The SEC continues to leave its mark as a federal cybersecurity enforcer and closed out the year by charging another company with making misleading statements about a cybersecurity attack and failing to maintain cyber-related...more
1/23/2025
/ Cyber Attacks ,
Cybersecurity ,
Data Breach ,
Data Privacy ,
Disclosure Requirements ,
Enforcement Actions ,
Financial Institutions ,
Form 10-K ,
Publicly-Traded Companies ,
Risk Management ,
Securities Act of 1933 ,
Securities and Exchange Commission (SEC) ,
Securities Fraud
Earlier this week, the SEC accused SolarWinds Corporation (“SolarWinds” or the “Company”) and its Chief Information Security Officer (“CISO”) of committing scienter-based securities fraud, among other violations, for...more
11/6/2023
/ Chief Information Security Officer (CISO) ,
Cyber Incident Reporting ,
Cybersecurity ,
Enforcement ,
False Statements ,
Form 8-K ,
Internal Controls ,
NIST ,
Popular ,
Risk Assessment ,
Risk Management ,
Securities and Exchange Commission (SEC) ,
Securities Exchange Act ,
Securities Fraud ,
SolarWinds
Based on updates to its rulemaking agenda that were released last week, the U.S. Securities and Exchange Commission (SEC) has delayed approval of two cybersecurity rules until at least October 2023. Both proposed rules were...more
On Thursday, October 1, 2020, the U.S. Department of the Treasury’s Office of Foreign Assets Control (“OFAC”) issued an advisory highlighting potential sanctions risks associated with ransomware payments related to malicious...more