In February 2017, we blogged about a whistleblower complaint filed against Bank of the Internet (“BofI”) by its former internal auditor. The blog post addressed what the whistleblower believed was BofI’s wrongdoing in relation to responding to a subpoena from the Securities and Exchange Commission (“SEC”), and when dealing with a certain loan customer in potential violation of the Anti-Money Laundering (“AML”) rules of the Bank Secrecy Act (“BSA”).

Less than two months after our blog post, three BofI stockholders brought a putative class action complaint against BofI seeking to represent a class of individuals who purchased BofI stock, in a case captioned Mandalevey v. BofI Holding, Inc. These plaintiffs alleged BofI violated the Securities Exchange Act through, among other alleged misrepresentations, falsely denying the company was under investigation for money laundering violations.  A federal court recently dismissed all claims against BofI.

This post focuses on that decision, the allegations relating to the federal investigation of BofI, and the Court’s interesting reasoning in dismissing these plaintiffs’ claims. Although the bank won this latest round, the saga involving BofI underscores how financial institutions face an increasing risk that alleged AML and Counter-Terrorism Financing (“CTF”) violations will lead to follow-on allegations of securities law violations – allegations brought not only by the government (see here), but also by investor class action suits (see here, here and here). Continue Reading When A Purported Money Laundering Investigation Turns Into a Class Action Complaint: The Latest Round in BofI’s Fight to Put Money Laundering Allegations in the Rearview Mirror

Employers increasingly face the difficult scenario of employees who misappropriate company data in the pursuit of whistleblower claims alleging misconduct by the employer. Such cases can present a complex mix of regulatory, cybersecurity, and employment issues. These issues were front and center in a recent whistleblower case pitting a bank against its former internal auditor, who engaged in computer-facilitated misappropriation of the bank’s confidential information allegedly to support whistleblower conduct.Whistle

The U.S. District Court for the Southern District of California recently declined to summarily adjudicate whether the employee’s confidentiality agreement precluded any whistleblower affirmative defense based on the employee’s alleged violation of computer fraud, contract, and tort laws. The whistleblower laws in question included the Bank Secrecy Act, Sarbanes-Oxley, Dodd-Frank, and the California Labor Code.

In Erhart v. Bofi Holding, plaintiff Charles Matthew Erhart filed a whistleblower complaint against his employer, Bank of the Internet (BofI), alleging BofI retaliated against him for reporting unlawful conduct to the government. BofI, in turn, filed a complaint, alleging that Erhart breached his employee confidentiality agreement by misappropriating confidential data relating to his employer and its clients and disseminating that data to the government, family members, and the national press.

Erhart illustrates the complex and practical problems faced by employers dealing with employees who engage in conduct that would otherwise constitute computer fraud, intellectual property theft, breaches of employment-related agreements and policies, and related tort claims under the mantle of “whistleblower.” A key issue in the case was whether Erhart would be entitled to pursue his retaliation claims before a jury or would be precluded from doing so as a matter of law given his computer-facilitated theft of confidential information. Continue Reading Bank Whistleblower Suits Highlight Limits of Employee Confidentiality Agreements