The head of BaFin and their deputy were forced out over it and the agency is undergoing significant restructuring[1], and a new agency was formed specifically for investigating financial crimes[2].
In terms of actual liability - no, at least not yet. A number of lawsuits by individual investors were thrown out[3] but it's possible there will be public prosecution:
> Criminal prosecutors in Frankfurt are assessing whether BaFin employees obstructed justice by not properly investigating fraud warnings.
In the end, it's a regulator, they have to rely on auditors to some point. If Wirecard lies and EY doesn't catch it, that's on the criminal and the auditor. Still, it's hard to understate just how badly the agency fucked this one up... Hopefully, it'll serve as a true wake-up call.
Certainly seems like it - they have been more aggressive recently with other problem companies like N26, Solaris Bank, Coinbase, Deutsche and others.
> The head of BaFin and their deputy were forced out over it
They tried to get innocent people put in prison. They belong in prison themselves. If all that happened to them was losing their careers, then they haven't been brought to justice.
Who is "they"? The head of the agency? Their advisors? Individual employees? Politicians? Failure of this magnitude is almost always a systemic failure.
Actually figuring out who, if anyone, committed a crime (through gross negligience, willful obstruction, or similar) will take years.
To reply to just one sentence: From my experience the relationship between auditors and financial (prudential) regulators is only lightly one of relying upon. On the one hand of course having trouble getting your financial report signed is a key risk indicator for the regulator, on the other hand the regulator in my sector (insurance) goes markedly deeper in their thematic and on-site reviews than the auditors do. Even though the auditors sign off on things like capital requirements, the regulators understand models way better. Those building proper models usually don’t work for the big-4 that do auditing, but work for more niche firms and the insurers themselves.
I’ve worked for a regulator in a sector with more lenient oversight (health) and there the accountant was one of the pillars of our understanding. We just didn’t have the mandate or capabilities to understand the finance of the thousands of providers. In that way regulating finance is easy. Banks and insurers are relatively low-N activities. In case of BaFin I find it hard to imagine that they couldn’t, so they probably wouldn’t.
Food for another thread is how to match the European perspective above to, say, the SVB case in the US. How on earth the regulator didn’t track the interest rate risk is beyond me. (I believe the legal explanation is that they fell in a D-F regime with less regulatory burden.)
In terms of actual liability - no, at least not yet. A number of lawsuits by individual investors were thrown out[3] but it's possible there will be public prosecution:
> Criminal prosecutors in Frankfurt are assessing whether BaFin employees obstructed justice by not properly investigating fraud warnings.
In the end, it's a regulator, they have to rely on auditors to some point. If Wirecard lies and EY doesn't catch it, that's on the criminal and the auditor. Still, it's hard to understate just how badly the agency fucked this one up... Hopefully, it'll serve as a true wake-up call.
Certainly seems like it - they have been more aggressive recently with other problem companies like N26, Solaris Bank, Coinbase, Deutsche and others.
[1]: https://www.ft.com/content/4f948457-678e-485c-92f7-2837064a5...
[2]: https://www.ft.com/content/587b6c52-c93e-4b2c-949a-53f6a1667...
[3]: https://www.ft.com/content/9fab6842-4ee6-4114-a35c-09bf9c62a...