Securities and Exchange Commission Archives

SolarWinds supply chain cybersecurity Unisys Avaya Check Point Mimecast fines

Judge Dismisses Most SEC Charges Against SolarWinds

Jeffrey Burt | July 19, 2024 | Securities and Exchange Commission, software supply chain attack, SolarWinds, Sunburst malware

A federal district court judge blew a hole in the SEC's case against SolarWinds, saying that while the company and its CISO could be tried for statements made before the high-profile Sunburst ...

Security Boulevard

A 3D render of a DNA strand, with the text “It’s even worse” superimposed

23andMe Finally Admits: 6.9 MILLION Users’ PII Breached

Not nice: Hacker claimed 20 million, 23andMe said it was only 14,000—but now admits to 6.9 million ...

Security Boulevard

This LASCO C2 image shows a widely spreading coronal mass ejection (CME) as it blasts more than a billion tons of matter out into space at millions of kilometers per hour.

SolarWinds CISO Sued for Fraud by US SEC

Richi Jennings | October 31, 2023 | CISO, CISO duties, CISO Incompetency, CISO reporting structure, SB Blogwatch, SEC, Securities and Exchange Commission, SolarWinds, SolarWinds Orion Supply Chain, SolarWinds Vulnerability, solarwinds123, SolarWindsOrion, Sudhakar Ramakrishna, SUNBURST, Sunburst malware, Sunburst Vuln, Timothy Brown, U.S. Securities and Exchange Commission

The password was ‘solarwinds123’: SUNBURST still reverberates as SolarWinds CISO Timothy Brown co-defends SEC lawsuit ...

Security Boulevard

dope.security, sensitive data, Chorology, ACE, Baffle, data, Capitol Hill staffers data leak

SEC is Investigating Progress Software in Wake of MOVEit Attacks

Jeffrey Burt | October 13, 2023 | Data breach, MOVEit, Ransomware, Securities and Exchange Commission

Progress Software is now adding an investigation by the U.S. Securities and Exchange Commission to its growing list of legal and financial headaches stemming from the massive hack of its MOVEit file ...

Security Boulevard

Feds Point to Escalated Ransomware Attacks on Financial Institutions, Offer Guidance Based on Success Stories

Filip Truta | July 16, 2020 | Fed, Feds, Finance, financial institutions, Financial Services, Industry News, OCIE, Ransomware, SEC, Securities and Exchange Commission

The U.S. Security and Exchange Commission’s (SEC’s) Office of Compliance Inspections and Examinations (OCIE) has issued an alert warning of an escalated number of ransomware attacks on financial institutions. The office details ...

HOTforSecurity

Gambling Firm Anticipates Spending up to $100 Million in Recovery from Cyber Incident

Filip Truta | April 13, 2020 | gambling, Industry News, MA, merger, mergers and acquisitions, Ransomware, SBTech, SEC, Securities and Exchange Commission

SBTech, a provider of interactive sports betting solutions and services, has set aside up to $100 million to fix a mess left when a cybersecurity incident hit right in the midst of ...

HOTforSecurity

data cybersecurity software CISA ransomware cybersecurity protect data c-suite

Rating: How Current Cybersecurity Issues Can Affect Future Profitability

Jody Paterson | August 21, 2019 | credit rating, cyber-risk, cyberattack, downgrade, Equifax, Moody's, outlook, profitability, SEC, Securities and Exchange Commission

Fallout from Equifax’s 2017 data breach continues to impact the company even years later. Moody’s Investor Service, a bond credit rating business, lowered Equifax’s rating outlook from stable to negative, which indicates ...

Security Boulevard

Cisco Patches Critical Flaws in Elastic Services Controller and UCDM

Lucian Constantin | February 22, 2018 | Cisco Systems, critical vulnerability, cybersecurity investigation, insider trading, Securities and Exchange Commission

Cisco Systems has released security updates for its Unified Communications Domain Manager (UCDM) and Elastic Services Controller (ESC) products to address critical vulnerabilities. The vulnerability fixed in UCDM, which is used for ...

Security Boulevard

Sophisticated Malware Attack Launched via Fake SEC Emails

Lucian Constantin | October 12, 2017 | DNSMessenger, electric grid, energy companies, Malware, North Korea, Phishing, powershell, Securities and Exchange Commission

Researchers have detected a targeted attack that uses a combination of novel techniques to deploy PowerShell malware. The infection starts with malicious documents distributed through phishing emails that masquerade as messages from ...

CCleaner Supply Chain Attack Targeted Technology Companies

Lucian Constantin | September 21, 2017 | Axiom, backdoor, CCleaner, cyberespionage, Data breach, insider trading, Joomla, Securities and Exchange Commission, supply chain attack, web application vulnerability

New evidence shows the hackers who infected the installers for the popular CCleaner system optimization tool were primarily targeting the program’s business users. There are also links between the malware code and ...