{"id":268788,"date":"2026-06-09T18:35:00","date_gmt":"2026-06-09T22:35:00","guid":{"rendered":"https:\/\/news-you-need.com\/index.php\/2026\/06\/09\/nyfds-published-two-industry-letters-addressing-cybersecurity\/"},"modified":"2026-06-09T18:40:11","modified_gmt":"2026-06-09T22:40:11","slug":"nyfds-published-two-industry-letters-addressing-cybersecurity","status":"publish","type":"post","link":"https:\/\/news-you-need.com\/index.php\/2026\/06\/09\/nyfds-published-two-industry-letters-addressing-cybersecurity\/","title":{"rendered":"NYFDS Published Two Industry Letters Addressing Cybersecurity"},"content":{"rendered":"<p><a href=\"https:\/\/natlawreview.com\/article\/nydfs-issues-dual-guidance-heightened-cybersecurity-threats-frontier-ai-risks\">NYFDS Published Two Industry Letters Addressing Cybersecurity<\/a><\/p>\n<p><a href=\"https:\/\/natlawreview.com\/article\/nydfs-issues-dual-guidance-heightened-cybersecurity-threats-frontier-ai-risks\">https:\/\/natlawreview.com\/article\/nydfs-issues-dual-guidance-heightened-cybersecurity-threats-frontier-ai-risks<\/a><\/p>\n<p>Publish Date: <a href=\"publish_date]\">2026-06-09 18:35:00<\/a><\/p>\n<p>Source Domain: <a href=\"natlawreview.com\">natlawreview.com<\/a><\/p>\n<p>On May 21, 2026, NYDFS published two related industry letters addressing cybersecurity preparedness for DFS-regulated financial institutions, insurers, and money transmitters. The first, titled Guidance on Measures Regulated Entities Should Consider in a Heightened Cybersecurity Threat Environment (the Guidance), provides a structured menu of defensive measures entities should consider when cybersecurity risks become significantly elevated. The second, titled Heightened Cybersecurity Risks Associated with Frontier AI Models (the Advisory), warns that certain AI models capable of identifying vulnerabilities and exploits at unprecedented speed and scale will soon become more widely available, and directs entities to prepare now. The two documents are designed to work together: the Advisory identifies the threat, and the Guidance provides recommendations on how to respond.<\/p>\n<p>Neither publication creates binding requirements. Both documents state explicitly that they do not alter the obligations under Part 500. The Guidance frames its recommendations as measures entities \u201cshould consider\u201d adopting based on their \u201cunique circumstances and operations.\u201d The Advisory states it is \u201cintended to inform Regulated Entities\u2019 risk management and compliance efforts.\u201d<\/p>\n<p>That said, NYDFS has a well-established pattern of publishing non-binding guidance that later becomes the benchmark in examinations and enforcement. NYDFS may evaluate whether an entity considered these measures, documented its reasoning, and updated its risk assessment accordingly.<\/p>\n<h3>Scope<\/h3>\n<p>The Guidance applies broadly to all NYDFS-regulated organizations and individuals, using the same jurisdictional reach as Part 500. (As a reminder, the scope of Part 500 changed when regulatory amendments recently went into effect.) Any entity required to hold an NYDFS license falls within its scope, including but not limited to licensed lenders, insurance companies, insurance producers, money transmitters, mortgage&#8230;<\/p>\n<p><a href=\"https:\/\/natlawreview.com\/article\/nydfs-issues-dual-guidance-heightened-cybersecurity-threats-frontier-ai-risks\">Source<\/a><\/p>\n","protected":false},"excerpt":{"rendered":"<p>NYFDS Published Two Industry Letters Addressing Cybersecurity https:\/\/natlawreview.com\/article\/nydfs-issues-dual-guidance-heightened-cybersecurity-threats-frontier-ai-risks Publish Date: 2026-06-09 18:35:00 Source Domain: natlawreview.com&#8230;<\/p>\n","protected":false},"author":1,"featured_media":268789,"comment_status":"closed","ping_status":"","sticky":false,"template":"","format":"standard","meta":{"fifu_image_url":"https:\/\/natlawreview.com\/sites\/default\/files\/styles\/article_image\/public\/2026-06\/New%20York%20City%20NYC%20NY%20Privacy%20Data%20Cybersecurity-476228113.jpg.webp?itok=VTPVl4GE","fifu_image_alt":"","footnotes":""},"categories":[15],"tags":[20],"class_list":["post-268788","post","type-post","status-publish","format-standard","has-post-thumbnail","hentry","category-cybersecurity","tag-artificial-intelligence"],"_links":{"self":[{"href":"https:\/\/news-you-need.com\/index.php\/wp-json\/wp\/v2\/posts\/268788"}],"collection":[{"href":"https:\/\/news-you-need.com\/index.php\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/news-you-need.com\/index.php\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/news-you-need.com\/index.php\/wp-json\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/news-you-need.com\/index.php\/wp-json\/wp\/v2\/comments?post=268788"}],"version-history":[{"count":1,"href":"https:\/\/news-you-need.com\/index.php\/wp-json\/wp\/v2\/posts\/268788\/revisions"}],"predecessor-version":[{"id":268790,"href":"https:\/\/news-you-need.com\/index.php\/wp-json\/wp\/v2\/posts\/268788\/revisions\/268790"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/news-you-need.com\/index.php\/wp-json\/wp\/v2\/media\/268789"}],"wp:attachment":[{"href":"https:\/\/news-you-need.com\/index.php\/wp-json\/wp\/v2\/media?parent=268788"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/news-you-need.com\/index.php\/wp-json\/wp\/v2\/categories?post=268788"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/news-you-need.com\/index.php\/wp-json\/wp\/v2\/tags?post=268788"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}