2\/categories?post=258258"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/news-you-need.com\/index.php\/wp-json\/wp\/v2\/tags?post=258258"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}