The U.S. Securities and Exchange Commission (SEC) has imposed fines on four companies due to failures in disclosing a cybersecurity incident related to SolarWinds. This action underscores the SEC's increasing focus on cybersecurity compliance within the financial sector. Additionally, the SEC has outlined its exam priorities for 2025, emphasizing the need for investment advisers to enhance their cybersecurity measures. In a related development, the UK Financial Conduct Authority (FCA) has published a letter addressed to CEOs of financial advisers and investment intermediaries, highlighting key concerns and priorities for 2025. The FCA also released a paper discussing nature-related risks for financial institutions, reflecting a growing trend of integrating sustainability into financial decision-making. Furthermore, the Department of Defense has published a final rule for its Cybersecurity Maturity Model Certification (CMMC) 2.0 program, aimed at improving cybersecurity standards among federal contractors. This rule follows a lengthy regulatory review process lasting 14 years, indicating significant advancements in government cybersecurity protocols.